Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/YlnAkvURw4_Ofhccg4nJnc6ZV-g.roa
File: YlnAkvURw4_Ofhccg4nJnc6ZV-g.roa (raw, json)
Hash identifier: s4+ugtz+3p2ZGbOHXT5chuIfO1RO2G+W6lEJ3FUGBAw=
Subject key identifier: 62:59:C0:92:F5:11:C3:8F:CE:7E:17:1C:83:89:C9:9D:CE:99:57:E8
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0C74
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/YlnAkvURw4_Ofhccg4nJnc6ZV-g.roa
Signing time: Fri 01 Sep 2023 08:26:35 +0000
ROA not before: Fri 01 Sep 2023 08:26:35 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18429
IP address blocks: 123.50.48.0/20 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3188 (0xc74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 1 08:26:35 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=6259C092F511C38FCE7E171C8389C99DCE9957E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f8:6c:ac:a2:dd:aa:bc:55:fa:5f:01:94:d0:
35:b0:7c:bd:12:f8:0b:78:08:fa:07:75:c8:00:04:
eb:e0:df:28:0f:ad:64:cb:f3:fa:53:bc:33:0b:07:
c6:ed:4a:b7:9e:25:55:7b:88:78:18:f8:9c:98:2b:
1e:dc:72:52:50:3a:2c:aa:f0:06:7d:ff:bb:76:ef:
7b:9d:cd:3a:86:b1:f7:31:d2:7a:23:66:ba:f2:e8:
b9:68:bd:a6:af:44:d0:66:27:84:84:52:b9:1c:ac:
0b:57:f8:20:ab:72:9d:e2:91:cc:d9:d2:a0:87:81:
26:40:b4:40:1b:f6:f8:97:c2:53:40:6a:9e:3c:ee:
e3:de:37:26:8b:6b:8b:b4:f1:7f:fc:48:db:ec:67:
fa:e3:c6:33:15:ee:e0:f5:4a:ec:68:e2:b9:4f:49:
02:42:54:b1:8a:f4:4b:3c:f7:9f:e0:d8:00:0b:6a:
c0:ec:97:20:ae:0a:7b:bb:e5:e4:41:1b:18:1d:c2:
e8:03:cb:64:96:72:82:fe:c6:d6:16:65:1d:51:7f:
4d:b3:bb:1f:0b:32:6b:25:b8:da:f0:da:30:c0:87:
40:c0:3c:e8:ee:4d:6a:d2:3b:55:24:ee:f9:ca:da:
73:25:f1:73:07:8b:34:79:f6:04:6f:e1:cb:d9:22:
80:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:59:C0:92:F5:11:C3:8F:CE:7E:17:1C:83:89:C9:9D:CE:99:57:E8
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/YlnAkvURw4_Ofhccg4nJnc6ZV-g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.50.48.0/20
Signature Algorithm: sha256WithRSAEncryption
13:74:ce:84:31:6e:54:4d:41:69:0b:d4:2c:30:6f:74:63:36:
fe:f0:4a:36:98:0e:bf:43:d2:ef:bc:68:89:ff:d3:6d:30:49:
cf:4b:ec:00:9b:38:e3:34:60:fb:85:f1:16:76:ea:6a:46:8b:
89:c2:71:8f:51:b1:e0:e3:18:0c:9c:97:d5:3d:ed:4b:35:cd:
2d:da:35:ac:8b:ea:60:40:b9:41:05:94:e1:c1:61:77:e0:2a:
d1:5d:40:9d:04:0b:22:52:8d:52:c9:71:b9:a5:9f:23:7c:d1:
b5:56:4d:62:1b:d4:7a:74:eb:72:e9:ac:9c:2c:25:dc:52:80:
7c:29:d2:0f:fb:fd:11:51:e5:07:1e:ef:96:ff:7d:9a:f1:3a:
82:95:5a:e9:14:cd:0d:cd:57:36:cd:57:b2:a3:48:2e:08:f5:
22:e1:1a:7f:46:4a:5f:9f:2c:5d:13:ec:fd:c5:0f:4e:eb:57:
14:fa:dd:39:c7:08:7c:5e:e4:64:b6:a9:c9:28:e8:07:82:59:
b0:b9:40:2d:23:ec:10:ee:c5:8e:f7:ba:cf:1a:74:f4:3b:da:
40:15:bc:7f:7a:92:1b:0b:c1:5a:db:01:e0:19:10:f4:18:fa:
dc:da:7c:e9:80:3e:20:bc:67:1a:20:ca:30:a2:5d:b2:a8:f4:
1c:2a:90:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:19 2025 by rpki-client