Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/YviJ0li9BMov2YeOoGYldL7-T_U.roa
File: YviJ0li9BMov2YeOoGYldL7-T_U.roa (raw, json)
Hash identifier: wm1pVxwVrYF7qCevMq2k6oDA8SDHvHJ2yFDkeywCSRg=
Subject key identifier: 62:F8:89:D2:58:BD:04:CA:2F:D9:87:8E:A0:66:25:74:BE:FE:4F:F5
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0B42
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/YviJ0li9BMov2YeOoGYldL7-T_U.roa
Signing time: Thu 15 Dec 2022 02:56:54 +0000
ROA not before: Thu 15 Dec 2022 02:56:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 123.50.32.0/21 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2882 (0xb42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Dec 15 02:56:54 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=62F889D258BD04CA2FD9878EA0662574BEFE4FF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9b:e5:51:7c:4c:73:7e:18:91:95:12:dd:6a:
bc:51:20:b7:e9:a5:9a:5b:bd:c3:9c:24:cc:73:d1:
86:c3:35:9e:7a:89:7a:dc:76:4b:22:ab:bd:ac:fe:
d8:38:7a:91:79:af:c8:f6:77:37:41:6d:7f:90:81:
b5:9d:f8:b2:10:11:be:62:06:6c:20:7a:72:84:64:
46:3f:a4:16:d7:c6:4d:5f:a0:6a:52:8c:19:28:a3:
0d:0e:bc:05:8f:cb:49:64:2e:cf:88:62:05:ce:69:
2e:c5:be:c0:1e:7f:99:5f:95:3a:9d:46:09:98:0e:
dc:36:e2:52:78:81:32:40:fb:41:7c:f7:d6:36:3a:
ad:13:b1:4d:8e:7a:5c:6e:23:f4:a9:75:40:49:b5:
23:12:fb:b7:37:a5:5a:10:2a:74:44:83:e9:fe:91:
c6:16:a4:62:14:d2:81:72:b4:6c:14:28:ee:e5:75:
51:b8:d7:52:4f:46:3b:74:f1:a2:0d:6e:32:fe:b1:
7b:0b:9d:46:de:a1:c0:44:74:ad:e5:01:44:a7:62:
12:ea:8d:f5:71:50:1b:12:7f:da:ee:05:4a:9c:c9:
56:ae:0b:32:f3:38:46:8d:26:95:e3:72:bb:ec:5f:
39:a8:3e:bc:f0:a2:7e:17:cd:5e:17:cc:4c:81:fa:
c8:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:F8:89:D2:58:BD:04:CA:2F:D9:87:8E:A0:66:25:74:BE:FE:4F:F5
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/YviJ0li9BMov2YeOoGYldL7-T_U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.50.32.0/21
Signature Algorithm: sha256WithRSAEncryption
33:10:16:46:c2:e4:42:73:5f:1a:84:bf:ab:89:f6:de:6c:ce:
f5:78:ff:2d:2b:a4:f0:91:a4:f9:50:45:e5:8d:41:3b:f9:b4:
70:e5:47:53:a7:fc:4e:c6:04:4c:ac:27:01:38:d0:6f:79:9d:
d1:2b:6e:97:b8:48:b4:94:15:08:c2:aa:8c:f8:e9:48:3b:09:
3b:d8:d2:93:6f:58:a9:4d:ad:1d:3b:07:9c:e5:4b:1a:aa:75:
b1:f6:19:1b:4f:01:47:62:2e:93:15:5e:92:99:95:ea:79:d4:
6d:40:da:a6:e5:c9:bf:0b:16:61:ed:a6:8d:df:02:45:6c:18:
7e:a8:ec:61:b3:ba:2f:5e:b5:fd:42:eb:6d:cf:f0:36:aa:8b:
95:33:6f:15:e5:fb:be:2a:87:33:fd:19:37:92:24:3a:ce:b8:
63:bb:7b:29:fa:98:a1:d4:96:7b:2e:5d:30:65:14:89:5d:66:
3c:b9:d5:e3:47:9f:97:82:6c:df:92:47:b1:51:75:01:dd:ee:
08:91:a5:0d:19:05:11:e0:53:34:e1:b3:d4:78:28:bc:90:f6:
64:1c:e6:15:55:49:a2:5e:70:ca:a6:bb:8f:78:f0:9b:42:e8:
18:53:39:b4:37:17:cc:c3:2c:4e:9e:1f:82:dd:97:dc:36:e1:
fd:49:95:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:31 2025 by rpki-client