Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/fEO118wcaGwuDQqPuuU74l9p87Q.roa
File: fEO118wcaGwuDQqPuuU74l9p87Q.roa (raw, json)
Hash identifier: H3vNNRRP10nn6wcW6owcIDJWoMMDT+wm8lz24Xw7S20=
Subject key identifier: 7C:43:B5:D7:CC:1C:68:6C:2E:0D:0A:8F:BA:E5:3B:E2:5F:69:F3:B4
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0B40
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/fEO118wcaGwuDQqPuuU74l9p87Q.roa
Signing time: Thu 15 Dec 2022 02:56:53 +0000
ROA not before: Thu 15 Dec 2022 02:56:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 124.155.184.0/21 maxlen: 21
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2880 (0xb40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Dec 15 02:56:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7C43B5D7CC1C686C2E0D0A8FBAE53BE25F69F3B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:76:fa:a6:4c:67:51:6b:13:ef:c7:54:2e:fc:
8f:b4:34:a8:cf:09:0b:ca:ef:8b:17:38:82:56:4d:
c6:d9:bf:27:5f:8d:c9:74:f7:4f:e7:25:ba:d6:d4:
95:c6:f5:28:32:cb:d4:3c:97:38:48:a9:6a:f7:86:
4c:03:46:0f:bd:07:b2:e8:8e:8e:2e:58:9c:c9:15:
b3:2d:8c:a5:0c:c9:59:8f:93:ae:f7:8a:a9:8d:4c:
56:d5:3e:12:43:8c:5b:25:98:61:99:2f:4a:cb:56:
d7:9c:de:b0:3a:a0:6c:31:42:6d:05:66:8c:a6:9f:
3f:ea:67:27:2e:28:c8:15:bb:ca:bf:3f:52:ef:1d:
7d:8a:d7:d9:7e:db:17:ad:6e:21:71:4f:eb:6d:7f:
51:03:a9:80:f0:b4:95:dd:44:3b:ef:7e:3b:1c:18:
5e:8e:84:be:36:d5:71:5f:42:76:cd:04:85:92:a0:
b5:e8:ef:da:cc:3c:63:dc:0d:73:33:4d:1e:fc:20:
da:7d:42:08:55:f5:9e:9a:59:8f:38:bc:0f:64:c1:
a3:c9:4e:ef:71:b8:2a:ef:fa:b4:f9:41:1e:0b:36:
ed:cd:91:82:94:22:fe:9b:12:19:16:f4:11:63:3d:
57:41:f0:2f:44:5d:ef:95:7c:5e:4a:b5:12:67:77:
fa:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:43:B5:D7:CC:1C:68:6C:2E:0D:0A:8F:BA:E5:3B:E2:5F:69:F3:B4
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/fEO118wcaGwuDQqPuuU74l9p87Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.155.184.0/21
Signature Algorithm: sha256WithRSAEncryption
9f:d5:90:d0:75:94:b9:23:39:16:d6:2f:d4:87:fd:a9:3c:45:
d8:63:c3:5d:f6:f7:3f:7e:7c:84:d5:7c:c2:d1:5a:df:f8:0b:
87:b6:cc:c4:be:10:46:7c:cf:6c:1a:4e:1d:a4:24:e7:97:53:
14:f4:11:84:76:8b:d4:38:f1:55:cd:72:0f:54:b1:c2:4b:55:
f2:ef:e7:5e:d2:0c:23:2c:12:f4:c5:43:59:a0:9c:6f:8a:80:
17:e9:24:04:c3:36:82:ae:7c:18:c4:b9:44:af:4b:fd:22:a2:
6b:77:ef:e4:e8:41:39:61:7f:99:3b:5b:bd:c0:fa:90:ad:25:
42:ef:ff:f2:f0:87:2a:57:d1:64:63:0a:61:86:a0:5e:fa:8b:
bc:25:33:0b:96:ba:15:3a:80:ab:28:f8:24:5b:be:a5:d9:0a:
f6:9f:d0:2c:b1:e4:a1:9b:e2:d5:2d:39:ba:5b:23:68:c4:b7:
92:0e:ec:03:a7:fd:82:a3:49:83:d4:b9:7b:0d:7b:07:f3:b8:
c0:14:9c:ad:26:95:75:b7:ca:8f:8c:dd:a7:5f:28:ea:35:1d:
61:59:70:6c:7b:0f:76:c1:a7:a5:f8:e1:62:02:39:99:b3:9c:
88:1b:08:6a:01:60:88:f0:1c:cc:36:de:4d:ed:d0:17:5c:fe:
0e:0f:74:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:03 2025 by rpki-client