Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/pE4pfBJ8EyFiqpiY2MZYfXrAd8k.roa
File: pE4pfBJ8EyFiqpiY2MZYfXrAd8k.roa (raw, json)
Hash identifier: uersh+BIXMdIfc0q/Y4gjO06qjRP0LlvWQRZMwJfxyk=
Subject key identifier: A4:4E:29:7C:12:7C:13:21:62:AA:98:98:D8:C6:58:7D:7A:C0:77:C9
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0790
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/pE4pfBJ8EyFiqpiY2MZYfXrAd8k.roa
Signing time: Tue 29 Sep 2020 09:59:28 +0000
ROA not before: Tue 29 Sep 2020 09:59:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 61.57.144.0/21 maxlen: 21
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1936 (0x790)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 29 09:59:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A44E297C127C132162AA9898D8C6587D7AC077C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:7a:d8:0e:51:3b:f1:27:ab:80:b3:52:a8:fd:
7b:68:d9:7b:5d:78:7e:1e:4f:15:d2:52:6e:62:5a:
d5:73:62:bf:8c:e4:8c:e5:39:d9:3a:0f:83:72:d0:
1d:66:66:67:d8:15:da:de:71:c3:7f:aa:b5:a4:4c:
2b:16:e2:10:92:8b:65:52:2b:9f:37:7f:2a:c7:0c:
ea:a9:37:49:7e:d0:71:06:2f:c1:ce:af:85:da:ef:
00:d9:7d:cb:1c:9c:d7:6a:71:c7:4d:5e:15:60:db:
31:e5:87:5a:f8:4c:58:16:3a:89:b5:bd:a8:28:64:
21:2a:be:88:7c:dc:eb:c6:38:54:a6:24:f3:8c:61:
d9:82:85:5a:14:4b:5d:47:f8:bd:03:26:8f:db:a4:
e6:aa:2e:b1:77:3e:3d:b7:34:28:7b:45:5a:32:e7:
b9:87:45:86:0e:90:56:75:0f:d6:0a:7b:f3:fb:fc:
29:c8:f2:3b:d9:e4:41:b1:a9:0c:b5:9f:03:be:ee:
88:42:7d:e1:ae:ad:2e:81:e5:fe:71:2d:87:c1:8a:
db:09:2b:3c:73:fd:0c:1d:43:6d:96:a2:d8:f3:1e:
1b:39:6a:db:86:4a:0c:f1:1c:f1:04:56:7f:95:da:
4f:e8:10:d0:56:0c:d1:85:0d:19:7a:a2:98:4c:6c:
1a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:4E:29:7C:12:7C:13:21:62:AA:98:98:D8:C6:58:7D:7A:C0:77:C9
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/pE4pfBJ8EyFiqpiY2MZYfXrAd8k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.144.0/21
Signature Algorithm: sha256WithRSAEncryption
19:a3:6b:90:ab:21:52:50:4c:9a:56:bf:a1:30:a2:37:e0:41:
31:a6:fc:7d:f4:ea:87:df:2c:6e:6f:b6:bd:8f:d2:26:78:40:
5b:be:08:19:97:8f:87:21:28:de:0a:28:ce:06:c3:43:c4:ee:
a2:b2:11:fa:57:6e:f8:18:c8:e3:49:e9:42:2a:c4:ae:13:d1:
43:4f:be:78:9b:77:ad:50:48:13:a9:14:39:a3:26:51:cc:64:
3e:85:51:93:cf:b0:ab:94:8a:4c:4d:0d:58:aa:3e:d7:22:77:
cd:1e:cf:f8:a3:ba:07:6e:ca:34:76:71:3d:96:b9:27:62:3e:
af:2b:1b:fe:0d:4c:8d:a0:15:b0:c7:37:05:55:83:cf:c5:ec:
0b:bb:18:c3:af:c6:fe:4b:e0:60:66:24:d1:71:9a:1e:0a:fb:
f1:ba:37:7b:17:db:b1:5c:a4:a0:db:e8:df:72:be:c5:ea:cf:
a3:1e:70:6b:66:d0:46:ae:3c:65:f3:ef:b9:a2:37:e9:5a:e1:
2d:71:a8:e7:ce:e3:78:e2:ec:31:67:4f:0b:9c:79:58:93:ee:
03:4e:b1:6e:8f:74:5e:72:5d:47:1a:d3:64:f1:76:5b:ab:87:
06:53:7f:cf:04:e0:d4:fe:cd:04:f1:54:07:1c:df:18:75:25:
6b:5e:6c:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:47 2025 by rpki-client