Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/r-2m0pzDOHYooyuzYw1cw2xRy90.roa
File: r-2m0pzDOHYooyuzYw1cw2xRy90.roa (raw, json)
Hash identifier: a472fIlgFuUK3IBIpcTJdk413GHZFRn7cqryU7dcZUM=
Subject key identifier: AF:ED:A6:D2:9C:C3:38:76:28:A3:2B:B3:63:0D:5C:C3:6C:51:CB:DD
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0913
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/r-2m0pzDOHYooyuzYw1cw2xRy90.roa
Signing time: Sun 07 Feb 2021 12:45:18 +0000
ROA not before: Sun 07 Feb 2021 12:45:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18429
IP address blocks: 103.224.200.0/22 maxlen: 22
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2323 (0x913)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Feb 7 12:45:18 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AFEDA6D29CC3387628A32BB3630D5CC36C51CBDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e8:07:a2:6a:f1:0b:d3:49:db:2e:a9:67:f6:
75:86:88:59:75:33:e1:58:a5:e7:28:e7:48:34:dd:
fc:66:f2:8e:8e:e7:8c:1e:98:72:64:81:e5:ec:39:
7f:36:d6:3d:a5:93:07:8d:9c:69:27:1b:6f:74:e0:
8f:0f:97:4e:34:f4:8a:51:4c:9c:22:5e:43:07:2d:
df:3a:40:5e:93:e8:df:49:29:f2:0f:e6:a2:08:43:
ec:2e:82:4f:d5:46:86:f9:ab:92:d3:dd:a0:a9:d9:
e7:a3:72:87:ec:75:dc:e4:bf:2a:8d:ea:17:fc:07:
bd:10:76:ce:20:7b:90:0f:2f:e8:6e:f3:ac:af:fc:
96:eb:58:0e:14:1d:4a:be:dc:b8:65:81:44:43:1c:
49:4b:af:bb:94:ff:9d:d6:d4:31:cc:8b:9b:32:82:
53:02:cd:39:38:ae:0e:1a:ad:0f:af:bb:b1:79:31:
fe:40:39:22:5d:ab:db:67:6d:6a:f8:25:48:ff:f1:
44:57:b4:8b:00:d8:e7:62:0e:97:e2:1a:09:68:d3:
96:b1:92:08:c6:e0:ae:66:0e:d8:bf:76:31:c0:d2:
a2:e1:f0:01:14:73:ff:73:5d:01:d0:df:c0:36:c5:
f5:1e:c5:b5:dc:12:ca:34:e6:31:d8:73:5d:cc:49:
a4:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:ED:A6:D2:9C:C3:38:76:28:A3:2B:B3:63:0D:5C:C3:6C:51:CB:DD
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/r-2m0pzDOHYooyuzYw1cw2xRy90.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.224.200.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:14:b2:21:f5:70:48:67:66:b6:53:b6:ae:28:51:69:ca:43:
18:54:ba:12:80:b4:bf:b0:e6:b4:86:18:e7:94:1b:8b:26:3b:
6d:15:f6:36:68:45:14:bf:33:3c:a5:37:55:ec:ac:9c:99:e1:
06:51:4b:4a:85:4f:5b:15:18:76:a1:c1:3c:51:42:76:49:e1:
9f:92:66:34:fc:b3:5e:e6:71:e3:6d:bb:34:8a:ae:87:e7:24:
d6:a0:63:79:bb:70:1a:89:e6:28:06:3c:8e:43:ee:d7:5a:8d:
05:c9:cb:dc:ab:d9:54:f1:e8:17:57:33:1d:42:c1:96:ac:42:
c2:27:d0:44:5d:7b:0c:7c:ee:cc:b6:96:aa:74:79:2a:46:c6:
0a:eb:f6:aa:19:86:fa:3c:40:46:de:65:98:69:1d:02:ac:5c:
e8:7e:60:88:56:fc:bd:7e:20:aa:4a:08:d8:11:63:1e:ac:94:
06:26:96:a5:40:88:74:fa:84:dc:a9:27:4b:64:a6:4a:b8:35:
da:5c:01:61:40:1c:a6:e1:e7:7f:de:e6:ad:07:14:73:ed:d8:
a2:04:58:fd:a2:ba:a5:c8:71:eb:dc:55:0f:30:4c:4a:d4:a6:
3f:0b:35:3f:b2:fd:b3:aa:2b:7b:58:f0:40:1a:e2:e5:fc:ae:
2d:cd:4a:48
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCRMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMTAyMDcx
MjQ1MThaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEFGRURBNkQyOUNDMzM4
NzYyOEEzMkJCMzYzMEQ1Q0MzNkM1MUNCREQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC66AeiavEL00nbLqln9nWGiFl1M+FYpeco50g03fxm8o6O54we
mHJkgeXsOX821j2lkweNnGknG2904I8Pl0409IpRTJwiXkMHLd86QF6T6N9JKfIP
5qIIQ+wugk/VRob5q5LT3aCp2eejcofsddzkvyqN6hf8B70Qds4ge5APL+hu86yv
/JbrWA4UHUq+3LhlgURDHElLr7uU/53W1DHMi5syglMCzTk4rg4arQ+vu7F5Mf5A
OSJdq9tnbWr4JUj/8URXtIsA2OdiDpfiGglo05axkgjG4K5mDti/djHA0qLh8AEU
c/9zXQHQ38A2xfUexbXcEso05jHYc13MSaRfAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUr+2m0pzDOHYooyuzYw1cw2xRy90wHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9yLTJtMHB6RE9IWW9veXV6WXcx
Y3cyeFJ5OTAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+DI
MA0GCSqGSIb3DQEBCwUAA4IBAQClFLIh9XBIZ2a2U7auKFFpykMYVLoSgLS/sOa0
hhjnlBuLJjttFfY2aEUUvzM8pTdV7KycmeEGUUtKhU9bFRh2ocE8UUJ2SeGfkmY0
/LNe5nHjbbs0iq6H5yTWoGN5u3AaieYoBjyOQ+7XWo0Fycvcq9lU8egXVzMdQsGW
rELCJ9BEXXsMfO7MtpaqdHkqRsYK6/aqGYb6PEBG3mWYaR0CrFzofmCIVvy9fiCq
SgjYEWMerJQGJpalQIh0+oTcqSdLZKZKuDXaXAFhQBym4ed/3uatBxRz7diiBFj9
orqlyHHr3FUPMExK1KY/CzU/sv2zqit7WPBAGuLl/K4tzUpI
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:27 2025 by rpki-client