Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/gRP12KASfwOhofMfPPadnuxDGic.roa
File: gRP12KASfwOhofMfPPadnuxDGic.roa (raw, json)
Hash identifier: MS1tDdN4mTkuiZxE3gPnpXlh6LQEJ9UoWL6X905ZlKE=
Subject key identifier: 81:13:F5:D8:A0:12:7F:03:A1:A1:F3:1F:3C:F6:9D:9E:EC:43:1A:27
Certificate issuer: /CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Certificate serial: 5714
Authority key identifier: B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/gRP12KASfwOhofMfPPadnuxDGic.roa
Signing time: Thu 15 Sep 2022 02:47:41 +0000
ROA not before: Thu 15 Sep 2022 02:47:41 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38851
IP address blocks: 43.227.24.0/22 maxlen: 22
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22292 (0x5714)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Validity
Not Before: Sep 15 02:47:41 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8113F5D8A0127F03A1A1F31F3CF69D9EEC431A27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:5f:7d:a3:49:6c:c8:15:ba:fb:2c:00:6d:2e:
9c:ff:fb:83:ef:17:db:1e:dc:9f:bf:cf:aa:1d:56:
08:63:89:d0:20:f8:78:6f:e2:54:6f:d5:63:d4:b2:
05:3a:2e:9c:fe:5a:ff:f6:2e:4e:b6:0a:d7:e4:6b:
f3:ba:ea:c7:a0:b3:d7:f9:a9:7a:75:01:fe:be:b3:
61:07:bb:ec:0b:23:5c:1d:47:84:dd:64:1b:b8:0e:
6c:74:19:ed:bd:d0:07:18:43:a9:ed:38:72:20:c9:
68:3c:5a:c9:92:8c:3b:09:ef:39:05:c4:9e:8b:15:
a2:4a:e4:2e:9f:ab:c8:ca:4e:46:c7:b8:70:2b:43:
ca:6d:f4:c3:aa:24:0f:0e:b6:39:a5:1c:57:67:bf:
37:1b:ce:8f:a3:2b:54:0e:70:e9:aa:27:0c:b1:73:
d6:83:c1:2f:f7:5e:b6:28:41:f0:10:7c:84:9f:a1:
93:d5:fe:d3:5c:5a:8b:ee:23:74:07:ca:1c:50:d6:
27:a6:a8:9b:3a:cf:7f:b5:72:67:5b:2e:68:31:a5:
fe:01:77:2f:69:39:45:15:d6:b4:7d:86:1a:16:23:
0d:dc:ca:b2:6e:3d:8f:3e:56:a7:58:7c:b2:5a:8d:
6e:d4:56:bb:58:f7:f9:4e:95:72:ee:71:1b:0e:fc:
34:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:13:F5:D8:A0:12:7F:03:A1:A1:F3:1F:3C:F6:9D:9E:EC:43:1A:27
X509v3 Authority Key Identifier:
keyid:B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/gRP12KASfwOhofMfPPadnuxDGic.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.227.24.0/22
Signature Algorithm: sha256WithRSAEncryption
87:df:77:89:77:97:6d:2a:d9:4c:ef:21:55:00:69:87:c3:9a:
90:86:9d:6f:95:17:74:01:a1:a1:14:e6:f4:fe:2d:03:58:a1:
e2:5e:94:ca:d6:04:0a:74:07:13:62:b2:de:6a:f6:a0:0c:21:
1e:26:7b:66:c3:87:2c:6c:36:27:fd:16:e8:47:a4:b7:5e:99:
77:b4:12:9f:8a:4c:0f:e8:bd:52:ac:33:8c:85:19:b8:22:21:
bc:26:f6:f5:64:34:36:1c:57:80:35:8e:44:e0:94:7c:21:8e:
8d:77:bf:73:a4:52:8d:8f:43:aa:86:17:d6:0c:04:fa:f6:69:
bd:1f:e9:85:13:8c:09:95:51:f1:80:0e:08:f3:e2:a2:c5:a8:
84:18:5c:50:5a:11:38:e2:21:63:c1:8d:92:7e:35:6f:aa:eb:
a0:09:23:ef:48:08:04:85:d2:d7:2a:19:a6:5c:21:9a:3d:17:
09:03:3c:b4:ad:20:ad:c0:94:16:9d:48:2d:22:6d:fe:ff:87:
85:9e:fb:b4:50:80:f3:f4:a9:77:70:c3:c9:53:34:d0:82:e2:
ab:6e:73:25:e9:8b:a9:94:51:6a:7c:f6:04:db:6d:2f:f4:4b:
3f:fd:3e:c9:23:c2:ca:7c:ce:1c:12:c8:4a:0b:df:5d:3b:72:
fb:ee:67:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:02:37 2025 by rpki-client