Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/iRKUuh79K81XRDn1kB4T_7QQ_a8.roa
File: iRKUuh79K81XRDn1kB4T_7QQ_a8.roa (raw, json)
Hash identifier: 18urDyn6ICt5b52RQ51LCS6obl5FebXJowDlflhnmgs=
Subject key identifier: 89:12:94:BA:1E:FD:2B:CD:57:44:39:F5:90:1E:13:FF:B4:10:FD:AF
Certificate issuer: /CN=B354D31C5462CEEC6CA4D5BFD6F461B2B70BF0B1
Certificate serial: 03
Authority key identifier: B3:54:D3:1C:54:62:CE:EC:6C:A4:D5:BF:D6:F4:61:B2:B7:0B:F0:B1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/s1TTHFRizuxspNW_1vRhsrcL8LE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/iRKUuh79K81XRDn1kB4T_7QQ_a8.roa
Signing time: Mon 26 May 2025 04:59:20 +0000
ROA not before: Mon 26 May 2025 04:59:20 +0000
ROA not after: Sat 23 May 2026 15:30:20 +0000
asID: 152624
IP address blocks: 2402:b20::/32 maxlen: 32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B354D31C5462CEEC6CA4D5BFD6F461B2B70BF0B1
Validity
Not Before: May 26 04:59:20 2025 GMT
Not After : May 23 15:30:20 2026 GMT
Subject: CN=891294BA1EFD2BCD574439F5901E13FFB410FDAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:74:ee:06:cb:c7:c7:b0:f8:ce:40:d9:97:3c:
86:1d:73:f6:2e:bc:aa:4e:35:bf:88:60:ec:c0:6f:
fb:b3:7b:50:eb:d7:06:33:f5:38:4a:75:c3:0a:10:
9f:02:7e:11:16:2c:32:d5:e7:71:0f:c6:e2:2e:72:
60:66:87:2c:67:35:6c:1f:cd:93:50:89:7d:e3:4d:
9e:32:f0:90:64:99:e4:45:d7:72:c4:cb:3d:3f:6c:
9f:3c:1b:0f:37:e6:0e:28:79:f9:67:95:b7:00:de:
bd:dd:97:79:2d:8c:e6:91:14:ba:48:3e:a4:1d:02:
b1:da:ac:44:97:96:51:c8:a2:b7:36:af:70:df:54:
1a:60:58:ad:0d:49:f2:f4:f6:d5:30:f0:9c:69:2c:
f9:c6:36:a2:47:d3:65:3b:a4:48:79:df:29:cc:9d:
87:aa:73:97:76:5b:7e:e0:db:56:50:75:73:b7:f0:
4d:51:7e:ad:46:2a:3a:3b:78:68:9f:b0:0c:4f:59:
a8:66:89:dd:27:19:57:ff:00:ac:57:56:9f:4a:79:
bc:83:24:f8:56:3b:46:60:e3:48:cc:19:20:4d:8f:
02:53:35:a0:a7:f5:72:f7:72:4f:25:5e:9d:0d:4a:
88:30:31:0a:00:c9:1c:68:13:99:c4:f1:71:81:69:
69:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:12:94:BA:1E:FD:2B:CD:57:44:39:F5:90:1E:13:FF:B4:10:FD:AF
X509v3 Authority Key Identifier:
keyid:B3:54:D3:1C:54:62:CE:EC:6C:A4:D5:BF:D6:F4:61:B2:B7:0B:F0:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/s1TTHFRizuxspNW_1vRhsrcL8LE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/s1TTHFRizuxspNW_1vRhsrcL8LE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/iRKUuh79K81XRDn1kB4T_7QQ_a8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:b20::/32
Signature Algorithm: sha256WithRSAEncryption
43:a1:b0:32:f5:29:9d:8b:28:69:9e:8a:d0:62:23:20:53:be:
88:b7:47:ce:8d:86:82:32:58:dc:ac:f0:67:54:fa:d1:63:95:
1d:cf:80:ca:b7:de:7f:c1:80:31:77:6d:70:b0:64:92:a7:86:
2b:c0:e6:4f:a8:44:78:50:06:2b:c3:84:f8:9c:bc:96:bc:bb:
17:25:9f:51:bd:dd:a5:31:97:45:91:b5:20:5d:b6:05:ad:87:
ec:2e:4c:c5:6e:6a:ba:bb:ab:01:89:5e:81:2f:a4:f1:7c:a1:
34:4b:03:4b:55:17:7b:64:78:9e:15:60:56:6c:4d:c0:3a:09:
03:ef:90:be:73:e5:c9:f4:d0:3b:c5:3e:e5:b6:ca:36:3c:96:
51:95:5a:65:c3:d9:49:66:57:18:14:27:ca:5f:58:81:dc:24:
d0:2c:56:02:bb:ac:39:42:7e:d3:a9:6d:cb:31:36:6d:bb:0f:
93:cc:70:7a:ae:0d:39:44:13:47:e2:ce:90:58:4c:35:8b:b7:
b0:fa:86:cb:a9:2c:4c:1f:8c:43:02:a2:69:54:7d:2f:f9:09:
9b:93:34:c5:9f:d1:be:e7:5a:4e:e4:6d:20:c7:d9:ed:aa:c2:
d6:a9:68:46:40:09:d8:50:32:5b:29:f2:9a:08:7c:d6:76:7f:
6a:53:84:d8
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCMzU0
RDMxQzU0NjJDRUVDNkNBNEQ1QkZENkY0NjFCMkI3MEJGMEIxMB4XDTI1MDUyNjA0
NTkyMFoXDTI2MDUyMzE1MzAyMFowMzExMC8GA1UEAxMoODkxMjk0QkExRUZEMkJD
RDU3NDQzOUY1OTAxRTEzRkZCNDEwRkRBRjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALd07gbLx8ew+M5A2Zc8hh1z9i68qk41v4hg7MBv+7N7UOvXBjP1
OEp1wwoQnwJ+ERYsMtXncQ/G4i5yYGaHLGc1bB/Nk1CJfeNNnjLwkGSZ5EXXcsTL
PT9snzwbDzfmDih5+WeVtwDevd2XeS2M5pEUukg+pB0CsdqsRJeWUciitzavcN9U
GmBYrQ1J8vT21TDwnGks+cY2okfTZTukSHnfKcydh6pzl3ZbfuDbVlB1c7fwTVF+
rUYqOjt4aJ+wDE9ZqGaJ3ScZV/8ArFdWn0p5vIMk+FY7RmDjSMwZIE2PAlM1oKf1
cvdyTyVenQ1KiDAxCgDJHGgTmcTxcYFpaWECAwEAAaOCAe8wggHrMB0GA1UdDgQW
BBSJEpS6Hv0rzVdEOfWQHhP/tBD9rzAfBgNVHSMEGDAWgBSzVNMcVGLO7Gyk1b/W
9GGytwvwsTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP
oE2GS3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9VV0FZSU8v
czFUVEhGUml6dXhzcE5XXzF2UmhzcmNMOExFLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9zMVRUSEZSaXp1eHNwTldfMXZSaHNyY0w4TEUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9VV0FZSU8vaVJLVXVoNzlLODFYUkRuMWtC
NFRfN1FRX2E4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3
L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQC
CyAwDQYJKoZIhvcNAQELBQADggEBAEOhsDL1KZ2LKGmeitBiIyBTvoi3R86NhoIy
WNys8GdU+tFjlR3PgMq33n/BgDF3bXCwZJKnhivA5k+oRHhQBivDhPicvJa8uxcl
n1G93aUxl0WRtSBdtgWth+wuTMVuarq7qwGJXoEvpPF8oTRLA0tVF3tkeJ4VYFZs
TcA6CQPvkL5z5cn00DvFPuW2yjY8llGVWmXD2UlmVxgUJ8pfWIHcJNAsVgK7rDlC
ftOpbcsxNm27D5PMcHquDTlEE0fizpBYTDWLt7D6hsupLEwfjEMComlUfS/5CZuT
NMWf0b7nWk7kbSDH2e2qwtapaEZACdhQMlsp8poIfNZ2f2pThNg=
-----END CERTIFICATE-----
Generated at Thu Jun 5 20:19:48 2025 by rpki-client