Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/0mioClO72D77-STFDkTIp3JMUwo.roa
File: 0mioClO72D77-STFDkTIp3JMUwo.roa (raw, json)
Hash identifier: n+H13eobr1BCT32wXhCYQj8Zn8AnoVecVJQxQPFZxlE=
Subject key identifier: D2:68:A8:0A:53:BB:D8:3E:FB:F9:24:C5:0E:44:C8:A7:72:4C:53:0A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0mioClO72D77-STFDkTIp3JMUwo.roa
Signing time: Thu 15 Sep 2022 02:43:20 +0000
ROA not before: Thu 15 Sep 2022 02:43:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 103.234.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:20 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D268A80A53BBD83EFBF924C50E44C8A7724C530A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:98:fa:2a:1a:bf:07:57:9d:cf:1d:b4:51:a3:
f4:ac:88:e4:79:23:bc:99:33:d1:fa:66:eb:75:3f:
65:9a:b3:36:37:35:32:56:1a:29:f4:0f:54:e6:13:
2c:21:30:e3:8d:2d:63:f3:06:7d:42:e9:f1:36:e2:
17:e1:e4:eb:fe:a1:54:68:fa:be:92:ef:8c:6b:84:
60:d0:cd:66:27:7d:d2:39:a4:32:19:d2:6d:e5:98:
5e:57:f2:26:09:90:a3:40:6e:ec:6c:c9:05:95:12:
54:d1:84:81:e4:83:86:8e:5b:87:74:53:9e:6d:c3:
1c:c2:d0:b8:f4:25:52:aa:dc:b2:0a:f9:9f:92:52:
aa:04:ac:94:aa:6b:7a:f8:6d:5b:86:94:63:33:cc:
ec:32:ab:c2:5c:2a:00:a5:ba:6b:23:97:10:39:09:
32:49:06:e9:3d:5e:57:4d:9e:b0:98:ff:93:07:88:
32:51:9c:e2:8b:35:0f:22:f0:d2:d9:78:f2:5b:58:
b2:2b:50:4c:c4:32:b2:af:02:39:52:77:e2:df:fe:
36:37:da:71:7a:99:55:0c:d1:0c:e5:63:72:6c:15:
66:98:1c:bb:cf:15:47:e5:33:6d:61:a1:cc:6d:5b:
0e:4e:79:45:5a:e5:19:58:fa:3c:00:4d:45:3e:c2:
e6:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:68:A8:0A:53:BB:D8:3E:FB:F9:24:C5:0E:44:C8:A7:72:4C:53:0A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0mioClO72D77-STFDkTIp3JMUwo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.40.0/22
Signature Algorithm: sha256WithRSAEncryption
90:cb:84:da:41:07:fa:66:a1:9a:90:e5:86:12:9f:ee:47:e9:
31:5f:0e:5a:b0:a2:5b:14:c7:72:9c:40:94:b1:49:a5:21:16:
8d:63:5a:40:c5:cc:a5:a4:56:23:88:c1:c6:37:51:b4:3d:0e:
5a:7d:1d:5e:1e:15:1e:5e:32:0a:70:9f:74:da:8b:f4:c4:43:
82:50:72:8d:85:70:42:40:c1:a8:3e:29:f0:d0:e5:c8:ba:5b:
d4:9d:ff:1e:af:5e:11:8a:b4:23:cc:1b:15:33:d0:8f:89:75:
8c:ad:86:ef:c7:c2:a9:62:8a:68:f9:7d:05:7f:49:bc:c0:0f:
bb:be:7f:f2:ed:cb:71:62:03:39:00:2d:36:c3:4e:52:58:f5:
17:71:5a:89:09:25:f0:07:1b:da:7d:ac:e2:11:a0:07:90:74:
b3:fc:b8:e9:a5:5a:36:06:5a:57:3e:73:c2:4e:5a:3c:68:e3:
11:28:e2:3c:9c:c0:93:b7:4b:ed:1a:16:3d:15:ff:c1:a4:72:
2f:ba:ec:cc:ff:d6:0d:c4:fd:b9:6e:2a:18:4c:93:57:e0:86:
f3:ad:fa:c6:18:98:3c:cb:8e:c6:fb:a9:61:1c:47:22:cd:b5:
72:48:3d:7b:1a:26:38:09:d0:af:ad:a2:83:d3:85:9a:d1:83:
dc:0d:b1:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:22:04 2025 by rpki-client