Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/1vBQL5ckS35RvmZj3TgMHf2TDKo.roa
File: 1vBQL5ckS35RvmZj3TgMHf2TDKo.roa (raw, json)
Hash identifier: 4ohaSJiy3wKmTn2yag08wTqZKpAg7uAXnRuoLMXkM8c=
Subject key identifier: D6:F0:50:2F:97:24:4B:7E:51:BE:66:63:DD:38:0C:1D:FD:93:0C:AA
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0DAC
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/1vBQL5ckS35RvmZj3TgMHf2TDKo.roa
Signing time: Fri 01 Sep 2023 09:24:31 +0000
ROA not before: Fri 01 Sep 2023 09:24:31 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9919
IP address blocks: 139.175.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3500 (0xdac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 1 09:24:31 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D6F0502F97244B7E51BE6663DD380C1DFD930CAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:16:12:b3:aa:96:c6:bd:58:9c:1d:a7:55:f7:
b5:4b:b0:6c:d5:e4:f5:33:2e:5d:f0:0a:15:5b:f1:
b1:c4:84:0c:02:d1:8c:94:61:f1:2a:ab:86:fe:9d:
b2:9f:56:9d:61:d9:a1:14:a8:b0:13:6e:a3:91:44:
45:bc:bc:99:d9:11:dd:eb:bf:df:1d:dc:9b:cc:e8:
d3:d5:e7:74:b6:1a:f8:6a:27:8c:06:dd:9f:3e:fe:
e2:58:d3:a2:66:95:a1:53:3e:be:c7:3d:00:60:ac:
ca:dd:a9:8f:f9:70:77:5a:5c:80:2f:e6:c3:70:ce:
4c:dc:af:b6:6d:95:01:55:62:d7:1d:ef:06:e7:ac:
6a:8c:51:6e:68:71:ca:da:56:8c:47:74:cc:3f:c0:
32:27:8d:18:9d:33:0f:11:22:eb:70:f1:a5:53:7b:
03:a7:b0:3c:d1:ad:c4:7a:3e:85:fe:d3:28:52:7e:
2c:6f:3c:48:14:ab:86:39:53:75:13:31:c9:e5:f2:
ba:64:b7:af:74:bd:c2:c3:5e:26:41:87:d4:02:68:
f1:8d:a7:52:bd:11:60:6f:e1:aa:49:c0:20:91:b7:
0c:cb:4e:8d:97:ab:ff:01:f8:88:8b:12:1d:15:46:
08:91:1f:36:73:83:08:96:6d:88:fa:4e:69:fd:9f:
bc:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:F0:50:2F:97:24:4B:7E:51:BE:66:63:DD:38:0C:1D:FD:93:0C:AA
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/1vBQL5ckS35RvmZj3TgMHf2TDKo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
139.175.0.0/16
Signature Algorithm: sha256WithRSAEncryption
92:84:3e:44:93:35:c4:7b:45:6f:3d:12:13:65:0c:a9:92:d9:
74:7b:88:7e:9d:94:b6:3d:c4:5f:84:c8:b9:c8:0a:c7:e1:0d:
7f:ec:f0:58:a0:f2:9b:5e:f5:5c:f5:50:0c:df:93:36:f8:69:
f2:38:e5:90:ca:a4:ca:57:71:d1:a1:db:23:a7:95:9d:e0:5f:
f2:23:42:8b:f7:47:c9:b9:c5:8b:78:e2:f4:5a:b0:af:0c:25:
dd:68:8c:5c:65:22:49:02:74:32:70:4e:0b:41:ef:88:ea:4c:
07:86:dd:ce:03:da:72:17:fd:0e:b2:5b:9d:bc:d2:31:f2:95:
31:f4:83:39:02:36:19:65:80:77:18:43:2f:bf:11:ba:ce:f0:
e2:64:21:9f:c9:e1:79:da:9a:16:f5:d4:11:e2:5e:f5:25:46:
bd:91:fd:c2:b7:e8:3d:7c:c0:36:ba:d0:4e:e9:07:49:54:57:
53:c0:26:2e:e4:5c:95:48:fd:a8:c1:7f:89:8d:a9:d3:12:d0:
a6:70:40:e5:34:b9:85:19:68:8f:0d:c6:51:1e:d5:45:42:6e:
47:a4:2f:45:12:ef:08:9f:32:02:0f:c7:8a:68:15:c5:15:09:
aa:06:27:56:63:c0:22:d9:b1:4c:6f:80:36:3a:6f:c7:35:88:
e6:da:96:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:13:43 2025 by rpki-client