Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/5O_puDY8PMDI6e2n2FbF29qtWnw.roa
File: 5O_puDY8PMDI6e2n2FbF29qtWnw.roa (raw, json)
Hash identifier: 6rzr72iwpw73C6b23Bppw6PXS54xDI1iFp96DNtekf8=
Subject key identifier: E4:EF:E9:B8:36:3C:3C:C0:C8:E9:ED:A7:D8:56:C5:DB:DA:AD:5A:7C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1038
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5O_puDY8PMDI6e2n2FbF29qtWnw.roa
Signing time: Wed 01 Feb 2023 10:28:17 +0000
ROA not before: Wed 01 Feb 2023 10:28:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 123.51.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4152 (0x1038)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:17 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E4EFE9B8363C3CC0C8E9EDA7D856C5DBDAAD5A7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:eb:cf:94:12:fd:b9:fe:86:bd:24:d8:7d:af:
13:38:63:0b:cb:e1:82:9e:fe:81:e6:30:7d:51:db:
9a:16:12:2c:bb:6e:03:b1:9b:7d:c7:3f:d5:75:dc:
34:14:6b:c8:ce:35:22:ae:2e:12:c5:30:36:89:77:
8e:36:76:62:c3:73:a2:62:23:f6:bd:04:4b:6f:1a:
7b:54:0c:d7:c4:f8:ee:7d:59:a2:29:ae:13:54:01:
f6:a8:84:17:5d:8d:22:67:b1:b6:44:4f:7e:e7:45:
a2:fb:d8:96:0c:e3:40:4f:ce:a7:15:05:81:be:a2:
aa:68:73:86:8e:4f:87:c4:40:ad:ec:61:bf:85:c1:
50:86:e8:39:1b:3b:d8:d0:66:71:51:6b:e9:f9:2f:
b4:e5:98:6c:ed:04:a9:82:0f:ce:4b:4e:aa:20:30:
75:93:71:f7:74:ca:46:10:ba:9d:97:a3:3a:cc:a5:
7b:ea:05:9e:37:a4:e9:c8:fa:d3:48:39:df:8b:9e:
9b:b6:e0:35:a5:ae:c4:61:f1:62:7b:ff:07:be:8f:
19:19:5f:8c:d3:39:06:d6:75:5a:33:72:c3:53:8e:
ac:6c:6f:d5:76:0d:95:59:ed:c5:90:9b:6b:70:e9:
8e:98:21:4b:01:eb:9c:28:96:7b:7d:f4:09:77:70:
a5:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:EF:E9:B8:36:3C:3C:C0:C8:E9:ED:A7:D8:56:C5:DB:DA:AD:5A:7C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5O_puDY8PMDI6e2n2FbF29qtWnw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.51.128.0/17
Signature Algorithm: sha256WithRSAEncryption
41:cd:47:36:66:3b:5d:49:62:57:f1:a6:4b:37:ee:e9:45:d3:
69:d0:af:9f:9a:43:13:fa:4c:c2:10:80:27:5d:d7:c4:db:b0:
2a:be:85:69:78:e4:60:29:5f:aa:3b:b4:3d:db:ec:3d:f1:0a:
ae:99:d0:35:ca:66:88:d4:42:e1:70:07:71:62:6c:41:54:3a:
ee:a3:38:23:03:c2:11:e3:b9:13:7b:8d:d1:e4:f5:f0:51:3f:
5c:03:44:44:ba:0f:13:d9:76:79:83:99:1e:30:fe:7c:cb:ca:
52:9c:64:83:e9:5e:de:ab:78:2a:73:92:fc:0c:56:e1:21:27:
00:95:65:e3:2e:a6:e2:3b:91:b4:05:b3:a8:bd:6e:19:b7:06:
63:b6:47:91:5c:b5:41:0c:64:28:9a:b9:2e:d5:f0:d3:a2:38:
7c:35:90:9d:f8:45:9e:43:fb:1f:bb:e2:c7:7d:67:c0:e7:31:
16:e4:6b:6a:6c:b6:19:ea:ed:e7:c0:c4:f1:28:cf:3d:5d:37:
37:af:fd:30:36:64:fd:8b:92:d4:71:39:d2:49:83:cc:69:9a:
d3:3b:ce:6d:8a:95:30:ad:23:b6:8c:f4:fe:ed:33:84:22:e1:
58:53:60:16:ff:d3:f6:dd:d9:fc:ae:fa:3b:3c:4b:12:16:48:
d2:ef:6a:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 15:17:04 2025 by rpki-client