Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/7wa0Xfm34lmYUtqOfpscEZ789x4.roa
File: 7wa0Xfm34lmYUtqOfpscEZ789x4.roa (raw, json)
Hash identifier: ZfGzxYaU2n9r107TakBxGuqv6W/B7utwqOA9zxcpN3E=
Subject key identifier: EF:06:B4:5D:F9:B7:E2:59:98:52:DA:8E:7E:9B:1C:11:9E:FC:F7:1E
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 10E4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7wa0Xfm34lmYUtqOfpscEZ789x4.roa
Signing time: Wed 01 Feb 2023 10:29:10 +0000
ROA not before: Wed 01 Feb 2023 10:29:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 211.74.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4324 (0x10e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:29:10 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EF06B45DF9B7E2599852DA8E7E9B1C119EFCF71E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:8d:89:48:69:5f:b0:9f:83:bf:37:f5:59:3b:
56:2c:0a:43:b6:32:f0:93:c9:b1:42:fa:6d:cc:ab:
02:6f:ae:cb:36:6d:bf:a9:26:a2:2d:a6:63:17:83:
2d:b9:58:f8:df:f8:d8:d4:75:1e:0a:fb:b5:7f:dc:
0e:79:7b:b9:16:23:6b:48:3f:a8:68:bd:bd:85:4a:
49:3e:19:3f:05:a7:c2:51:4d:33:ae:f6:4a:af:a6:
58:69:18:75:e1:74:77:24:e7:68:b6:93:2b:18:49:
51:42:3c:0d:89:da:9e:16:b8:63:bb:e9:22:49:4e:
6e:63:46:59:20:25:ed:66:53:a4:fa:09:e2:1d:61:
8f:e6:5b:9a:69:98:ad:75:80:aa:be:4f:37:4a:af:
e6:c4:86:a8:5b:3c:9e:5f:d5:27:fe:72:c0:86:81:
cd:a0:04:a6:f3:c5:1d:65:75:8b:0f:16:c7:0a:d7:
79:0f:91:b1:51:d3:30:72:09:2d:1c:6c:ee:9d:21:
14:05:ca:dc:a2:7a:a0:28:75:f7:db:02:40:fc:b2:
99:b3:69:74:bc:96:e8:ea:01:c0:82:64:23:c4:36:
1f:b7:83:47:43:dd:8c:c6:67:43:8d:56:7d:7f:03:
8f:28:fc:ef:1c:f8:c9:23:db:91:25:ad:38:5a:d6:
96:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:06:B4:5D:F9:B7:E2:59:98:52:DA:8E:7E:9B:1C:11:9E:FC:F7:1E
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7wa0Xfm34lmYUtqOfpscEZ789x4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.74.128.0/17
Signature Algorithm: sha256WithRSAEncryption
8e:4c:1b:61:6d:7a:1d:0b:06:4b:ae:33:6e:c0:3e:7a:20:2d:
f7:c9:13:17:1b:3f:db:66:f1:39:cf:c2:83:8c:3f:87:2e:ec:
a4:bf:ee:ec:1c:16:b3:52:9a:9d:43:73:4e:c6:fa:e5:c4:21:
5f:06:c3:3b:13:d0:75:3a:3c:9c:7b:e8:e8:18:45:08:6f:4d:
5b:e8:9b:d2:eb:d7:bd:4b:1c:0a:b7:c4:57:93:73:38:06:0d:
50:e7:67:f1:18:4e:e9:52:e6:14:2e:3b:24:f0:a3:ff:1f:d8:
94:ff:ae:06:df:cf:cb:eb:cb:d1:06:3f:9a:9b:b9:1f:58:5a:
f1:8e:5a:a2:83:c9:56:de:b9:eb:dc:e9:1c:06:6c:ad:08:46:
6b:d6:3c:9f:bd:15:77:f7:1f:17:d4:14:c5:e2:68:db:bd:d5:
fb:0e:58:29:10:dc:5b:92:0b:e6:f8:a4:95:6e:ec:bd:fd:f2:
ce:a1:8a:5f:b9:69:8e:8b:f7:d3:f1:02:bb:b7:e3:51:00:f3:
c5:c3:0f:1c:73:34:28:e4:98:87:cd:5b:bd:94:17:8d:f3:3c:
80:8c:8d:00:fb:a5:ff:70:62:ae:55:3f:2f:8a:f6:3a:64:47:
10:bd:a7:a7:7d:41:c7:54:5c:2a:04:f3:64:6b:b4:37:47:86:
dc:e8:62:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:40:37 2025 by rpki-client