Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/DKZJKyoVq5FyqHHRz8YmVVq_JSA.roa
File: DKZJKyoVq5FyqHHRz8YmVVq_JSA.roa (raw, json)
Hash identifier: wrvxKHGgr9+GIfxCZcfO+Z9mFfA5GNnNzRBACKyUbUU=
Subject key identifier: 0C:A6:49:2B:2A:15:AB:91:72:A8:71:D1:CF:C6:26:55:5A:BF:25:20
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1315
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/DKZJKyoVq5FyqHHRz8YmVVq_JSA.roa
Signing time: Fri 01 Sep 2023 09:24:27 +0000
ROA not before: Fri 01 Sep 2023 09:24:27 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4780
IP address blocks: 123.205.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4885 (0x1315)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 1 09:24:27 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0CA6492B2A15AB9172A871D1CFC626555ABF2520
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:bd:1a:98:63:de:89:30:92:45:f7:59:23:ca:
86:55:eb:53:18:fa:7e:97:33:aa:de:d0:be:d5:cc:
6d:4d:cd:e0:5c:52:7f:2c:81:ca:59:3d:42:f5:8d:
95:3c:49:08:79:31:b1:09:29:0e:6b:09:17:e2:c0:
0a:6e:1d:7c:7e:22:28:7c:0c:2e:e4:72:17:ed:30:
42:dd:5c:0a:44:7a:3b:4e:7a:21:f2:de:c6:e6:f3:
96:38:30:a5:e0:be:b6:a6:ad:bf:df:f3:c2:20:a3:
6d:8f:84:6b:70:e0:bf:98:09:6d:08:ef:f6:66:62:
c1:e1:46:e0:19:a1:88:b0:0c:53:b4:c2:08:9f:78:
8e:bb:25:48:28:ed:92:24:42:98:5d:f0:b3:bf:cb:
91:fb:c0:73:98:0a:db:68:dd:5b:10:ca:74:1b:d3:
43:e1:d1:55:8e:6a:94:9f:8d:0f:a3:a2:b6:38:9a:
d8:1b:74:ec:63:ed:1a:d3:88:13:3b:c3:54:53:ef:
0f:e1:c4:f7:5f:b1:86:3f:b3:3d:de:a8:9e:83:4f:
e9:82:18:fc:5a:2d:76:20:7b:f6:b2:16:20:0e:89:
0a:6f:00:33:89:29:e0:e0:e1:c9:59:32:62:c9:95:
43:84:92:18:6d:e9:b1:a1:e3:01:46:67:ac:ac:01:
a4:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:A6:49:2B:2A:15:AB:91:72:A8:71:D1:CF:C6:26:55:5A:BF:25:20
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/DKZJKyoVq5FyqHHRz8YmVVq_JSA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.39.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:f6:9c:9c:a0:34:cb:58:14:ef:cb:4e:29:9f:7a:8e:2c:a4:
bf:2e:23:97:e1:de:80:d7:91:05:c7:59:ab:aa:13:36:17:bf:
cc:81:a2:28:4a:f4:27:b6:4e:b9:03:ff:a4:08:e5:24:3e:85:
a0:f4:cb:5c:d7:b4:0e:ac:07:46:77:83:ad:31:17:1d:e6:f9:
32:8d:65:0c:74:19:26:95:47:dd:9f:cc:4c:00:84:b0:e9:84:
d9:84:ca:10:5e:70:11:93:d4:cb:6f:f6:a4:18:cb:f9:09:f5:
9f:11:8e:08:be:94:a5:9c:08:08:db:e3:a5:ee:41:3c:1f:c1:
fe:9a:51:f3:c6:40:73:c4:a7:ed:41:90:ab:da:88:18:69:5e:
9e:01:bf:98:97:47:8b:ec:24:4d:4b:81:d6:7c:55:4c:30:80:
d8:05:e0:70:85:67:c2:f0:3b:44:23:fc:31:d6:fd:e6:28:d0:
af:e8:46:36:5f:ce:7c:ac:62:ff:3a:38:77:f7:14:53:fe:44:
1d:74:70:46:10:f9:58:16:c3:c6:7d:9f:bf:79:00:4e:03:ab:
57:ad:04:01:ff:c1:4b:98:fb:4e:71:45:b0:b9:51:61:41:35:
26:f7:39:a5:74:2d:1b:fb:ad:5c:56:92:90:74:5e:51:ee:20:
9e:7f:1d:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:32:19 2025 by rpki-client