Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/GpRfStGdn9UiLNV7RARQvI_LJAo.roa
File: GpRfStGdn9UiLNV7RARQvI_LJAo.roa (raw, json)
Hash identifier: XSCz2ePNllCnPkq8whvNVrcKltdrxovSiFGVrb8P7bM=
Subject key identifier: 1A:94:5F:4A:D1:9D:9F:D5:22:2C:D5:7B:44:04:50:BC:8F:CB:24:0A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1051
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GpRfStGdn9UiLNV7RARQvI_LJAo.roa
Signing time: Wed 01 Feb 2023 10:28:24 +0000
ROA not before: Wed 01 Feb 2023 10:28:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 106.105.108.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4177 (0x1051)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:24 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1A945F4AD19D9FD5222CD57B440450BC8FCB240A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ff:77:4a:81:33:d2:25:93:b4:96:e4:74:fc:
2c:e7:97:e7:d3:6a:8d:0d:7a:e9:e2:ca:42:af:0c:
1d:ec:1a:53:a7:1d:75:8c:2d:f2:b5:ca:18:bb:ac:
1e:85:38:01:a3:00:90:60:49:ba:0b:84:83:b7:50:
c8:36:c1:ab:c3:b2:b5:cf:b5:bb:1b:e1:f2:d4:a7:
dc:9e:40:43:78:0b:31:c8:be:32:73:24:71:e5:03:
94:ff:dc:17:35:e9:a7:db:3e:64:47:7e:91:06:27:
b8:01:5c:59:67:43:98:df:9a:02:ca:64:92:d7:5c:
b4:b5:8c:ad:3c:7f:d8:47:07:2d:2e:4f:69:ce:33:
53:a0:c1:c8:9b:84:7d:16:e2:2d:61:0c:ba:74:1e:
22:16:ef:5a:2b:7e:a6:2f:65:6d:7a:1a:3a:8d:d1:
ce:8f:92:bb:c7:4e:a1:7f:f2:19:5a:d3:95:12:3c:
94:fd:b6:39:96:ee:16:e2:26:ad:13:a2:b7:5a:09:
c7:62:0d:9c:3f:69:89:b6:f9:b5:66:6b:32:a8:9e:
73:94:4b:27:4d:cf:95:69:be:dc:6e:d6:59:1a:15:
89:36:9f:a2:7b:53:8b:d8:e8:75:2b:53:4f:e6:9c:
db:2d:06:46:dc:56:1f:a2:40:81:3f:25:06:03:9e:
53:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:94:5F:4A:D1:9D:9F:D5:22:2C:D5:7B:44:04:50:BC:8F:CB:24:0A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GpRfStGdn9UiLNV7RARQvI_LJAo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.108.0/23
Signature Algorithm: sha256WithRSAEncryption
36:5e:29:99:8f:a5:2a:d6:e7:7b:03:57:d6:56:b5:5b:2d:53:
ba:5a:3f:97:8d:61:18:3d:06:6f:c0:c9:59:e2:3b:b5:8f:59:
d4:63:34:33:b9:c0:1d:59:f8:06:69:4c:0b:8b:18:2f:ca:89:
49:9f:15:ca:be:72:3c:12:27:84:1d:bb:fd:80:68:17:92:99:
c8:a1:3a:bd:e0:71:4b:77:df:88:63:d1:5d:82:85:53:ca:bf:
4d:2a:36:a4:e3:94:8d:2e:64:c5:a1:9a:a3:26:92:8c:32:d2:
8d:21:fb:5f:35:f7:d3:ab:7e:b7:52:60:0d:2d:6b:3f:da:04:
cd:c5:7d:b9:f5:5a:f8:34:63:3d:63:ca:f1:2f:0e:87:35:af:
8f:89:83:eb:00:1b:1b:70:1e:7f:78:16:55:54:d3:e2:8d:aa:
d4:cd:40:dd:fc:45:53:c6:0b:24:4a:29:f5:0f:c4:b8:28:d9:
e0:78:8e:90:49:be:4c:01:5e:9e:1d:0e:ed:47:7f:f9:d0:8c:
7f:d8:6e:6b:04:e4:bc:e3:c3:34:61:75:19:79:a5:39:d4:77:
b5:24:59:59:82:4e:21:be:44:6e:19:03:44:37:9a:b3:ff:17:
b4:d7:49:55:4e:b7:34:3e:a7:e1:9f:86:4d:5d:d3:9a:f7:0d:
64:ff:d5:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:23:00 2025 by rpki-client