Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Ia785aEzTdspJ9vSVaOGdb57C8o.roa
File: Ia785aEzTdspJ9vSVaOGdb57C8o.roa (raw, json)
Hash identifier: dbSHJgO4HiARYXBxxOxQQ6Wjs8VysXHtBBXbG3xCsfA=
Subject key identifier: 21:AE:FC:E5:A1:33:4D:DB:29:27:DB:D2:55:A3:86:75:BE:7B:0B:CA
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Ia785aEzTdspJ9vSVaOGdb57C8o.roa
Signing time: Thu 15 Sep 2022 02:44:00 +0000
ROA not before: Thu 15 Sep 2022 02:44:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 218.210.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:44:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=21AEFCE5A1334DDB2927DBD255A38675BE7B0BCA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:71:1d:84:25:22:f0:98:d5:a2:cd:94:dc:42:
e4:89:6f:0c:b8:8c:fa:cb:60:12:44:1a:d4:6b:3e:
8e:b3:49:7d:81:e4:86:15:54:6b:a9:f4:e6:62:0e:
eb:4c:24:67:dd:23:7f:1d:eb:05:94:c7:1a:78:8c:
27:23:cb:c6:6b:a4:4d:3e:69:a1:3d:62:76:3d:bc:
21:26:8f:18:0e:b5:89:3a:05:78:af:0e:99:8f:24:
e6:4a:13:58:d7:af:d3:d4:9e:cb:74:97:68:93:d2:
02:f7:ec:22:ec:ed:ff:16:5c:ad:79:a5:b0:a0:81:
8c:c4:e0:2d:ea:6a:d3:fb:3b:52:0d:a3:8f:c2:40:
85:f5:1a:5c:63:a3:21:38:3f:40:9e:06:c4:ac:0d:
19:c2:e3:e0:d6:e0:dd:dd:55:4e:65:6e:eb:22:e2:
e2:c1:71:aa:0c:2b:88:d8:1d:10:ca:6e:e9:a3:a3:
c7:3e:c8:56:47:06:c1:0e:c0:fd:1b:cd:f0:6a:e9:
23:15:9f:14:c6:d9:14:a7:47:db:af:6e:80:c7:28:
aa:72:b5:e0:3d:47:3f:d3:69:21:d9:1a:2e:74:8e:
c4:d1:ab:83:d0:03:d5:f5:29:e5:2f:b7:65:61:4c:
3e:89:5c:43:d2:34:4d:43:b3:9d:b2:01:51:ec:61:
5e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:AE:FC:E5:A1:33:4D:DB:29:27:DB:D2:55:A3:86:75:BE:7B:0B:CA
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Ia785aEzTdspJ9vSVaOGdb57C8o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.48.0/20
Signature Algorithm: sha256WithRSAEncryption
c0:15:4f:ca:84:8d:51:83:bb:90:b2:af:8f:1f:a0:39:9a:5d:
16:4d:6b:3d:41:08:28:68:18:dc:5a:25:b1:2b:19:00:08:43:
3b:28:48:b9:5b:02:ea:a1:46:cf:46:d0:71:d5:b3:7c:00:12:
89:dc:f0:e4:42:c8:20:d5:06:6e:4c:9a:4f:ab:09:1c:39:b2:
71:85:28:1d:63:3f:67:34:4b:b6:b8:80:53:d9:43:aa:b5:c9:
f1:4e:f0:8f:ca:6e:4c:79:54:05:7b:e8:7a:56:7c:7e:2e:01:
e2:4d:bd:2c:56:f0:d8:ea:d4:32:31:f6:44:be:1b:c3:2b:4e:
52:eb:26:01:2d:1d:5b:86:f9:d1:f6:c8:0a:64:63:0f:96:08:
69:86:43:e9:ac:17:b1:a5:33:9b:63:49:73:8d:30:71:ce:9d:
30:2e:80:f6:a3:00:a1:7f:42:67:43:66:6c:af:4b:5d:99:5d:
2d:4a:01:e6:bb:da:53:94:80:16:ae:8a:5c:5f:59:1a:54:6d:
90:c3:b5:14:61:52:f2:b0:8d:74:6f:98:89:a0:00:e1:f1:02:
17:41:39:93:a6:d7:06:51:b4:de:5c:65:ce:b4:82:f9:87:02:
67:9e:dc:8f:4b:95:09:b6:fd:86:b3:87:5e:59:76:ff:57:e9:
62:4e:a0:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:13:45 2025 by rpki-client