Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/MXl4nE9JDEOBRqhunyBCuXqWk5o.roa
File: MXl4nE9JDEOBRqhunyBCuXqWk5o.roa (raw, json)
Hash identifier: 8BmMlknLp8WOz3CIyMWj3Boqjo1QQF6dqsz2tFs/KR0=
Subject key identifier: 31:79:78:9C:4F:49:0C:43:81:46:A8:6E:9F:20:42:B9:7A:96:93:9A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 138F
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MXl4nE9JDEOBRqhunyBCuXqWk5o.roa
Signing time: Fri 01 Sep 2023 09:25:09 +0000
ROA not before: Fri 01 Sep 2023 09:25:09 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131602
IP address blocks: 106.105.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5007 (0x138f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 1 09:25:09 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=3179789C4F490C438146A86E9F2042B97A96939A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ec:ee:42:65:13:87:90:fd:9e:6c:8f:57:52:
a7:f6:18:d7:e3:a9:98:f4:98:ad:53:7c:62:5a:44:
b7:b2:80:75:27:00:c6:0e:b3:39:13:df:f4:0e:cb:
5e:ab:38:cb:ba:be:fc:cc:d2:38:40:b1:be:bd:d8:
9e:c3:b9:08:02:e7:07:ef:c1:cd:42:2b:85:8d:5a:
2f:1b:20:b2:e2:22:26:2d:ff:25:8f:43:ce:24:39:
fd:70:b6:9c:a1:4c:f2:c9:ba:72:fe:f8:cf:86:07:
10:a3:cb:cc:37:e8:17:c3:02:b9:88:11:4d:cc:94:
81:16:77:fb:8c:34:1d:05:0d:18:d1:d3:a4:f8:dc:
07:2d:34:31:c2:1c:99:4d:5a:8f:9a:b8:3d:e9:0e:
53:15:7e:19:18:e6:ac:f2:06:69:7c:5e:96:eb:53:
c6:63:7b:d0:1f:ca:02:43:a2:d8:b1:85:bb:ac:e9:
6a:75:5c:a3:38:55:37:df:08:c2:6f:82:d0:11:da:
93:08:16:d6:bf:e6:79:60:57:69:eb:81:bf:48:3e:
ef:2e:fb:0c:c8:c1:f2:fc:8e:45:e7:a5:61:02:0a:
4e:dd:c3:e2:12:4b:a0:10:81:00:ac:b9:54:8d:f6:
5b:61:e3:b5:d9:d3:82:0f:de:56:0c:e4:b7:4e:e8:
db:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:79:78:9C:4F:49:0C:43:81:46:A8:6E:9F:20:42:B9:7A:96:93:9A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MXl4nE9JDEOBRqhunyBCuXqWk5o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.111.0/24
Signature Algorithm: sha256WithRSAEncryption
59:43:bf:31:6e:0c:2d:d0:ee:41:65:5d:cb:6c:0e:c1:fd:d8:
26:0b:f4:18:f4:94:f9:24:c6:28:f4:6b:1f:27:55:20:ac:d9:
7c:9a:55:f2:f3:c8:96:fc:eb:af:fd:5e:4b:3c:eb:86:06:30:
d1:27:65:29:1b:73:74:28:e5:61:e0:ef:d8:2d:0d:ee:f3:65:
fe:0b:cc:7b:7f:11:8a:2a:db:1f:e4:f8:50:33:8b:98:1c:73:
6e:7f:f9:f9:63:e0:4a:a1:bb:0e:6d:a0:bf:4a:4c:76:25:03:
00:54:61:67:be:b4:ff:b5:f4:ec:7d:d5:7c:20:72:d1:f7:01:
2f:1c:e7:b4:28:9e:a4:07:1e:9b:ff:5a:c4:3d:e4:8d:f5:14:
c3:8c:8a:ee:74:c7:26:fd:0a:6f:9f:96:91:11:37:d2:54:5f:
cb:1d:64:76:f8:b4:ce:21:79:d0:9f:b1:8a:7a:67:5e:8a:f9:
c1:da:2e:ba:1d:ba:f2:ed:d2:3f:93:57:01:08:e8:16:98:3b:
ee:79:4c:9a:c1:5c:f7:a9:6b:2b:49:55:f6:e1:59:05:e3:2c:
28:ae:5c:d0:e9:d7:cd:4b:e7:b4:db:39:17:df:e9:42:8e:9c:
df:c9:a2:83:4d:d4:81:05:a7:1a:36:8f:8c:f8:10:8e:0d:03:
14:3e:e8:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:36:21 2025 by rpki-client