Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/OVlkWCkSB1bGTrZmg3XbXdTJwiU.roa
File: OVlkWCkSB1bGTrZmg3XbXdTJwiU.roa (raw, json)
Hash identifier: 6gCLdG93Io70BYAzmezbjgTunUS3Q+c9iUFylDvtg3g=
Subject key identifier: 39:59:64:58:29:12:07:56:C6:4E:B6:66:83:75:DB:5D:D4:C9:C2:25
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0898
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/OVlkWCkSB1bGTrZmg3XbXdTJwiU.roa
Signing time: Tue 29 Sep 2020 09:52:11 +0000
ROA not before: Tue 29 Sep 2020 09:52:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 220.229.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2200 (0x898)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:11 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3959645829120756C64EB6668375DB5DD4C9C225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:f6:d7:fe:3d:41:5d:60:17:df:ba:98:a6:df:
b0:3f:dd:83:0f:62:2a:c1:5e:93:63:8f:bf:be:25:
d6:11:1c:85:61:7b:ff:c1:e3:c7:98:ad:5e:a5:26:
1b:f2:ca:23:f2:ec:15:4d:fc:a2:2b:c4:ec:7d:10:
a7:cb:d7:9e:c9:93:fa:c2:39:58:d4:7a:d5:ac:4d:
1b:d5:f8:3a:74:0d:c7:50:ee:18:50:61:b0:bd:7a:
d7:3b:bb:42:bc:6c:5f:33:fe:f9:d0:c8:a1:92:98:
6e:fc:7c:9b:4d:67:85:ea:50:34:e6:8c:c0:ba:d1:
82:ae:e0:fa:e8:82:7b:5b:73:de:24:aa:42:d8:ef:
b5:79:9c:02:06:a8:12:6b:01:9a:a4:9e:55:a1:f4:
29:24:e2:8b:f1:2b:ec:31:63:dd:ae:ad:fd:03:a8:
3a:d0:d5:59:d6:4a:85:8e:de:44:00:b4:91:a1:ba:
a3:eb:02:50:87:c1:81:d5:ba:f5:af:bd:d8:0b:be:
6f:52:6e:ca:2a:21:d2:59:61:ca:7a:ce:e4:f2:9c:
d7:b5:e2:4f:c6:bc:5c:60:85:fd:31:a5:f5:d0:8c:
ba:40:a3:e6:62:86:b4:0a:6a:c8:b6:61:e1:4d:cb:
41:72:df:62:8f:96:eb:a3:39:73:2f:a7:ae:b9:5b:
15:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:59:64:58:29:12:07:56:C6:4E:B6:66:83:75:DB:5D:D4:C9:C2:25
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/OVlkWCkSB1bGTrZmg3XbXdTJwiU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.0.0/16
Signature Algorithm: sha256WithRSAEncryption
16:5a:08:87:11:67:c1:a0:07:cd:ff:79:4e:75:19:1d:0b:d0:
39:65:a4:cc:dc:7d:e5:3a:ea:b7:60:57:40:a1:b7:0a:a4:5b:
09:05:96:a8:c0:40:f2:ec:f8:a0:4c:b0:d0:6c:4b:67:1b:5e:
8a:a6:34:ca:c3:53:71:01:51:f4:16:cb:06:b2:17:53:ce:9b:
9a:ae:5b:74:90:15:e0:11:d6:98:c9:3b:c3:f9:83:22:4c:9c:
17:6c:47:3e:5a:dc:92:fb:50:f1:90:01:68:ff:de:a0:b0:ec:
b4:a0:88:19:36:23:88:33:29:10:8e:2a:4d:17:bc:cd:a8:c2:
b6:5c:57:88:76:70:89:6d:03:fa:23:90:bf:28:bd:ec:12:af:
2e:67:d6:37:62:56:2f:a6:cd:82:ad:b7:dc:a9:b4:11:43:d7:
ea:63:5e:2e:5f:ef:30:5d:3f:f1:6c:c0:a4:53:30:08:8d:fb:
8b:40:98:c7:e2:a1:be:6d:26:9b:b7:45:1e:08:56:8a:64:6d:
45:1f:b3:49:c4:c7:aa:c6:17:08:db:f8:01:8d:2e:3f:fd:e3:
c6:89:79:c4:51:19:41:b5:6b:26:9a:6a:c9:fb:05:62:11:80:
00:b6:ee:2a:39:6f:3a:7b:31:12:47:16:67:bd:4e:59:ac:17:
25:83:47:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:39:53 2025 by rpki-client