Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/QK6JztDTP9GQP12c-oor3wqfauQ.roa
File: QK6JztDTP9GQP12c-oor3wqfauQ.roa (raw, json)
Hash identifier: zIiA5gxmXrCQ+TCS8hERvdcKPLnKNQWOQag4tIqCaDU=
Subject key identifier: 40:AE:89:CE:D0:D3:3F:D1:90:3F:5D:9C:FA:8A:2B:DF:0A:9F:6A:E4
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0BE7
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/QK6JztDTP9GQP12c-oor3wqfauQ.roa
Signing time: Sun 07 Feb 2021 06:40:32 +0000
ROA not before: Sun 07 Feb 2021 06:40:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 218.210.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3047 (0xbe7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:40:32 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=40AE89CED0D33FD1903F5D9CFA8A2BDF0A9F6AE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:25:78:de:f8:4e:23:b5:9e:28:fd:a9:86:b3:
70:2d:e7:3a:10:b5:af:ef:57:09:8b:25:54:27:f0:
9e:13:9c:9a:dd:c4:86:02:71:2f:0a:e5:e9:75:17:
0c:5e:bc:1c:30:1c:ae:15:43:03:82:14:5e:46:92:
29:6c:da:f3:21:89:cc:fa:1a:83:03:aa:37:97:d5:
89:80:f6:fc:e8:7b:03:bb:08:fd:66:ee:39:18:23:
64:62:8d:64:ed:da:05:1e:bd:1e:b4:e9:29:f9:a6:
99:20:5d:b4:fc:6d:f9:12:1e:10:26:0b:bb:74:dc:
56:7e:e6:7d:2d:c1:67:7a:d8:34:c6:d2:fb:34:ba:
ea:7d:b5:6c:b2:ac:af:e6:c3:42:b4:83:94:9a:c3:
c9:31:0f:fc:00:0e:fc:10:5d:0c:a0:49:83:b8:e4:
03:7b:eb:c7:4b:e5:d4:9d:43:c0:c2:1a:3f:53:67:
fa:3f:54:78:5f:77:ef:85:69:38:dc:71:db:28:c0:
ca:65:39:18:4b:88:2b:a8:4f:1c:6d:fc:6e:ee:3c:
0a:30:eb:af:64:77:99:ea:1e:0e:6c:f6:ea:9b:95:
a0:bb:87:a8:bb:cd:98:09:f4:4d:c9:37:f7:62:ce:
b9:8c:d9:8d:a7:02:3c:56:c9:c5:6f:42:76:62:78:
ab:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:AE:89:CE:D0:D3:3F:D1:90:3F:5D:9C:FA:8A:2B:DF:0A:9F:6A:E4
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/QK6JztDTP9GQP12c-oor3wqfauQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c8:38:bd:2c:71:4c:45:bb:fd:cc:49:e5:60:15:6d:d0:cd:64:
be:7b:f3:82:f1:fd:23:01:9f:e2:55:a8:da:19:05:cc:fa:f8:
a7:3f:2b:ee:ad:ad:1b:19:a1:65:68:de:6c:91:2f:3e:96:13:
9c:63:cd:70:de:0b:48:9b:9e:73:cc:7f:c5:4c:fc:c7:bd:b7:
e8:c0:c8:ae:05:3a:08:08:58:d9:8f:96:5f:6b:d5:b7:24:5e:
d6:ec:6b:e8:1d:4b:69:ad:79:f7:5e:69:a3:ea:5d:9a:39:3c:
c7:07:ff:da:68:3e:af:5a:5b:43:5b:fe:94:6c:35:5c:c2:38:
b8:48:42:0a:d1:d9:39:81:97:a4:9c:f1:2b:e0:fb:b4:58:e9:
95:20:57:11:73:75:27:5c:71:c6:cf:12:9e:fe:3d:34:f7:bb:
0f:73:69:c0:64:89:45:d1:73:51:c4:9a:4e:e3:f1:e2:3c:9e:
8e:56:fc:c9:55:f8:6e:4d:7d:11:59:e6:b3:b3:6e:86:af:e1:
d0:3f:eb:18:1a:c3:1f:09:4e:c1:fc:8c:d0:d8:bf:18:0e:85:
6b:8d:1b:1e:aa:8b:99:50:21:d0:4e:ff:a6:70:4b:08:10:df:
22:f6:d1:1f:5f:a9:2f:6b:83:e0:ac:a0:16:8d:f9:d0:15:02:
96:fc:c5:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:25:34 2025 by rpki-client