Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/QVcAqQ0ZRh3jJ1HB09qYT_zw-Wk.roa
File: QVcAqQ0ZRh3jJ1HB09qYT_zw-Wk.roa (raw, json)
Hash identifier: HpshhELg4dm/r2y128nuWtWUYsxtZEYQPoTUQjqxBog=
Subject key identifier: 41:57:00:A9:0D:19:46:1D:E3:27:51:C1:D3:DA:98:4F:FC:F0:F9:69
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E94
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/QVcAqQ0ZRh3jJ1HB09qYT_zw-Wk.roa
Signing time: Wed 29 Sep 2021 02:43:45 +0000
ROA not before: Wed 29 Sep 2021 02:43:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131627
IP address blocks: 220.229.68.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3732 (0xe94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:45 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=415700A90D19461DE32751C1D3DA984FFCF0F969
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:48:ce:bc:fd:b8:30:39:39:01:ad:04:87:2b:
7c:ee:e4:e6:82:e5:0b:91:86:12:fa:9f:2d:66:86:
89:bd:31:59:aa:c7:57:f3:7e:32:6a:9c:86:23:2a:
4f:5e:50:13:ff:56:3e:10:d2:a0:ec:e8:21:b6:5f:
48:1c:0d:53:da:32:c0:a3:00:11:cb:99:ad:c1:08:
59:18:f3:00:5e:da:c5:bb:cc:1f:c1:ae:cd:ff:ef:
a8:73:ac:6d:c4:1a:42:60:21:08:8b:e9:89:4d:41:
d7:1d:26:21:57:e8:94:1e:d8:4e:b2:dc:b7:75:e8:
a9:b8:cc:84:c1:42:e9:c1:75:01:35:10:f8:11:32:
b4:90:af:64:47:2b:32:26:78:0e:29:d5:28:4e:17:
b0:54:7f:ac:fe:76:e4:5a:30:35:16:7b:74:43:ae:
fd:9b:5d:dc:da:bb:9f:09:de:25:7f:65:ad:2c:a4:
da:17:ac:35:54:34:cd:b2:66:2d:37:e4:90:60:9c:
e5:6a:34:99:22:09:bb:7f:b2:25:5b:5f:cd:13:ed:
9f:9a:1b:86:fb:d2:ff:4f:ea:f7:04:33:ed:cc:f6:
64:86:67:c4:8e:ab:1a:70:ef:3a:0e:54:56:05:88:
c0:e4:e0:d1:6f:fd:f4:e9:b1:e6:1e:3f:a8:b5:ab:
fa:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:57:00:A9:0D:19:46:1D:E3:27:51:C1:D3:DA:98:4F:FC:F0:F9:69
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/QVcAqQ0ZRh3jJ1HB09qYT_zw-Wk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.68.0/22
Signature Algorithm: sha256WithRSAEncryption
a8:2d:7e:b9:f3:a1:d4:33:34:02:99:c0:69:ed:9f:5b:b1:db:
9e:fb:a8:af:9d:dc:44:0e:37:c1:55:dc:61:ab:e2:67:d8:bd:
c4:21:36:a4:d9:dd:53:d0:91:dd:6b:9a:fa:b5:fa:b8:4c:6b:
99:ff:a3:01:f4:aa:44:76:88:1a:55:1e:b2:b7:48:1b:5f:3d:
c4:11:b1:27:f1:3e:01:8f:d7:a5:9f:33:f4:b2:2b:af:d6:fc:
8f:7e:da:ac:4f:6f:23:e9:bc:20:39:2e:6b:4a:99:f6:7c:0e:
40:f9:52:42:86:c2:02:71:be:24:4e:7f:9d:f6:81:33:13:74:
b4:42:60:04:1f:68:ab:dd:9b:c7:a8:cb:db:9b:e7:e7:24:2d:
d6:63:c5:c5:e3:1d:fb:5c:87:29:11:fd:9f:00:c2:12:d0:3b:
bd:86:19:ff:b2:ad:ea:94:21:ab:aa:81:12:0e:bc:f4:04:11:
7b:6a:40:fd:83:90:c8:b2:eb:b6:46:a4:fa:99:19:08:bf:c7:
09:12:4d:3e:4e:26:9e:2d:f8:87:6a:a8:02:cc:45:9c:a8:fd:
23:c8:6d:8a:1a:56:8c:7e:f0:c9:65:ea:ee:a9:59:3e:ff:b1:
46:2a:f6:e4:4b:f1:43:5b:d7:a6:16:e4:89:68:74:83:f1:8e:
d1:b1:69:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:35:26 2025 by rpki-client