Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/RJnYafRfglULIvo-f-fF9VpZSlM.roa
File: RJnYafRfglULIvo-f-fF9VpZSlM.roa (raw, json)
Hash identifier: fh0aEiyMl8DuEWGwo6E2h52xFoOnXXdA5vgvVFQ3nzw=
Subject key identifier: 44:99:D8:69:F4:5F:82:55:0B:22:FA:3E:7F:E7:C5:F5:5A:59:4A:53
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0BFF
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RJnYafRfglULIvo-f-fF9VpZSlM.roa
Signing time: Sun 07 Feb 2021 06:43:51 +0000
ROA not before: Sun 07 Feb 2021 06:43:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 211.74.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3071 (0xbff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:43:51 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4499D869F45F82550B22FA3E7FE7C5F55A594A53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:39:13:54:82:34:0f:02:29:44:a6:b4:71:bd:
5b:cb:76:3c:a0:b1:4e:c1:b4:61:ff:af:78:e7:50:
4d:65:42:8d:ad:8b:c1:3e:6c:b9:35:ee:ed:92:2d:
ba:0c:ad:60:bf:6d:25:83:bb:77:cb:ad:08:f4:84:
ef:c9:26:f4:a4:05:df:eb:d6:3b:d4:17:4b:25:66:
0c:05:7b:37:a6:ed:da:55:d4:de:95:63:73:3a:f8:
0a:98:76:c3:14:95:4e:d1:d9:e4:f5:6e:98:ef:4c:
19:5e:14:99:0f:72:ac:ce:e1:0d:88:37:6b:f7:ae:
30:77:43:cc:8f:7e:a2:7f:17:eb:23:fd:94:3c:9c:
27:d8:c1:26:9f:0f:4c:52:eb:84:30:64:ad:52:5a:
aa:4a:13:b9:74:b3:e9:fa:1e:4c:f6:ea:b9:da:f2:
08:76:b6:37:d1:2c:0e:b6:03:6a:63:e7:35:67:f2:
c4:3f:03:b9:d4:72:48:43:f1:cd:6a:c1:a7:35:8f:
e0:ce:15:7c:0f:69:9e:4a:77:de:39:42:b4:79:2e:
65:be:61:e3:7e:07:13:60:39:47:e1:3c:cd:24:c8:
57:90:0b:38:43:1a:7f:e4:39:8a:dc:29:a0:8b:ca:
f9:89:56:f7:d6:8e:c6:10:77:93:4f:eb:f1:16:64:
03:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:99:D8:69:F4:5F:82:55:0B:22:FA:3E:7F:E7:C5:F5:5A:59:4A:53
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RJnYafRfglULIvo-f-fF9VpZSlM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.74.0.0/16
Signature Algorithm: sha256WithRSAEncryption
51:ad:0c:2a:19:e0:b5:4f:89:1f:12:91:16:29:95:db:d5:70:
82:33:14:2c:0d:11:04:ed:a1:3c:cb:bc:1f:6e:5a:f1:94:d2:
ae:06:23:35:7e:16:7c:cd:6a:dd:60:fa:0d:f0:84:b0:aa:c3:
ab:57:a7:3f:eb:42:e3:4a:52:35:a3:d4:4b:a5:43:1d:91:80:
ce:71:d0:37:c4:ea:41:f7:b9:19:8a:6b:4e:a8:26:25:fb:bc:
57:5c:7d:eb:d6:7e:20:3b:e7:e3:27:66:8f:0d:84:82:92:47:
bf:60:b4:70:57:60:dd:4c:b8:15:10:a2:3a:8d:e0:2b:48:d2:
d3:0a:25:49:5a:3b:e9:4d:87:ec:54:2d:f6:db:c3:dd:6b:d3:
bd:ce:8a:81:75:a7:c9:08:71:99:14:1c:e2:78:1f:e4:02:76:
9a:1e:b4:8f:05:bc:e4:9a:50:7a:bd:1f:b8:c0:b4:43:55:aa:
8c:da:af:e6:ac:99:33:8c:a3:d8:62:28:a2:80:21:e4:06:ee:
08:3c:e9:21:83:9b:55:55:59:56:55:9d:31:e0:28:b9:7e:56:
d3:69:d7:ef:20:d2:94:21:ad:f3:43:42:76:7d:d1:4f:a2:e8:
5a:01:ab:97:2c:24:dd:97:0d:5d:fb:71:87:cd:05:a7:3c:00:
52:7f:3e:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:27:52 2025 by rpki-client