Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/SYU2DZ9QTRwX4LCo-iE3jBNkfKk.roa
File: SYU2DZ9QTRwX4LCo-iE3jBNkfKk.roa (raw, json)
Hash identifier: u89BxgmP9aQHscXMCLz/4wnJxr4GsD6J4uclUqMOYfU=
Subject key identifier: 49:85:36:0D:9F:50:4D:1C:17:E0:B0:A8:FA:21:37:8C:13:64:7C:A9
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0851
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/SYU2DZ9QTRwX4LCo-iE3jBNkfKk.roa
Signing time: Tue 29 Sep 2020 09:51:54 +0000
ROA not before: Tue 29 Sep 2020 09:51:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 211.78.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2129 (0x851)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:51:54 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4985360D9F504D1C17E0B0A8FA21378C13647CA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:b6:46:2f:a3:eb:77:ee:d1:7b:de:23:57:94:
1e:6a:a5:27:f3:e3:83:a6:77:ba:c4:ea:d9:4b:73:
5e:ee:fb:dc:38:c5:a3:e7:32:0f:cc:49:3f:90:74:
ed:f2:22:dd:88:6a:7f:34:82:c3:49:b1:ff:0e:05:
c9:42:47:da:93:ee:4d:a4:8c:3f:a3:fc:9a:92:3e:
1f:4a:ac:43:70:57:30:ce:42:66:af:cd:40:0a:b4:
c9:2e:18:b7:24:db:74:4a:1c:74:9e:ac:35:08:93:
50:15:26:20:9c:95:ee:ec:cf:95:8e:84:8a:74:53:
39:9b:ba:5b:d8:a7:83:ff:59:3d:a0:24:21:76:f1:
32:1a:58:ed:41:09:4b:10:cc:7d:1e:25:f1:77:19:
93:9f:b0:da:d2:cd:72:de:37:7c:c8:47:4a:dc:a6:
cb:3e:63:8e:ab:b3:64:90:b8:da:4e:3b:af:fb:79:
04:59:7e:1d:af:f6:de:fe:93:23:e1:77:e3:f5:f8:
d0:a3:81:69:7d:94:e9:a5:3a:43:0d:36:0a:37:1f:
78:6f:d2:d0:b0:d0:0e:69:9a:69:fa:bb:1f:69:49:
60:ae:cf:6b:df:dd:4c:eb:e0:89:4b:67:0b:c6:6e:
25:98:d2:51:9b:89:da:b7:c6:c9:c6:cb:71:64:f4:
cd:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:85:36:0D:9F:50:4D:1C:17:E0:B0:A8:FA:21:37:8C:13:64:7C:A9
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/SYU2DZ9QTRwX4LCo-iE3jBNkfKk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.128.0/19
Signature Algorithm: sha256WithRSAEncryption
8c:97:a3:69:17:91:f3:57:7d:d3:f8:e8:8e:1a:c7:ec:9c:2a:
24:62:9d:a2:af:f6:22:80:db:3b:3e:15:a2:ee:2a:8f:87:0c:
7b:77:f4:90:37:26:e6:a3:df:be:bf:c9:78:aa:79:95:fd:48:
a5:8d:58:14:86:c0:70:00:96:e3:a9:69:be:1c:0f:4e:f4:d0:
3e:51:56:b2:2d:a4:09:ea:a0:7e:63:15:77:94:87:a0:5e:9c:
26:e9:28:af:b2:9f:e5:14:ff:f7:60:cd:2c:a1:2f:7a:92:9e:
a9:98:0b:21:05:5b:78:75:57:c9:bf:45:81:3c:c8:ef:e1:c0:
e9:34:0a:fb:ab:7f:6c:a5:ef:e5:59:f5:af:8d:42:e4:ed:84:
91:6b:5e:63:67:7d:37:73:f1:c9:0e:6f:d4:7d:64:a0:8a:19:
51:e9:9b:51:44:cc:77:8c:e0:72:c0:ec:b5:27:44:98:d9:2e:
b5:ee:59:9d:46:37:79:be:23:dc:b9:91:bc:10:cc:3b:08:28:
bc:64:16:1d:7a:2a:ec:96:28:8e:c0:1e:df:3a:eb:e0:5d:ca:
9c:3d:f6:c8:19:d0:3f:75:13:3e:23:b0:67:cf:ba:88:ed:0b:
04:5d:7d:f8:23:8f:1a:d1:d0:bb:35:af:4c:68:94:a7:20:97:
3f:ed:33:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:23:05 2025 by rpki-client