Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/TaWmgiXnxuTpgdiWJO9iEegwEJg.roa
File: TaWmgiXnxuTpgdiWJO9iEegwEJg.roa (raw, json)
Hash identifier: hYDd9I4wTxzgZPFU5ogDWtd/5EGUJ3g49hM7/SenT40=
Subject key identifier: 4D:A5:A6:82:25:E7:C6:E4:E9:81:D8:96:24:EF:62:11:E8:30:10:98
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 104B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/TaWmgiXnxuTpgdiWJO9iEegwEJg.roa
Signing time: Wed 01 Feb 2023 10:28:23 +0000
ROA not before: Wed 01 Feb 2023 10:28:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 42.0.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4171 (0x104b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:23 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4DA5A68225E7C6E4E981D89624EF6211E8301098
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:76:83:cd:9f:99:6a:b6:30:b8:e1:bc:84:ce:
80:a0:a8:57:93:be:b3:a5:b7:ed:8b:35:e7:8a:ed:
7f:fb:97:eb:71:ed:c2:8a:ed:11:a8:1f:5c:65:08:
10:57:16:b5:66:a5:a9:05:a1:6a:cc:94:8c:e4:a0:
ac:eb:e4:c6:da:18:26:c2:dd:96:fe:b7:80:d1:36:
05:fc:9f:3f:55:ac:f1:4d:d4:a9:c9:e7:ea:94:ae:
a6:c3:56:3c:ec:21:85:fe:cb:18:25:b0:33:a3:40:
13:ae:9c:f4:6a:6f:73:28:77:1e:66:57:e0:95:4f:
c4:68:86:5c:56:3d:8b:2b:35:5d:1d:9c:f7:6a:ef:
e3:d5:9d:92:ed:37:b2:74:35:b5:cf:b0:cd:a5:00:
e5:64:21:38:8d:27:2b:5e:15:e9:8c:b5:c8:46:e2:
dc:aa:af:5f:c0:60:3a:52:77:42:78:50:c5:ac:75:
86:8a:80:fa:9c:72:c0:73:3c:7c:a7:b0:bc:b4:e0:
ab:47:ae:20:c9:42:f4:3a:b5:dc:37:51:a7:ef:38:
40:11:fa:65:c4:25:06:41:9b:14:c9:7b:70:76:4a:
e5:11:6f:5f:89:65:27:2f:88:b6:a1:e1:6d:4b:d5:
25:4b:9a:00:7b:29:22:66:90:e7:35:b7:34:2d:88:
8d:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:A5:A6:82:25:E7:C6:E4:E9:81:D8:96:24:EF:62:11:E8:30:10:98
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/TaWmgiXnxuTpgdiWJO9iEegwEJg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
42.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
2d:a2:6c:87:6f:1b:4b:95:2d:a3:a5:d3:a5:78:94:14:f3:52:
74:05:b6:09:e4:c3:08:f6:48:83:83:04:a0:4d:da:c3:4b:3f:
44:73:40:c7:22:b8:76:7e:bd:23:85:86:eb:21:0a:5d:81:8d:
37:c5:6f:64:d5:42:61:9b:d3:7b:4f:57:ff:ce:ea:c1:19:50:
d7:cf:98:d7:a2:59:6c:2f:42:5b:10:b4:c6:54:cb:bd:8c:ee:
31:02:80:cf:15:d2:52:19:18:51:1e:41:87:11:2c:a9:03:ad:
25:fb:19:c6:f3:b0:b9:a0:89:b2:19:3a:49:53:f5:59:d2:49:
be:5a:f8:f7:1d:2d:1d:01:57:02:48:21:78:67:da:d5:80:bd:
08:4c:c0:47:5c:c9:f5:ed:72:d5:bd:fd:b6:ea:ad:6f:e2:28:
16:28:d7:ee:94:ad:9a:c4:44:c9:bc:90:8e:19:59:e2:5e:b3:
e4:b2:de:6f:bc:83:f6:ac:9e:91:df:39:91:ba:4b:85:b7:28:
94:0d:cd:10:22:e3:d3:3b:78:fd:9d:4e:fd:5d:2c:60:1d:b9:
3c:dc:91:03:81:25:7e:36:f8:95:2d:84:3c:f8:6a:9d:c1:10:
db:7b:66:22:a6:2f:10:6a:e1:63:fd:58:38:e8:27:a4:c6:03:
bc:58:82:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:27:56 2025 by rpki-client