Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/UfMjhV2MFXBnbNWgudWdP5dgiMQ.roa
File: UfMjhV2MFXBnbNWgudWdP5dgiMQ.roa (raw, json)
Hash identifier: UYlYnZ+Ik7IVlcpU9SrHAhP/Nl1WDL7HM9JR5Sd5kVI=
Subject key identifier: 51:F3:23:85:5D:8C:15:70:67:6C:D5:A0:B9:D5:9D:3F:97:60:88:C4
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 131B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UfMjhV2MFXBnbNWgudWdP5dgiMQ.roa
Signing time: Fri 01 Sep 2023 09:24:29 +0000
ROA not before: Fri 01 Sep 2023 09:24:29 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4780
IP address blocks: 59.104.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4891 (0x131b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 1 09:24:29 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=51F323855D8C1570676CD5A0B9D59D3F976088C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:8e:bf:99:a7:83:c4:ee:9d:e9:46:58:2c:a9:
c3:fc:cb:90:d6:b3:94:14:62:22:d1:fa:7e:40:da:
db:4b:26:fc:df:16:28:cc:b6:ea:7e:8d:71:4d:5e:
28:61:86:a0:c0:fe:f4:31:4a:50:86:34:c9:a6:1e:
f0:e3:b7:0d:78:99:bf:f2:83:3f:c2:99:24:19:6e:
3e:5e:f7:e5:03:4f:e7:92:bd:d1:f4:59:cc:95:b9:
82:30:6e:e1:be:ef:c3:46:3b:a3:e7:5a:18:5d:ed:
39:60:e3:b0:61:47:fe:23:0a:7e:b7:76:c6:9b:94:
02:c4:af:06:64:62:ec:f7:f5:30:53:f4:fd:d4:94:
bd:ee:c2:b9:f1:69:20:cd:71:b2:c4:fd:de:bb:4f:
69:99:44:32:18:0e:7e:cf:ff:cb:a3:bb:a7:c7:21:
38:b7:40:5f:83:f0:13:73:c5:e9:a7:0e:03:b7:a3:
43:46:72:8f:f8:de:c3:72:bb:7a:2e:c6:70:f3:77:
cc:26:8f:5c:f1:2f:3a:76:80:0a:8a:d0:d7:03:ca:
68:30:7f:2a:12:ca:12:59:44:4a:f0:a1:8d:2a:ca:
c1:72:d5:bf:94:08:b7:c0:e8:05:ba:2e:c1:d6:ed:
bf:f7:24:42:7b:6a:ef:1f:87:0c:8d:1f:80:b7:93:
fa:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:F3:23:85:5D:8C:15:70:67:6C:D5:A0:B9:D5:9D:3F:97:60:88:C4
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UfMjhV2MFXBnbNWgudWdP5dgiMQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.104.0.0/15
Signature Algorithm: sha256WithRSAEncryption
97:3a:0a:26:d4:09:f0:48:1b:d4:8c:2c:8b:06:a7:a2:f7:62:
23:cf:23:e1:89:d9:c2:4b:2e:e7:75:fa:00:7e:64:4b:33:e0:
51:25:0c:f2:45:f5:83:dd:02:f1:d1:36:99:88:7f:b2:82:be:
58:16:3f:82:c1:ee:51:40:22:63:a5:0d:cd:4a:c7:ac:90:f1:
bf:28:18:16:5e:21:c3:ba:29:ec:2b:a1:ef:2c:d3:53:a1:b6:
7d:74:be:92:7c:52:aa:1f:55:35:07:cf:6a:b0:a2:f6:e8:3f:
20:ac:59:a4:ee:0e:41:73:43:68:fd:00:57:a7:ab:4d:be:68:
98:eb:a7:81:a2:00:a1:10:a1:db:04:32:84:b0:64:0e:c3:5a:
3e:fa:97:e6:2f:4a:12:4d:11:3d:ad:90:3b:62:55:18:72:a6:
a3:77:af:b2:f8:fe:cd:c4:f6:74:3f:5a:a2:e7:77:af:86:b4:
f8:0c:94:cc:8a:23:68:cb:b8:2b:2a:a4:f2:bd:11:f0:ac:e4:
c0:74:8e:b8:65:0d:5e:d4:92:53:e3:6d:6f:91:f7:c9:17:70:
4f:ea:a2:96:5c:0b:1d:39:e1:c0:ae:66:56:d7:9a:d3:b9:c9:
66:59:a0:66:77:06:03:29:c3:f7:eb:7e:ef:3a:9d:77:13:7e:
e7:10:2c:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:36:16 2025 by rpki-client