Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/WXs6-KgXMKC24fVd6nFH4bQ7V9Q.roa
File: WXs6-KgXMKC24fVd6nFH4bQ7V9Q.roa (raw, json)
Hash identifier: 7tilw1KACV1ZfDKbwhF9QgEkAM/mVxh88x6pZm2tMTY=
Subject key identifier: 59:7B:3A:F8:A8:17:30:A0:B6:E1:F5:5D:EA:71:47:E1:B4:3B:57:D4
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1336
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WXs6-KgXMKC24fVd6nFH4bQ7V9Q.roa
Signing time: Fri 01 Sep 2023 09:24:38 +0000
ROA not before: Fri 01 Sep 2023 09:24:38 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18049
IP address blocks: 112.105.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4918 (0x1336)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 1 09:24:38 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=597B3AF8A81730A0B6E1F55DEA7147E1B43B57D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:67:b8:31:f1:12:31:80:c3:af:fb:87:cf:3b:
13:f5:a1:b0:ba:d6:c8:8f:e6:15:ce:7b:bf:3c:db:
77:0c:6d:a7:fe:d2:57:c0:54:8a:c9:5c:18:f2:e6:
71:0e:fd:e6:cc:a6:3d:42:e1:4d:06:4d:04:bd:b5:
b4:c2:f3:69:b7:5c:b2:1f:59:8f:fb:5a:aa:fe:a6:
bd:8c:c4:a1:ec:ec:07:08:42:0d:d8:0e:cc:c3:81:
2a:04:ea:fb:dd:f4:79:2a:f0:c7:86:d5:aa:de:d9:
92:37:c5:6c:1c:6e:f7:cd:86:c3:70:76:bf:92:c7:
4c:f0:cc:e9:db:8b:a2:cb:d7:bb:dd:7f:cc:c3:03:
e3:79:e6:e9:93:b9:86:c4:87:45:44:4e:05:35:04:
62:68:90:22:75:98:50:f0:21:cc:94:36:92:7a:7d:
68:47:2c:84:5b:9d:8d:c4:44:f4:0a:f3:b5:6f:a2:
cc:9a:1e:f6:51:ab:c0:d1:4d:83:5d:16:3e:37:04:
fe:92:0d:4d:11:3d:77:a1:8c:7f:75:cf:fd:a1:08:
4b:81:ae:74:36:cf:26:4f:54:bf:f2:42:60:7b:f7:
db:b4:46:86:c3:3c:69:d5:9e:99:14:1c:38:af:a9:
49:42:a8:38:ac:72:1b:d3:e9:9f:ec:01:45:e6:41:
45:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:7B:3A:F8:A8:17:30:A0:B6:E1:F5:5D:EA:71:47:E1:B4:3B:57:D4
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WXs6-KgXMKC24fVd6nFH4bQ7V9Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.105.32.0/19
Signature Algorithm: sha256WithRSAEncryption
47:1c:cc:9a:22:37:86:94:a5:34:00:06:73:e5:29:b5:27:3d:
a4:44:e3:2b:17:4d:3e:dc:fc:ff:b5:8b:12:aa:ce:59:dd:6d:
de:f7:df:41:1c:48:40:a7:b4:19:11:6b:e2:ed:c4:7c:11:14:
14:7d:8e:8c:b5:95:1d:2c:78:af:15:be:ce:bc:a1:59:19:24:
b0:2c:18:96:34:d7:c1:0f:29:aa:b9:d5:69:d3:1e:99:5f:4c:
d8:41:3e:d2:b2:fb:b2:b4:13:e9:71:ea:35:09:21:35:fd:1d:
27:98:fa:8f:61:3f:af:20:d2:03:57:5d:23:14:85:26:1a:3b:
50:a0:2c:9d:33:7a:d3:0d:b2:87:36:0b:ae:d5:8c:41:ea:23:
26:7d:fc:c9:fa:2c:cb:03:b5:89:2d:c9:38:9d:9d:59:e4:1b:
eb:9f:47:9e:0b:a0:38:f8:fb:f6:04:23:a8:4e:6c:ea:f3:1a:
25:fe:6e:f0:38:f4:a8:32:b5:7c:29:ea:a5:cf:c0:ad:d6:ec:
5c:42:ef:2b:4d:a8:f7:86:30:72:b5:ee:e2:10:89:1b:9e:e8:
23:24:a0:d8:b7:76:64:c5:c5:c9:fb:1c:4e:0c:b8:f8:5f:86:
de:56:ae:5b:4e:83:e7:fa:1a:26:5c:0a:b4:90:8e:8a:c5:bd:
0b:d5:0c:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:25:28 2025 by rpki-client