Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/XbbruS44In_wiYJJRjlpi1KKQ8M.roa
File: XbbruS44In_wiYJJRjlpi1KKQ8M.roa (raw, json)
Hash identifier: jn75rS8kBEBmx6Al2HO+mFC6firw224DxZAbcZtvZm0=
Subject key identifier: 5D:B6:EB:B9:2E:38:22:7F:F0:89:82:49:46:39:69:8B:52:8A:43:C3
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1380
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XbbruS44In_wiYJJRjlpi1KKQ8M.roa
Signing time: Fri 01 Sep 2023 09:25:03 +0000
ROA not before: Fri 01 Sep 2023 09:25:03 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9919
IP address blocks: 122.147.0.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4992 (0x1380)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 1 09:25:03 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5DB6EBB92E38227FF08982494639698B528A43C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:66:ff:1c:58:45:9a:11:ea:d6:20:8a:bf:96:
f3:eb:ff:f6:f3:cc:b8:49:26:9e:20:2b:8e:69:10:
50:d5:c2:8f:d1:f7:cd:2d:eb:85:bb:1b:e3:f7:19:
a4:55:d3:71:7b:a4:ab:94:36:9d:8f:6e:25:aa:2d:
98:b0:7a:4d:41:cd:b7:e0:21:32:34:f9:c6:3f:77:
de:13:19:9c:1d:71:57:98:4f:ce:b1:e7:fe:fe:05:
15:51:48:37:56:43:8f:4d:b5:b9:dd:9f:d1:a8:e4:
9c:ed:ba:9e:9e:2e:85:11:7b:b1:aa:7c:3b:56:ba:
e1:7b:7e:83:ca:e2:4c:82:50:c1:2f:56:fd:9e:f2:
dc:89:b3:a8:c4:e2:d5:5c:a4:5f:b0:4d:ee:5a:e8:
e1:a5:68:08:94:8c:2b:fc:3b:ad:8b:be:2c:65:1d:
0d:f1:3e:15:f3:8b:12:56:58:40:cd:1e:16:cd:aa:
d0:10:63:5a:af:54:fc:0e:e1:e9:26:ba:54:b7:fb:
90:92:44:65:82:54:9e:8d:33:4b:fb:e4:3a:e7:d5:
29:46:ca:71:00:5f:c5:7d:b0:88:66:f9:a1:d9:7b:
13:41:51:dc:2e:2e:fc:20:0f:2e:ce:ab:77:90:ac:
62:a8:36:55:71:62:65:c7:7e:2f:97:67:01:ca:86:
9d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:B6:EB:B9:2E:38:22:7F:F0:89:82:49:46:39:69:8B:52:8A:43:C3
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XbbruS44In_wiYJJRjlpi1KKQ8M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.0.0/20
Signature Algorithm: sha256WithRSAEncryption
2d:24:56:ef:c6:96:3b:a3:f3:0c:09:07:46:06:e1:ed:e6:d1:
25:55:3f:3d:23:84:b9:4f:97:6c:b5:dc:32:c3:1b:6f:fd:59:
7c:6e:23:7c:9a:29:5a:53:d9:52:a4:09:63:dd:3e:20:e3:95:
3e:fc:16:4b:cd:e4:23:1c:93:c7:ec:7a:81:e7:12:e0:de:b0:
d0:2f:c8:ce:f4:ca:12:af:b1:4e:e0:64:9e:d8:8e:cf:06:43:
8d:62:ba:19:6a:c8:d0:32:4a:56:3f:a5:ac:3a:3a:f8:6e:de:
80:24:53:d3:19:90:14:78:4d:4e:1a:78:74:90:f0:f0:3a:9d:
ca:73:4f:ff:c3:38:7b:07:7a:d9:6d:9a:fb:52:18:e5:6e:b1:
13:72:b5:da:4d:04:d6:0d:bf:b2:0d:d4:ed:aa:5d:72:59:e9:
24:c0:fa:82:e8:03:85:d9:e6:95:56:6a:0d:2d:30:6c:22:ef:
93:87:5e:e6:62:bc:8d:85:9c:1e:b8:1c:4d:fe:73:49:95:cd:
15:3f:13:cc:ff:44:10:ed:dc:d5:a7:7e:50:0f:cc:74:af:20:
fe:62:42:0e:91:a4:95:5d:59:67:bc:bf:6a:42:cf:1b:07:4c:
a2:37:8c:6d:d7:69:79:9e:ec:43:9f:8c:21:0b:5b:06:39:3a:
39:46:9c:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:39:13 2025 by rpki-client