Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/YAnMi7HnRSl4lE_FjET-fA3g45Y.roa
File: YAnMi7HnRSl4lE_FjET-fA3g45Y.roa (raw, json)
Hash identifier: YQLi69Vf230J92eVkDf5oP4+CZTQLve2VxOeJt1tNzQ=
Subject key identifier: 60:09:CC:8B:B1:E7:45:29:78:94:4F:C5:8C:44:FE:7C:0D:E0:E3:96
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0CAB
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YAnMi7HnRSl4lE_FjET-fA3g45Y.roa
Signing time: Sun 07 Feb 2021 11:44:30 +0000
ROA not before: Sun 07 Feb 2021 11:44:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 175.183.138.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3243 (0xcab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 11:44:30 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6009CC8BB1E7452978944FC58C44FE7C0DE0E396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3e:a6:9b:dd:0a:07:37:7d:92:e7:5c:4c:92:
5a:f5:21:14:cb:a0:c4:d1:5e:57:e2:75:6f:12:74:
82:c8:53:02:77:8f:e2:5f:e4:70:02:f9:d5:dc:93:
a0:04:83:7b:44:77:78:c8:d7:17:ed:36:5c:9b:0b:
02:6c:e2:ff:6a:2d:d1:73:5f:31:8c:fb:3a:06:24:
e1:4a:6b:bb:29:5c:95:60:10:ab:35:f1:99:5c:5a:
e7:de:b1:4f:06:ba:e7:c8:b7:4b:c7:ac:56:fe:aa:
66:09:3b:15:bb:a9:ec:14:76:3d:62:0e:83:6c:42:
f9:24:5b:c7:b6:56:14:9a:08:13:47:16:82:ab:fb:
72:7c:52:df:73:ad:cd:56:a2:72:a9:20:16:7c:fd:
c6:8e:8e:21:75:aa:28:9d:85:a5:17:35:30:0e:3f:
f4:54:a6:71:41:1b:d0:6b:4a:52:ba:58:8c:7b:37:
e5:dd:44:8c:65:75:ff:c3:a0:e8:66:f3:0d:e4:e1:
e3:06:12:95:2b:85:da:cb:48:c7:91:5b:e8:c5:72:
2d:16:85:60:3d:03:0d:66:33:c8:cd:93:f2:b8:0c:
ee:26:0b:b1:14:fe:be:a0:57:32:dd:85:5e:38:d5:
c5:85:ae:56:28:a4:b7:43:11:49:37:a1:9e:e9:c6:
a7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:09:CC:8B:B1:E7:45:29:78:94:4F:C5:8C:44:FE:7C:0D:E0:E3:96
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YAnMi7HnRSl4lE_FjET-fA3g45Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.183.138.0/23
Signature Algorithm: sha256WithRSAEncryption
08:79:35:4d:3f:dd:d4:2f:53:53:10:33:58:66:a9:65:4c:f4:
dd:ca:19:88:14:c3:75:e7:89:76:f3:5a:5f:c3:ca:72:a9:2e:
a8:5d:76:e9:d7:70:cb:f9:f0:f8:2f:74:bb:14:75:88:5e:8b:
0e:19:fd:f0:13:b4:4b:dd:2f:30:98:49:05:c0:f9:28:73:7a:
e7:70:c4:d1:38:57:b3:06:3f:45:30:91:0f:f5:ea:2e:5f:42:
e8:fe:c0:83:67:78:39:89:37:2a:94:94:1e:28:d5:13:21:96:
8c:d2:cf:4d:e9:68:a8:ff:0e:d8:97:09:38:bd:2e:f8:58:5c:
61:62:a4:bb:5a:8e:fd:e9:e7:8f:80:7f:84:83:ff:c1:0f:5b:
15:e6:45:8f:f1:0d:f6:e7:c6:11:a3:ee:7f:48:b5:0d:b7:05:
ee:0c:b2:df:09:6b:59:69:9b:da:40:9e:e8:c2:3d:0e:d6:a6:
14:5e:26:8b:a0:80:5d:b4:67:5f:f5:8b:4d:aa:58:73:a1:2a:
93:d7:41:1b:d2:ea:5e:c2:e3:4c:4b:cc:d5:c5:28:29:3e:1e:
f3:9f:2f:27:2c:6c:4b:87:29:70:ef:db:e7:09:22:b1:6c:eb:
df:d0:8d:a4:08:90:62:48:c2:c0:4a:58:78:7b:95:fa:69:3b:
fe:61:b6:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:39:06 2025 by rpki-client