Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZFgBTp5e6OfgNVUdDPiC_io8u0g.roa
File: ZFgBTp5e6OfgNVUdDPiC_io8u0g.roa (raw, json)
Hash identifier: d6DKf50QY+AtJ4Q4DFmtRSIxvOhxg1SlCTclrAllqb8=
Subject key identifier: 64:58:01:4E:9E:5E:E8:E7:E0:35:55:1D:0C:F8:82:FE:2A:3C:BB:48
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0B8C
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZFgBTp5e6OfgNVUdDPiC_io8u0g.roa
Signing time: Sun 07 Feb 2021 06:25:43 +0000
ROA not before: Sun 07 Feb 2021 06:25:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4780
IP address blocks: 59.104.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2956 (0xb8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 7 06:25:43 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6458014E9E5EE8E7E035551D0CF882FE2A3CBB48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:2a:d0:f5:35:f5:ac:01:81:e7:51:ee:4c:63:
85:63:d7:58:e8:59:5e:be:c4:b0:51:a4:4b:2e:c5:
9a:cb:eb:2b:54:bd:93:9d:37:65:18:51:ed:53:e1:
e8:5d:0f:61:c8:d6:8a:91:60:fc:30:c9:b7:4e:14:
fc:03:3a:c4:e2:7e:99:cd:73:a2:1f:6f:3d:af:8a:
35:9a:88:b4:4b:a8:79:02:55:69:86:b8:36:dd:30:
4f:b5:36:85:21:ed:c0:fc:f1:dd:38:34:84:9c:f3:
5a:3e:a5:b5:81:a1:d2:3b:bb:1d:17:96:ba:cc:6a:
d9:9f:1f:1b:8c:d3:99:3f:3a:28:cb:22:63:ac:72:
b6:c6:bd:60:fc:6a:08:e3:79:c8:f7:c1:5b:b3:29:
14:96:2b:38:32:53:12:6e:92:b6:b8:4f:6f:f6:45:
36:81:8d:a8:a1:46:01:ca:13:c7:dc:6a:d3:2d:db:
6d:59:ad:be:a1:cc:46:f9:56:9f:15:df:91:d3:20:
d4:20:77:5e:68:2c:d2:5d:49:87:e8:91:a4:8a:27:
2b:ed:a5:90:9f:85:eb:f7:a8:09:e7:3e:3b:16:36:
17:a4:88:6b:a0:dc:a5:e5:94:e5:da:83:6f:ff:3f:
a5:93:0d:99:9b:6c:f2:c3:22:d0:49:f4:6f:95:64:
c8:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:58:01:4E:9E:5E:E8:E7:E0:35:55:1D:0C:F8:82:FE:2A:3C:BB:48
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZFgBTp5e6OfgNVUdDPiC_io8u0g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.104.0.0/15
Signature Algorithm: sha256WithRSAEncryption
ae:8c:f7:da:1b:8f:5d:1c:ab:01:3f:2d:e8:46:ec:42:a0:06:
46:cb:0b:84:f7:1e:bc:fd:5d:fd:ca:76:fb:f3:93:58:0a:44:
c0:47:37:fa:b1:bc:3a:42:aa:5b:8b:b4:c3:50:05:19:79:c0:
ce:6f:2b:15:43:57:bc:e7:ad:da:17:e2:b9:18:6c:b4:92:d2:
53:0f:2a:45:3a:89:92:51:9c:60:27:b5:68:a3:e2:dc:a7:58:
44:cc:2b:af:9a:03:03:e4:c8:06:d7:c9:16:e4:b9:68:14:87:
3f:8c:86:f8:85:30:85:7e:af:9e:4b:cd:8b:37:ba:a7:86:ce:
2e:5e:46:50:9c:4f:8f:b2:f0:1f:bd:33:53:6b:b0:c8:e0:5c:
81:cf:82:22:c9:4e:e8:00:5b:0e:3f:56:01:ee:90:9d:9f:af:
27:43:d0:01:dc:96:fd:79:a6:87:3a:a2:49:2f:99:02:64:f0:
de:ea:4d:82:2d:94:ee:bc:47:50:18:c1:a5:58:c9:99:76:2b:
cd:6e:74:96:22:5e:fd:ae:85:95:7e:3b:39:6c:20:12:e0:a4:
71:fd:e5:f6:c8:b2:8e:89:f1:95:92:ff:13:1e:b0:0d:f5:5d:
35:16:07:09:1d:b5:31:30:a0:52:62:27:f7:84:78:2c:bf:38:
b8:6d:2d:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:20:09 2025 by rpki-client