Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/dmbNqb3BqFenGuD_JudIL-l3Zjo.roa
File: dmbNqb3BqFenGuD_JudIL-l3Zjo.roa (raw, json)
Hash identifier: 5UBVc31AFePHgbtxWTo1W3zwB2l+Ex5/Z3BrDTYqKzc=
Subject key identifier: 76:66:CD:A9:BD:C1:A8:57:A7:1A:E0:FF:26:E7:48:2F:E9:77:66:3A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 102E
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/dmbNqb3BqFenGuD_JudIL-l3Zjo.roa
Signing time: Wed 01 Feb 2023 10:28:15 +0000
ROA not before: Wed 01 Feb 2023 10:28:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 123.205.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4142 (0x102e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:15 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7666CDA9BDC1A857A71AE0FF26E7482FE977663A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:49:be:e9:35:46:e9:84:cc:14:9d:2b:6b:90:
5b:21:a3:77:a2:92:c8:d8:c3:56:a1:f5:f9:17:0f:
a0:6e:65:ae:eb:f1:72:be:e7:56:6a:3d:8b:fa:84:
a5:fa:a2:c2:1f:9b:38:7b:f4:74:76:99:84:53:83:
e7:14:0d:a9:a3:33:ac:33:3c:37:76:14:d9:c1:6c:
b8:d8:16:17:61:58:c4:df:76:01:25:0e:97:1e:49:
fc:40:f5:d3:ba:95:b6:aa:b5:17:7a:a5:6c:d2:d2:
b7:fc:b4:ea:bc:b4:a6:24:57:21:6f:0b:01:b3:d3:
7e:6b:0a:48:f1:96:ad:8a:ee:09:61:fb:af:b8:39:
89:b8:73:1f:72:1f:46:80:56:30:8d:4b:27:ae:1e:
ca:f8:7b:11:c9:2a:59:c0:11:93:9a:14:98:c3:5c:
60:c7:ff:52:d5:e5:f9:09:9c:9a:a7:bb:12:55:6b:
ef:11:a9:33:f9:c9:df:5b:80:b6:b5:d4:e3:c9:00:
29:e2:af:e7:2e:95:c4:0f:07:c5:c2:e4:34:0a:c5:
ee:a9:9c:d0:42:4f:2f:ec:72:48:cb:ef:b6:b2:7d:
86:f9:1c:b2:6c:32:fd:56:8b:2b:9b:60:18:9c:8a:
2f:27:9e:c4:a8:54:cd:95:5e:49:c0:5e:24:ae:57:
cd:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:66:CD:A9:BD:C1:A8:57:A7:1A:E0:FF:26:E7:48:2F:E9:77:66:3A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/dmbNqb3BqFenGuD_JudIL-l3Zjo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.76.0/24
Signature Algorithm: sha256WithRSAEncryption
91:73:8f:52:9e:5e:eb:0f:1b:e1:bd:3e:82:e1:e9:58:33:ab:
91:b0:0a:bf:c4:34:00:7e:e9:7d:8d:07:f6:c1:25:de:2a:55:
70:97:6a:e0:36:27:a0:96:e2:5a:41:f1:2d:fd:02:de:06:b3:
65:28:52:c4:d0:ee:a3:a9:1b:46:6b:ef:1c:0c:98:2d:05:0f:
52:57:e6:7f:48:f9:75:98:4b:01:d4:78:1e:37:3f:cc:a7:8f:
fe:cc:fd:bd:83:2d:27:0c:30:1a:c3:8c:c5:c2:aa:77:74:b4:
7a:ec:1d:ec:f4:6b:03:f6:a1:9d:f1:07:c0:36:db:5c:14:fb:
5c:1e:f8:e0:ff:3b:f3:9f:f9:f2:75:5c:64:f9:b1:93:51:51:
74:86:70:8a:2f:ed:93:30:e6:2c:07:2b:bb:88:32:b6:bf:ff:
53:fe:70:c2:f3:65:cf:e9:b5:27:94:4f:9a:fc:48:61:d8:dc:
39:ea:55:0d:f1:26:41:b6:a5:4e:1d:f8:ff:81:06:e4:ff:2b:
1e:22:11:db:1f:b0:b5:ce:c8:c6:c4:4a:49:78:3d:c5:07:f0:
a8:66:df:35:f3:4e:ee:22:c1:96:70:a5:26:7b:bc:25:78:32:
6c:73:47:fa:ae:b5:08:34:7b:f9:53:b1:20:ee:16:7b:0b:48:
2d:9a:00:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:17:01 2025 by rpki-client