Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/e_flw06Ds20VAPcXpqBnNDu37F0.roa
File: e_flw06Ds20VAPcXpqBnNDu37F0.roa (raw, json)
Hash identifier: l6wsKcJ2bZ55SwrdMUEh7Z5t78nkbmYIaZUmx+wQVfI=
Subject key identifier: 7B:F7:E5:C3:4E:83:B3:6D:15:00:F7:17:A6:A0:67:34:3B:B7:EC:5D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 12EF
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/e_flw06Ds20VAPcXpqBnNDu37F0.roa
Signing time: Fri 01 Sep 2023 09:24:17 +0000
ROA not before: Fri 01 Sep 2023 09:24:17 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18049
IP address blocks: 106.105.80.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4847 (0x12ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 1 09:24:17 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7BF7E5C34E83B36D1500F717A6A067343BB7EC5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c3:46:af:21:63:fa:0a:81:3e:40:d0:d1:b6:
6c:6f:c3:e7:4b:1f:68:a0:db:f8:a0:81:a8:dc:2f:
f4:25:ba:1a:2f:3c:94:47:b2:39:ee:a5:75:c4:3d:
73:4e:f7:0f:5b:f1:9a:05:55:d6:3d:75:94:79:34:
b0:47:ee:cb:3f:8a:f5:b4:5d:53:05:db:19:8d:cb:
7b:39:6a:d0:2f:90:49:a5:4a:0c:e8:17:b4:b9:54:
74:9d:3f:da:2c:14:d5:96:9f:98:88:18:79:0d:9a:
b5:31:ce:71:02:c1:6c:f1:b0:f6:16:43:ed:04:39:
e2:63:38:68:ca:1a:26:a9:86:c3:95:44:1f:2b:b0:
fe:b5:06:49:b1:1d:e0:66:7b:7a:cc:a7:20:f2:18:
a0:a5:5e:f6:7d:2c:b2:a6:28:f0:06:98:77:98:c0:
5c:1e:44:19:6b:da:9e:a4:91:5b:ab:d2:0f:67:df:
5c:37:82:ae:99:82:2a:c3:6b:fc:60:9a:6d:17:29:
ba:b8:91:44:c4:96:e9:90:c7:fa:63:5d:26:cc:ef:
4a:eb:11:bc:2b:2e:4d:4d:dc:10:70:83:23:7b:ce:
a3:7c:27:7e:1a:b3:77:4d:6d:be:c1:c9:9e:9b:41:
47:c1:4e:40:3d:75:cd:d7:ad:83:33:e2:5a:8a:d3:
b1:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:F7:E5:C3:4E:83:B3:6D:15:00:F7:17:A6:A0:67:34:3B:B7:EC:5D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/e_flw06Ds20VAPcXpqBnNDu37F0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.80.0/21
Signature Algorithm: sha256WithRSAEncryption
20:8a:78:c1:8c:78:98:a3:75:f8:e1:3b:58:d0:39:db:6a:29:
6f:ec:e7:1c:73:72:2d:33:a0:28:69:d0:1f:c2:c5:a9:85:98:
4c:ff:92:1b:a1:31:6b:3c:0a:4b:2d:ad:28:fd:d2:d5:27:72:
a9:c9:7a:3d:10:47:37:f8:7f:d2:23:5d:d6:d5:e8:2f:fa:59:
0e:fb:41:dd:91:4a:32:e6:4c:12:d2:d9:9c:f1:a7:be:0f:23:
6c:96:27:ee:ac:c1:f3:fb:89:f7:80:4f:fd:5b:90:99:a3:e5:
85:bc:21:ec:c4:09:cc:6e:ac:38:f5:0f:8e:49:9a:86:ec:07:
0f:22:7a:3a:a9:67:83:b8:25:a6:e8:9e:43:91:9b:a4:8a:6c:
9a:95:bd:51:7a:73:b8:16:cc:d0:20:96:65:71:79:35:86:fd:
95:4a:a6:1f:d5:68:0a:a0:a5:c1:69:ec:3b:41:9f:ed:61:38:
54:1a:72:c9:c3:6c:f9:21:7c:fb:47:32:0e:1c:bc:6a:fd:d1:
a1:6e:55:90:bc:45:4e:be:4d:18:c0:e3:1b:ed:80:18:ca:dc:
6b:14:99:5a:c7:8e:d7:41:a4:ae:79:2d:36:56:32:49:fb:d9:
52:7f:07:41:11:6b:b0:14:3a:54:5c:41:a5:a3:b4:46:06:13:
fe:4d:05:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:23:01 2025 by rpki-client