Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/gLz_ZxrhPmWtrX2hUqGOxUgybuA.roa
File: gLz_ZxrhPmWtrX2hUqGOxUgybuA.roa (raw, json)
Hash identifier: /1vgiocDVRoAKRo6sS3TfMQu7cASQsJsM+ivBbxN4Jo=
Subject key identifier: 80:BC:FF:67:1A:E1:3E:65:AD:AD:7D:A1:52:A1:8E:C5:48:32:6E:E0
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gLz_ZxrhPmWtrX2hUqGOxUgybuA.roa
Signing time: Thu 15 Sep 2022 02:44:00 +0000
ROA not before: Thu 15 Sep 2022 02:44:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 106.104.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:44:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=80BCFF671AE13E65ADAD7DA152A18EC548326EE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:4d:6c:fc:c3:b0:22:7d:78:a7:14:29:27:cd:
69:4c:ba:79:8c:64:97:1e:7a:51:5d:8d:0c:6a:92:
b6:bc:40:05:77:3a:9e:a2:4b:ae:06:6b:9b:78:d0:
2d:3a:b7:d6:c7:7e:6f:ea:86:07:fc:8a:bc:50:27:
bf:81:f8:3e:c9:85:34:cd:84:a4:ef:eb:98:97:5d:
fa:22:d9:c4:41:d8:20:ca:40:b5:c2:83:05:af:bb:
eb:21:ee:22:88:20:1f:a5:81:a7:a2:80:cc:96:ec:
3b:9b:d3:08:e3:f2:be:d9:e0:f4:0a:49:44:e1:62:
17:d4:fd:b0:62:ee:cc:2f:fd:9e:80:23:60:b5:d6:
a8:2d:d0:06:1b:8d:58:4e:23:10:fb:c5:04:07:b3:
6c:06:5b:ad:59:b9:33:2b:e7:7a:df:cc:24:ee:3f:
55:af:e4:f5:24:97:1a:bf:49:9b:df:42:9d:d8:1b:
69:79:27:59:e6:c1:91:60:1c:16:26:e8:dd:a6:65:
0f:9d:02:fb:34:46:06:1f:0a:46:be:b3:44:fc:70:
d9:8c:41:e2:14:40:a0:b6:50:39:c1:5d:aa:97:b9:
72:2a:e4:04:52:2e:16:e4:9e:37:8a:36:7f:09:5b:
a6:e8:9d:91:b5:b3:da:9e:1f:35:99:97:d8:ec:af:
d1:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:BC:FF:67:1A:E1:3E:65:AD:AD:7D:A1:52:A1:8E:C5:48:32:6E:E0
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gLz_ZxrhPmWtrX2hUqGOxUgybuA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.104.0.0/16
Signature Algorithm: sha256WithRSAEncryption
72:fd:1f:30:77:18:40:1e:37:bc:84:57:59:88:65:3a:89:93:
d9:47:b1:33:8b:31:9c:1e:c3:96:dd:01:5a:1d:c1:13:87:c2:
a4:10:a8:5b:28:01:3a:ca:52:d2:3f:4a:93:95:ac:3f:f3:dc:
c9:22:20:2b:fe:65:96:9e:b7:66:ec:c1:43:b8:2e:49:93:dd:
f1:0a:5a:b9:2c:9e:17:9f:08:c7:1c:68:8b:c3:ed:1f:cc:23:
1c:eb:69:e9:6c:dd:10:cc:5e:ce:e7:9d:e2:be:b9:8b:56:be:
bf:fd:9d:26:62:06:8f:0f:94:d2:fa:22:ff:02:33:f3:02:03:
f5:66:da:c0:3a:62:ed:4d:d4:b4:52:8c:3a:fa:0b:7b:bb:cc:
c4:05:a6:32:2c:b6:cc:cd:59:81:f0:8d:74:50:c9:d5:40:ec:
04:d4:44:5a:6a:4e:10:e0:ff:1c:41:ca:77:33:d3:c3:d1:23:
f1:9c:58:0a:be:9b:45:5c:ca:80:f3:0b:83:81:f7:f8:23:4c:
67:6f:34:01:ef:fd:af:a1:59:55:21:45:89:73:b6:f2:72:2b:
7a:ce:4b:45:6e:50:71:74:e8:58:fc:b7:7d:6a:4e:84:b1:74:
47:4c:06:59:22:0f:4f:85:74:3e:1e:48:a0:7a:31:26:23:a0:
64:4c:6e:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 16:52:53 2025 by rpki-client