Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/gZNQUapCdpOGugFLwIGHO_zuEgc.roa
File: gZNQUapCdpOGugFLwIGHO_zuEgc.roa (raw, json)
Hash identifier: 8CDMpS5Gj6awoapvgkgNHeFnV5LZkG1uHEbPOm0CBlM=
Subject key identifier: 81:93:50:51:AA:42:76:93:86:BA:01:4B:C0:81:87:3B:FC:EE:12:07
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0ECC
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gZNQUapCdpOGugFLwIGHO_zuEgc.roa
Signing time: Wed 29 Sep 2021 02:44:00 +0000
ROA not before: Wed 29 Sep 2021 02:44:00 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 2401:a040::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3788 (0xecc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:44:00 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=81935051AA42769386BA014BC081873BFCEE1207
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:33:24:52:cb:03:e4:e5:3e:a8:1d:af:62:3d:
de:ac:9a:fd:e1:6b:76:7a:3f:27:f2:13:89:cc:ca:
9e:10:65:9d:87:22:12:a3:f4:ff:83:11:1a:2d:e9:
97:77:59:ab:2d:56:08:0c:2d:31:dd:cf:72:57:36:
ed:c3:42:40:c1:c0:e6:c4:b2:9c:6f:d8:2a:51:57:
43:2b:bc:16:ec:4d:27:a9:4c:a7:a7:72:ce:d8:9a:
26:f4:33:de:7e:1b:75:09:38:3f:66:1e:ab:f9:86:
8a:e7:19:a1:59:84:32:8f:68:4c:cd:b3:f7:b7:6f:
78:cd:b6:70:ea:75:42:65:22:d3:61:9a:1a:e4:4c:
33:df:dd:a8:52:3c:48:12:c5:4e:f8:16:bb:38:74:
b2:c4:48:29:50:10:f0:9f:9c:cb:a8:13:1b:b0:65:
a4:4e:6e:30:0d:5e:8c:0e:3e:be:4c:33:17:5f:5b:
80:82:c4:16:b8:2d:70:08:e9:ae:6c:44:05:32:dd:
96:4c:ba:29:52:60:7e:b4:c4:32:3a:03:3c:e3:84:
99:99:e2:14:05:0d:c4:6f:55:ee:94:95:62:01:92:
63:73:f3:31:f8:aa:ff:42:7f:a2:87:28:e4:57:df:
a4:cb:2b:a8:d7:14:79:f1:63:6c:84:dc:9c:be:22:
7a:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:93:50:51:AA:42:76:93:86:BA:01:4B:C0:81:87:3B:FC:EE:12:07
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gZNQUapCdpOGugFLwIGHO_zuEgc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:a040::/32
Signature Algorithm: sha256WithRSAEncryption
4a:e1:6c:70:1f:27:89:35:50:d8:08:b3:59:76:b0:73:a7:1f:
7b:70:8e:9d:f0:4e:6d:e1:b9:4a:4a:e0:4f:96:00:1c:14:d9:
89:76:ee:12:0f:ad:5e:12:ba:71:6c:e3:7f:b5:b2:ad:c3:3b:
c9:65:08:69:d8:56:3b:de:c3:3d:26:95:73:88:db:a2:14:bf:
83:c5:7d:a2:35:aa:7e:f8:ca:3e:ae:bd:ee:e6:1e:7d:68:2b:
58:e0:73:76:1c:d3:ae:53:0b:a2:7c:a8:d2:59:64:d3:aa:15:
39:06:05:47:dc:07:c2:62:5b:a0:8e:4e:e2:af:78:33:de:74:
72:1f:66:fd:55:60:87:b9:3d:f7:36:56:49:0a:da:76:d7:4c:
ff:2e:07:61:44:b3:ac:53:7e:fb:71:6e:20:f6:8e:12:ca:91:
25:c3:ce:1f:97:b6:ec:4c:e4:da:95:8e:8d:25:87:0a:1e:d2:
04:68:bb:a5:12:21:26:0c:ce:72:ae:77:0c:43:64:03:75:45:
f3:d9:3c:89:43:4c:fe:18:c8:8b:fd:e9:90:bd:ae:16:40:5a:
b7:2b:f3:49:18:1a:25:ba:f9:e7:d4:d5:4f:b3:bf:c5:fe:d5:
3d:40:ed:75:1b:0e:94:b1:f1:ee:0d:f8:81:46:97:c0:c9:ed:
c8:73:58:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 16:52:52 2025 by rpki-client