Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/hlxvT_hj_TrlU5rNQA-l5BAg0hQ.roa
File: hlxvT_hj_TrlU5rNQA-l5BAg0hQ.roa (raw, json)
Hash identifier: NPQb06s9Rbwi1sjck6wxAxvodGJvRn8tHWQDF0sV/u8=
Subject key identifier: 86:5C:6F:4F:F8:63:FD:3A:E5:53:9A:CD:40:0F:A5:E4:10:20:D2:14
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1377
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hlxvT_hj_TrlU5rNQA-l5BAg0hQ.roa
Signing time: Fri 01 Sep 2023 09:24:58 +0000
ROA not before: Fri 01 Sep 2023 09:24:58 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9919
IP address blocks: 115.30.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4983 (0x1377)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 1 09:24:58 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=865C6F4FF863FD3AE5539ACD400FA5E41020D214
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:91:91:ef:50:4c:8f:6a:f0:ef:ed:c8:82:a1:
af:24:99:fb:9d:cc:59:e0:60:3d:12:be:8e:a1:d1:
49:f3:be:cb:90:16:7e:65:f3:49:a4:78:93:50:7e:
3c:eb:8f:a3:b2:ca:d3:9b:86:16:65:01:e3:04:0c:
0e:f8:b5:30:c7:fb:14:e0:af:f0:1d:d1:84:70:fc:
2d:5c:3c:35:88:2d:8e:9f:83:d0:55:0d:da:d6:aa:
0b:16:6f:f3:8e:3d:37:de:de:43:c2:61:f2:e9:b5:
1f:2e:f4:51:d5:b9:8b:fd:9d:20:4f:b7:e3:f9:1d:
cb:2f:9f:b8:78:fa:0c:6e:88:e8:e1:a2:b5:fd:81:
ef:e4:89:1c:dd:4d:d6:5c:84:6e:01:7e:97:16:71:
3e:e1:9a:b6:43:63:a8:5c:53:d7:cb:09:b9:20:3d:
87:67:3b:e0:02:a4:c5:b2:26:af:bf:cc:ff:fe:52:
89:8c:4c:12:b6:bd:de:56:d3:85:f3:80:c0:f3:5b:
36:03:6f:d1:f0:0d:15:1e:cb:5f:58:73:0d:93:2f:
c2:e3:4c:77:39:03:38:54:68:c4:0b:0d:ec:43:29:
46:c0:1e:78:bb:0c:da:b7:39:1c:2d:37:a4:97:5d:
d1:16:15:ae:06:a1:93:21:dc:28:6e:ba:83:e2:e1:
d1:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:5C:6F:4F:F8:63:FD:3A:E5:53:9A:CD:40:0F:A5:E4:10:20:D2:14
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hlxvT_hj_TrlU5rNQA-l5BAg0hQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.30.64.0/18
Signature Algorithm: sha256WithRSAEncryption
74:8f:7e:fb:4d:10:55:ce:ac:fb:69:84:84:a8:50:a4:b2:75:
a2:6b:5e:3d:70:85:37:81:3b:f7:80:37:45:e8:7e:b6:37:08:
6c:50:a9:d7:93:e3:bf:85:f5:72:5c:6b:1c:3b:3a:7d:de:5c:
70:b8:bf:ed:82:58:24:80:61:34:db:b4:ac:c9:2d:19:96:e2:
7b:32:e0:e2:95:fa:35:6f:e4:46:ca:6b:d7:8a:94:75:8e:ae:
d2:3f:28:93:e5:d3:55:0c:d1:d0:5f:35:a8:ed:74:56:ce:75:
c1:8c:5b:26:cf:69:e9:86:42:6f:30:cc:7f:72:d5:77:de:96:
e3:26:ba:4f:00:e8:c3:e0:06:4e:55:e4:e7:92:95:9c:f3:31:
bc:61:08:0e:4e:21:a6:a0:89:1a:15:ab:f8:0b:d1:dc:93:df:
cb:23:4f:c0:f3:0e:22:70:73:30:d7:72:bf:e8:5f:3a:25:47:
30:e5:fa:10:63:58:bf:1c:b1:83:d7:e5:0d:f2:10:53:05:78:
44:54:b0:c4:bb:fb:f9:a9:b4:c8:d7:ce:f7:32:80:13:29:27:
98:58:f2:bb:6f:c6:d6:b4:07:2f:7c:87:91:19:5f:38:bb:e3:
0d:1e:f3:03:f6:d0:a6:47:06:5b:6c:08:69:5b:30:b0:73:ee:
f0:d4:56:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:13:45 2025 by rpki-client