Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/i6zpAfd0LkcAwrfxO-nR1ZUyvW8.roa
File: i6zpAfd0LkcAwrfxO-nR1ZUyvW8.roa (raw, json)
Hash identifier: JYpE/3/5YLlb8/bQ90SgPH5EadGtXIBjOMt27IpI2I4=
Subject key identifier: 8B:AC:E9:01:F7:74:2E:47:00:C2:B7:F1:3B:E9:D1:D5:95:32:BD:6F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 13C4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/i6zpAfd0LkcAwrfxO-nR1ZUyvW8.roa
Signing time: Fri 01 Sep 2023 09:25:25 +0000
ROA not before: Fri 01 Sep 2023 09:25:25 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131602
IP address blocks: 106.105.168.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5060 (0x13c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 1 09:25:25 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8BACE901F7742E4700C2B7F13BE9D1D59532BD6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e2:98:ad:c1:fd:f3:a7:c4:67:94:88:98:30:
c1:77:b8:ca:98:0e:cd:27:ca:ce:4a:ae:9a:f4:a0:
cc:35:ea:66:5b:ea:96:2c:55:f2:48:1e:95:df:2f:
13:1f:7e:a0:09:3b:cc:0d:b1:11:56:ce:54:20:5e:
67:d9:63:44:55:a6:0d:7c:09:95:fe:94:d4:df:be:
50:01:6c:e8:57:5e:0a:b3:c4:e5:ff:2f:87:41:5a:
b8:62:e3:a7:40:1d:d3:87:08:ae:4b:e1:c6:10:94:
ce:25:98:f8:d1:0c:b7:c4:20:ba:b9:cb:98:1c:0b:
bd:c5:8b:b1:dd:c6:34:1f:59:7a:d3:71:89:a8:06:
16:8f:8a:cd:7b:58:0d:14:53:ed:45:f0:42:43:fd:
69:26:57:5b:dd:a4:4a:63:36:5e:9f:42:bc:6d:11:
91:12:82:15:09:00:95:62:78:3a:93:b3:4e:f0:a3:
dd:87:96:22:cd:15:ba:09:c0:26:7f:53:7d:fa:02:
16:b4:e2:d2:ea:5f:c4:8a:46:d4:ad:53:49:86:15:
83:33:dc:b3:7e:32:c7:91:79:4a:49:a3:71:a4:99:
39:7e:f7:92:70:4c:1d:2b:67:14:c3:d8:e7:f9:50:
81:ca:29:ce:0c:d2:4c:03:ee:70:4b:e1:2a:2b:25:
a6:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:AC:E9:01:F7:74:2E:47:00:C2:B7:F1:3B:E9:D1:D5:95:32:BD:6F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/i6zpAfd0LkcAwrfxO-nR1ZUyvW8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.168.0/21
Signature Algorithm: sha256WithRSAEncryption
9c:f7:cb:c6:5a:83:36:09:78:73:ac:9b:46:42:b7:64:99:d0:
d1:4e:b9:5b:bb:23:4c:17:46:9c:1b:43:37:20:e2:bc:1d:fe:
de:9d:79:a7:0e:d7:14:f2:74:95:24:4a:6d:25:7d:ed:ad:8c:
0b:5f:dd:13:5a:61:9c:fd:a1:d3:8c:c5:49:f5:ff:b6:22:17:
8e:98:41:22:b7:f4:e0:65:bc:b2:a1:74:77:7f:ad:b3:f7:d1:
23:97:b8:d4:6b:97:34:64:1f:de:07:2c:63:4d:58:59:73:53:
91:8f:8a:62:d9:72:7f:bc:ee:1d:20:11:64:22:dd:3f:73:80:
f7:bb:62:8e:10:66:27:99:00:48:dc:d2:fd:ad:eb:48:b8:2b:
e6:13:eb:fa:12:87:bc:c1:b5:0e:fc:2a:b9:28:ee:4b:bd:70:
35:e7:4c:61:a3:34:15:db:54:5f:13:50:4f:96:08:40:4f:94:
66:90:c4:e6:97:31:23:7f:80:75:06:0d:2d:04:2d:13:fc:15:
3f:7a:75:c7:56:15:2a:80:5f:9b:f0:b3:a5:04:91:a3:0c:19:
ed:9b:f6:50:d5:39:f5:bf:02:14:58:6f:4f:24:10:91:a4:83:
e4:99:de:98:70:31:5d:24:90:d2:59:58:0a:2c:7c:2f:66:c9:
2d:da:e9:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:18:32 2025 by rpki-client