Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/iYNT4gsK_UntKEtzVgpWNc8wXMw.roa
File: iYNT4gsK_UntKEtzVgpWNc8wXMw.roa (raw, json)
Hash identifier: zPQka8iMSvgjMolVYmCBKWdilw5E5K4J6rx3qB3maaY=
Subject key identifier: 89:83:53:E2:0B:0A:FD:49:ED:28:4B:73:56:0A:56:35:CF:30:5C:CC
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/iYNT4gsK_UntKEtzVgpWNc8wXMw.roa
Signing time: Thu 15 Sep 2022 02:43:59 +0000
ROA not before: Thu 15 Sep 2022 02:43:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 123.51.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=898353E20B0AFD49ED284B73560A5635CF305CCC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:de:8f:0f:3d:fd:41:1f:20:2f:fc:86:f6:9c:
4c:1a:4c:a7:d1:b8:9b:0a:1e:a6:9d:73:05:2e:c2:
b5:9e:31:4e:3c:04:64:3e:10:f3:40:1f:f5:18:e2:
d9:7f:fa:85:bb:0e:9c:f8:b3:80:24:a9:1a:e6:50:
07:a9:b6:5c:b5:96:ea:59:2c:ce:e4:ac:ad:d2:cd:
91:9a:42:a1:ea:1d:98:c2:8c:3c:e1:86:f3:b0:08:
a5:a7:13:f1:41:bf:32:2a:14:2c:84:77:b7:58:7b:
85:68:dc:1b:34:f8:60:1c:6d:2e:1b:28:e3:44:c8:
d9:56:2a:a4:57:9b:f8:5c:a2:4d:07:fe:51:eb:29:
d2:e6:59:ac:43:ab:ea:d0:a5:6b:b7:19:d4:be:ea:
34:5c:de:ec:e3:38:e7:87:95:6e:27:33:5a:71:c7:
84:3c:f9:2f:b9:81:45:57:05:8a:3e:2a:f9:0b:a9:
d8:82:9a:45:e2:b1:ea:67:b2:3e:05:fa:7a:5b:90:
14:cc:4f:6c:0c:d8:13:c2:2b:15:a5:55:02:c3:2b:
06:46:b0:b0:28:fc:0c:8a:67:48:d7:e8:4b:aa:03:
3a:1d:54:35:86:36:21:a0:2d:ba:29:97:8c:72:e8:
2a:a5:ec:10:b2:d3:e5:cb:a9:3c:88:5b:87:92:fb:
fe:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:83:53:E2:0B:0A:FD:49:ED:28:4B:73:56:0A:56:35:CF:30:5C:CC
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/iYNT4gsK_UntKEtzVgpWNc8wXMw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.51.180.0/24
Signature Algorithm: sha256WithRSAEncryption
07:be:93:94:66:0d:63:a0:8c:5e:82:46:08:be:eb:1e:00:23:
9a:a0:a3:f1:b8:cc:e6:b2:3e:d6:5e:08:7c:a7:52:3d:33:a6:
11:78:c1:69:bb:86:7f:30:40:22:c8:e6:f7:a7:98:40:23:03:
a2:38:dd:fc:61:f8:c6:eb:93:d3:d8:3c:02:3d:7c:59:f3:8b:
45:3e:15:25:1d:d5:96:8b:7d:b3:a3:58:7d:66:5f:2c:67:51:
54:74:b1:b7:fc:7c:53:be:07:fe:f7:f0:81:e9:bc:d2:10:57:
74:80:9a:7f:bf:8c:16:e3:5f:0e:eb:95:ba:f5:90:ce:19:8a:
46:14:14:d1:e6:99:67:ea:16:1f:dc:76:06:4d:03:d8:f9:7e:
71:21:05:5a:c5:de:4e:f1:15:8a:6a:18:ad:a2:cd:1f:38:e8:
e2:b7:d9:e7:e1:34:4b:f6:9b:fe:8c:02:79:6f:ba:7e:b1:1a:
a1:74:4b:74:64:be:48:91:a1:6e:ff:0c:56:58:4f:f7:47:c1:
a9:de:87:c8:ec:08:5d:a7:58:09:2d:47:50:a9:e9:0b:97:46:
0b:b4:25:17:a3:50:d3:3e:e9:16:04:99:3a:cb:f9:8a:46:7f:
94:1b:e8:5d:27:f4:a8:c0:b0:fa:b5:a1:80:13:47:43:e3:2c:
8b:fe:a9:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:22:56 2025 by rpki-client