Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/llAdsnhmerPTqWrRLr9N1X9YSq4.roa
File: llAdsnhmerPTqWrRLr9N1X9YSq4.roa (raw, json)
Hash identifier: PUfK0oEdBp6zhWd3E3D5JpCYgMmO/VvRm7P+Xltx+Uw=
Subject key identifier: 96:50:1D:B2:78:66:7A:B3:D3:A9:6A:D1:2E:BF:4D:D5:7F:58:4A:AE
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1303
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/llAdsnhmerPTqWrRLr9N1X9YSq4.roa
Signing time: Fri 01 Sep 2023 09:24:22 +0000
ROA not before: Fri 01 Sep 2023 09:24:22 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9919
IP address blocks: 220.229.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4867 (0x1303)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 1 09:24:22 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=96501DB278667AB3D3A96AD12EBF4DD57F584AAE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:9a:da:09:61:66:f6:e2:39:73:ef:db:94:28:
7c:53:4a:30:b8:2a:b6:1d:65:58:76:09:09:fd:2d:
ff:ee:b2:37:3f:d7:6d:a0:58:78:1c:e4:4a:c1:c9:
cb:5e:14:30:b6:9b:bd:78:f6:b8:42:f2:f7:0d:c4:
1d:40:8e:98:79:fd:36:ae:d7:e2:40:17:66:67:5f:
9c:e3:21:8c:ed:d3:54:8a:ee:65:ad:d1:f4:a7:90:
6b:78:19:e8:4b:16:49:1f:51:1c:0c:07:52:0a:fe:
21:fb:df:5e:55:d3:65:71:fe:2f:b4:8b:22:94:dd:
ed:c0:ad:0f:39:48:96:d6:b1:93:e8:6f:87:41:6f:
48:44:ae:cd:7b:4d:3a:eb:e9:2a:94:33:0d:b1:38:
cb:36:d3:89:d4:da:d7:a6:3f:5e:9c:df:7a:ce:b4:
32:a6:22:9b:51:1c:c4:4f:00:84:69:43:fb:d7:fa:
8e:96:08:82:bf:db:89:b9:23:35:59:25:f1:45:62:
57:bc:42:fc:6e:38:62:e4:62:69:2d:2f:51:31:20:
33:df:65:5a:4e:18:a3:d9:ff:95:5c:ee:99:54:c4:
36:13:15:97:a1:d7:b4:eb:5c:3d:b6:04:2f:59:29:
04:2f:2c:ba:b4:79:2f:2b:d6:50:f4:bc:6f:83:c4:
75:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:50:1D:B2:78:66:7A:B3:D3:A9:6A:D1:2E:BF:4D:D5:7F:58:4A:AE
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/llAdsnhmerPTqWrRLr9N1X9YSq4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a3:5f:ce:69:aa:b1:7e:c5:7f:66:41:ff:13:a5:2b:2d:49:d9:
9b:3f:31:8f:78:18:01:e7:68:5f:c6:bf:29:7c:e4:25:57:e2:
f8:26:0c:bb:36:07:b1:1d:a8:15:61:e4:ab:2b:48:8f:e5:c7:
c6:12:4d:4f:b6:dd:ce:e3:70:b4:a5:34:57:64:da:de:f9:e3:
67:80:6d:b9:ca:1a:d1:a1:4c:4d:d2:24:02:e0:30:14:b2:e4:
44:a5:84:c9:b6:47:42:70:72:d9:6a:ea:8d:66:80:ad:64:f5:
a2:5e:1d:ce:61:d1:63:77:c5:7f:ec:0b:c8:fb:e3:bb:9c:43:
e4:fa:a9:ba:9a:78:87:9b:5f:9d:dd:e2:0c:21:bf:c7:21:88:
16:fc:a6:78:d6:17:9d:10:58:2b:35:16:7c:d4:75:41:0f:42:
99:70:5e:7c:09:3f:1e:fb:47:e3:fb:dc:41:3a:90:e1:e6:98:
a2:99:9e:3b:e4:3a:55:15:19:12:bd:6f:10:84:dc:70:d8:3d:
f2:4c:34:a2:26:ba:6b:06:f6:7e:b9:67:27:66:89:a7:38:9d:
79:ad:50:aa:45:f9:53:c9:61:3a:d9:29:da:40:e3:51:ad:a8:
f4:b7:53:1b:4e:6a:06:37:ea:a1:85:9f:85:d8:f9:d5:27:12:
14:1d:8c:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:37:47 2025 by rpki-client