Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/mvm2RKPeYMXR9EdMAJsXetIPQUk.roa
File: mvm2RKPeYMXR9EdMAJsXetIPQUk.roa (raw, json)
Hash identifier: sYTpuIa3TokZj7ebBaRJGVkwzP2NX7qp7NihGr6sURo=
Subject key identifier: 9A:F9:B6:44:A3:DE:60:C5:D1:F4:47:4C:00:9B:17:7A:D2:0F:41:49
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 08A6
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mvm2RKPeYMXR9EdMAJsXetIPQUk.roa
Signing time: Tue 29 Sep 2020 09:52:16 +0000
ROA not before: Tue 29 Sep 2020 09:52:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 113.196.128.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2214 (0x8a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:16 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9AF9B644A3DE60C5D1F4474C009B177AD20F4149
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ca:bb:d2:98:d2:72:0e:29:3e:d7:ee:76:8f:
55:ae:f9:3c:62:d2:7d:07:5f:c9:a5:91:46:8d:26:
ca:84:e6:bb:4f:b7:bb:09:d6:1b:c0:5f:a0:0e:d1:
cc:54:a1:c5:bf:cc:48:ac:16:e6:5f:0e:67:6e:f8:
d7:38:b2:52:71:7d:fb:d0:09:ec:8e:44:25:be:79:
3f:20:7a:e4:f2:9e:1d:52:18:4a:e9:7c:e2:41:9d:
1c:48:58:7d:e9:ec:d8:eb:79:5d:52:a2:ef:e6:7f:
c0:3e:4d:e7:62:a0:1b:d3:1d:6d:66:85:2c:6c:0d:
34:a3:f3:20:0d:9b:12:c9:33:9c:9f:80:c7:66:49:
47:0e:db:c8:fa:24:f5:a5:90:8f:9c:c4:4d:8b:86:
f0:6b:87:bf:d2:90:f9:af:94:d2:3c:84:7f:1f:92:
69:5e:aa:1d:d6:af:dd:d4:6d:a8:d9:1d:89:34:f6:
10:cd:33:9b:b5:e1:3d:b4:bf:56:f1:cd:18:33:b3:
ae:51:5a:b2:d1:20:c4:ad:20:6d:11:da:61:4a:44:
0e:80:e1:a5:2d:38:bf:68:fb:00:58:c8:73:ce:dd:
d4:ca:bc:bb:6c:b1:81:1f:dd:e6:22:57:65:4e:39:
3c:cc:66:6f:8e:38:9a:a7:b5:77:53:5b:40:cd:d3:
ec:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:F9:B6:44:A3:DE:60:C5:D1:F4:47:4C:00:9B:17:7A:D2:0F:41:49
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mvm2RKPeYMXR9EdMAJsXetIPQUk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.196.128.0/20
Signature Algorithm: sha256WithRSAEncryption
76:8d:42:22:dd:95:72:42:f5:cb:1c:8f:13:89:66:ed:bf:40:
e1:98:42:3f:54:af:e1:6f:99:06:45:2b:4e:00:8e:33:5a:25:
b1:9a:e1:6e:29:dc:ae:fd:5e:3c:4e:90:d7:05:c4:85:8a:94:
3f:e5:5a:44:32:24:2e:03:58:1f:b2:64:3b:d1:f8:c2:4f:b5:
83:5d:02:08:4f:97:f0:02:e0:c7:68:0d:0d:20:5f:78:68:66:
ec:22:bb:0c:bd:5d:01:58:c0:27:ad:29:af:98:08:26:a5:69:
6d:49:c9:b0:3b:f0:fd:f8:33:a4:f2:73:3b:70:aa:22:10:80:
80:0d:0a:eb:1f:74:73:ea:a1:db:14:fe:7e:bd:69:cf:1c:44:
85:42:05:8e:b2:be:93:cd:37:9d:13:d3:e9:c7:5b:3c:11:6d:
0b:cf:3b:09:91:bc:d7:6e:44:fe:c0:87:99:2d:1a:b2:ef:04:
1f:bf:83:8c:cf:8e:ce:07:86:66:a3:bf:7d:c4:e4:e0:34:c8:
9f:94:3f:b1:3e:e1:cc:7f:d4:13:25:e0:5b:4d:7a:ad:34:8c:
13:d2:af:81:1e:55:8a:83:68:fd:58:37:3c:42:bb:41:6e:61:
03:fb:f6:cb:9f:ee:7e:cc:6e:73:39:2e:4b:60:7c:e1:74:f1:
00:e2:e0:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:14:30 2025 by rpki-client