Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/rFxyaBIFB-KCsoxdt5IwChXqsL8.roa
File: rFxyaBIFB-KCsoxdt5IwChXqsL8.roa (raw, json)
Hash identifier: UEpSGRmG50i7uZ+pTtQB21cDMRplPX4am0s1jj+LOYo=
Subject key identifier: AC:5C:72:68:12:05:07:E2:82:B2:8C:5D:B7:92:30:0A:15:EA:B0:BF
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rFxyaBIFB-KCsoxdt5IwChXqsL8.roa
Signing time: Thu 15 Sep 2022 02:43:01 +0000
ROA not before: Thu 15 Sep 2022 02:43:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 210.243.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=AC5C7268120507E282B28C5DB792300A15EAB0BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:71:56:34:60:59:cc:5a:59:49:70:ef:bc:70:
5d:fe:15:af:61:4d:bb:d1:eb:69:dd:05:2f:35:d0:
56:df:ce:76:0f:6d:27:2f:9d:61:35:68:71:20:6b:
2d:26:5b:77:06:d4:62:20:73:3f:72:19:bd:78:2f:
37:e3:23:c5:e0:b0:51:c5:23:75:73:25:a9:5b:8b:
39:2e:98:4b:7b:0e:e5:fe:47:09:17:03:67:62:e2:
ee:4f:0b:e1:77:6a:df:b3:3a:86:fb:c1:44:e2:d5:
e0:27:b6:74:1c:ad:40:78:9e:aa:ac:22:27:87:0b:
17:9f:b4:f0:8b:96:a7:01:48:ff:7d:cc:77:eb:dd:
da:82:58:2d:87:89:b2:06:17:75:3c:a6:05:16:78:
72:88:eb:5d:58:3d:84:27:2f:2f:7a:97:2e:a7:f3:
0e:2d:6a:ef:77:e0:cb:fd:08:f5:6a:31:87:3a:11:
46:a9:9c:79:d9:d9:e9:ec:1b:a1:18:dd:4d:9d:2e:
a6:8d:c4:b6:d3:9d:67:9b:87:e9:a8:b5:ff:f0:72:
81:d4:9a:37:7e:03:d8:ae:12:5e:cb:90:d8:dc:c7:
a4:31:fa:fa:fb:ce:a8:e8:5b:46:c0:ec:08:7e:5d:
3d:30:b2:e0:61:c5:5c:60:79:71:83:22:e7:f7:d5:
b6:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:5C:72:68:12:05:07:E2:82:B2:8C:5D:B7:92:30:0A:15:EA:B0:BF
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rFxyaBIFB-KCsoxdt5IwChXqsL8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.243.128.0/17
Signature Algorithm: sha256WithRSAEncryption
4d:77:3f:80:b5:66:58:8c:77:b5:b7:bb:da:f0:ed:11:fc:76:
af:7d:2e:33:14:04:01:5f:c0:30:c8:fa:d2:f6:a9:00:76:ec:
a6:c7:8b:59:a7:cb:7c:55:7c:0b:88:ff:cb:f2:71:ea:0b:50:
9a:55:fc:7a:5a:9b:4e:05:f1:57:96:7f:c1:12:4e:5e:19:71:
6f:95:ff:03:a8:6c:4d:aa:92:c5:be:fd:2d:0f:5b:05:74:3d:
99:69:80:82:cc:33:45:80:38:07:b7:0b:c0:b4:8a:68:70:08:
b7:a2:85:63:00:ed:f1:e2:87:7a:74:80:e2:31:8f:c1:c1:a3:
00:6f:2e:7e:a9:de:33:91:aa:c3:1a:71:96:b0:25:71:95:60:
74:08:98:af:a6:50:53:93:df:83:b4:dd:cf:10:0b:39:b8:60:
04:7b:b9:4d:c1:73:14:c5:88:fe:b3:eb:69:e4:77:9f:f9:5c:
18:29:bf:28:3e:dd:9c:b2:f1:ff:1a:e0:1c:da:36:d1:b4:66:
c2:fb:cd:80:4f:4f:d0:f9:a9:fe:6e:20:ae:da:1e:9b:75:ce:
e2:4c:36:fe:1d:9a:8f:95:89:31:87:e5:91:99:a1:5f:d2:7a:
cd:52:d5:4e:d8:86:79:39:eb:e1:60:e4:e3:88:65:04:ce:ab:
a1:e2:e4:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:25:25 2025 by rpki-client