Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/rWtIo_e2lwasAwANkjq4ey6cWjw.roa
File: rWtIo_e2lwasAwANkjq4ey6cWjw.roa (raw, json)
Hash identifier: KCYEis3RGocS9mDCbeymKzLOKn/ELdiyUgSiq/JXBQQ=
Subject key identifier: AD:6B:48:A3:F7:B6:97:06:AC:03:00:0D:92:3A:B8:7B:2E:9C:5A:3C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0FC4
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rWtIo_e2lwasAwANkjq4ey6cWjw.roa
Signing time: Thu 15 Sep 2022 02:43:07 +0000
ROA not before: Thu 15 Sep 2022 02:43:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 123.204.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4036 (0xfc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 15 02:43:07 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=AD6B48A3F7B69706AC03000D923AB87B2E9C5A3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:4d:54:0d:13:ab:ab:fe:fc:88:a2:c4:e3:8a:
74:2c:6b:ca:39:f8:bf:b1:d9:92:5e:49:f7:a2:eb:
a0:23:00:61:90:4b:e9:91:51:1d:c8:41:ca:de:62:
32:0f:01:c4:51:c2:1f:e4:7c:13:a0:5d:f2:63:8b:
a9:b6:e2:cf:16:a9:8b:48:60:aa:f1:fb:29:4a:dd:
5a:16:0b:ec:35:d0:6f:0f:3b:cc:64:7b:79:01:00:
2f:14:a4:4d:ec:80:80:c8:1b:4f:16:a9:ab:19:e9:
6d:cb:a6:0c:d7:96:61:d3:a9:9f:fb:bc:98:89:86:
8e:ca:47:5d:87:f3:01:ab:c6:60:3c:a6:4f:f9:46:
78:06:6f:2f:76:e5:e7:4b:64:81:5a:ee:ae:23:5d:
cf:46:71:36:6d:49:0c:f8:1b:9d:87:ee:59:1b:90:
25:c5:49:8d:f9:4d:79:be:79:d2:16:9b:a7:8b:10:
31:10:8f:17:c6:dc:3c:8a:28:1e:89:51:53:2d:55:
94:f7:49:c5:03:8a:89:07:3a:5c:05:7a:76:01:8f:
44:c6:4e:40:95:4a:64:15:23:3a:3f:a2:d9:b1:c4:
04:6a:27:16:46:f9:f5:56:d1:1c:f0:3d:91:30:d2:
29:59:01:92:d6:80:e4:45:ff:e9:ec:f8:ea:b9:c7:
ed:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:6B:48:A3:F7:B6:97:06:AC:03:00:0D:92:3A:B8:7B:2E:9C:5A:3C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rWtIo_e2lwasAwANkjq4ey6cWjw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.204.0.0/15
Signature Algorithm: sha256WithRSAEncryption
4d:88:3b:6e:c6:06:e8:57:aa:1e:52:50:ae:13:dd:6d:12:4c:
cc:e3:a1:7c:b1:02:74:d8:14:07:94:3f:62:c8:20:d1:fb:a4:
e3:df:9f:bc:b6:a2:ee:4d:cd:e7:58:63:23:e7:e1:fc:f9:26:
21:66:b8:50:65:fa:8b:4d:d4:45:6f:e9:ff:ac:65:ab:89:fe:
16:97:b6:34:61:c2:8b:3c:42:8a:0a:2c:f7:9a:0a:2c:3d:2d:
4e:d3:fc:8c:1f:71:87:f9:a8:f0:f1:0f:81:af:ab:c9:84:a4:
bf:38:2c:b0:cc:12:df:d9:24:77:40:c3:8b:e8:89:c8:77:a5:
df:72:cd:df:2d:e7:10:da:c3:a4:30:46:08:15:df:a4:38:50:
ff:c4:8a:c1:66:9c:b5:a4:43:94:96:b4:00:9f:87:ab:6a:2c:
1b:05:67:c4:e5:6c:93:07:20:9e:73:e2:b1:2d:9e:5a:7e:10:
e5:23:b6:31:59:ef:94:8b:05:07:b3:01:b3:1d:84:7b:c0:30:
78:5b:5a:d3:cf:e6:ee:36:53:a7:35:f4:2b:bd:98:aa:ad:d7:
94:26:31:01:a2:dc:ab:19:d8:e7:2c:f6:5c:f9:e4:43:45:17:
1f:f6:26:4d:05:bf:11:53:fb:75:13:1c:d9:a9:ed:79:c6:c2:
fc:71:3a:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:36:20 2025 by rpki-client