Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/wjFsIAnRRkKhgyH0vszruhvqrOE.roa
File: wjFsIAnRRkKhgyH0vszruhvqrOE.roa (raw, json)
Hash identifier: 6R3V4Bry104zcjwHYA0pcY0vxABth93kwMfcQZ5eYPA=
Subject key identifier: C2:31:6C:20:09:D1:46:42:A1:83:21:F4:BE:CC:EB:BA:1B:EA:AC:E1
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0CE5
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/wjFsIAnRRkKhgyH0vszruhvqrOE.roa
Signing time: Wed 01 Feb 2023 10:29:15 +0000
ROA not before: Wed 01 Feb 2023 10:29:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 192.72.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3301 (0xce5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Feb 1 10:29:15 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C2316C2009D14642A18321F4BECCEBBA1BEAACE1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:29:b0:11:dd:e2:49:5c:eb:d1:f8:24:f6:5c:
bf:fd:83:90:f9:7a:ca:f0:a9:ff:78:56:d1:6f:d4:
3d:64:d7:92:f3:ad:16:2b:99:a1:27:2b:64:ce:3d:
b1:a2:45:96:d8:a0:49:98:26:c9:27:f0:50:1e:3f:
79:19:01:f4:c6:0d:b1:aa:58:b7:04:14:84:a6:cc:
af:c2:6b:50:cf:20:e1:0e:07:da:47:9f:c5:9b:53:
92:27:3a:f0:40:4b:fb:a2:34:3a:3b:02:5a:70:b0:
78:de:42:07:38:08:35:fc:3a:90:51:0c:f0:68:9c:
d6:35:6f:12:d5:39:89:15:c6:84:88:fe:83:c2:6a:
64:92:1a:99:c7:8a:e6:66:ac:01:76:d5:b7:29:3a:
da:77:8a:d9:9f:3b:43:d5:5b:32:07:67:26:5a:9a:
c8:a7:7f:8e:84:76:a1:6f:bf:b9:04:3e:aa:27:dd:
17:1d:5c:19:e4:a8:c2:a0:f9:11:70:ad:11:7d:64:
e4:59:10:49:ad:30:43:f3:5c:13:11:80:e9:16:bd:
a6:2a:db:33:b7:17:ed:50:20:41:a3:0e:5e:3e:08:
b3:39:53:22:a8:47:f2:da:40:4d:c8:08:31:ec:b5:
ad:a5:d8:78:e4:38:ee:5e:80:3b:93:e6:2c:2c:50:
59:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:31:6C:20:09:D1:46:42:A1:83:21:F4:BE:CC:EB:BA:1B:EA:AC:E1
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/wjFsIAnRRkKhgyH0vszruhvqrOE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.16.0/20
Signature Algorithm: sha256WithRSAEncryption
88:a8:3b:13:10:40:5a:a2:47:b6:f2:39:46:90:b2:fd:af:7b:
50:7e:d6:bf:fa:a9:93:be:ba:c8:12:6b:6f:27:8f:55:81:3a:
d3:3d:29:b3:2e:22:0b:f9:09:77:27:d6:29:d1:2c:75:33:47:
f8:3e:da:8a:cc:c1:dd:b9:7b:65:ec:d8:b6:0b:92:d1:6a:dd:
27:19:86:f7:c3:0d:9e:8b:06:52:2e:52:33:53:11:bd:f9:86:
b1:a1:04:13:c7:d5:c6:c2:69:4f:b7:11:21:e7:78:bf:11:b5:
33:57:bb:bf:0a:36:49:8d:c0:dc:5d:b6:d8:66:cc:7a:90:12:
b0:25:57:d0:4a:50:1f:84:b0:d3:b1:e5:42:92:be:d1:ce:c6:
61:3a:03:af:50:57:71:41:78:df:7f:bb:99:03:e0:b1:bc:5a:
02:27:d3:c6:ef:48:21:4b:ed:58:a8:bc:0b:91:fe:56:87:e8:
02:fc:34:7c:0c:ef:ae:6c:5f:b7:1f:63:4c:04:bc:17:78:67:
d8:00:c0:71:ac:6e:22:22:4d:98:40:79:57:c6:7e:8d:7f:0a:
12:e1:60:3b:03:06:40:a1:fb:40:6c:c0:b1:40:92:3d:95:56:
86:1a:a7:f6:2c:f5:3e:30:c3:b5:8b:c3:98:dc:71:53:8d:09:
86:18:aa:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 16:34:13 2025 by rpki-client