Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/x1smdQyJ_kMfqNARgQNBQ5_zhvE.roa
File: x1smdQyJ_kMfqNARgQNBQ5_zhvE.roa (raw, json)
Hash identifier: RRcmpxvWDRTjaXoaD9q5oyPkzGEFZsxDkY8gTqv0ezA=
Subject key identifier: C7:5B:26:75:0C:89:FE:43:1F:A8:D0:11:81:03:41:43:9F:F3:86:F1
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 089E
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/x1smdQyJ_kMfqNARgQNBQ5_zhvE.roa
Signing time: Tue 29 Sep 2020 09:52:14 +0000
ROA not before: Tue 29 Sep 2020 09:52:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9919
IP address blocks: 122.146.104.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2206 (0x89e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 09:52:14 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C75B26750C89FE431FA8D011810341439FF386F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:50:83:8c:ec:87:fd:60:da:84:49:d5:1d:c6:
4a:96:f9:1b:20:f0:95:d5:d2:0b:85:1f:61:42:cf:
d3:38:dc:87:13:14:ec:51:8a:61:fd:90:51:a8:d7:
50:9c:4a:d9:2f:ff:fe:48:cf:4c:48:35:95:7f:94:
8c:59:ef:8f:de:bf:69:af:f5:de:07:1e:0b:f4:53:
46:16:0c:a2:39:b5:8a:58:f0:a1:d8:cb:b3:ff:76:
bb:ee:5e:85:65:e1:ac:70:05:55:4e:2e:30:8f:0a:
28:2d:ad:86:a6:6e:84:b3:c7:2e:52:85:b4:ff:a8:
fc:69:3e:7e:8c:df:e0:bb:42:2b:f2:b7:3d:96:4b:
c4:dd:10:5e:bd:bd:f8:da:91:d4:ea:9a:58:a9:05:
c7:91:a6:17:18:b4:74:bf:1a:71:2a:f9:40:36:a9:
b4:11:eb:13:28:51:b8:10:8c:30:2c:45:55:08:70:
9d:70:05:d8:6a:40:2e:9c:15:23:f1:bf:f1:50:57:
60:9f:7f:a5:b4:21:26:c7:1b:b2:78:e0:42:18:35:
51:13:23:80:52:f3:b3:92:d3:5b:72:d3:87:07:b8:
c5:0a:3e:92:69:8b:58:03:50:5e:9a:f4:93:05:b4:
b7:cc:9a:bd:3c:97:87:c9:16:fe:94:56:66:57:12:
e2:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:5B:26:75:0C:89:FE:43:1F:A8:D0:11:81:03:41:43:9F:F3:86:F1
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/x1smdQyJ_kMfqNARgQNBQ5_zhvE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.104.0/22
Signature Algorithm: sha256WithRSAEncryption
02:04:24:65:1b:ab:51:2a:fa:60:45:06:63:24:e8:f9:ba:df:
90:53:31:7d:5e:bd:25:7d:05:b8:ce:e9:d1:81:7a:4d:c9:80:
64:83:0b:66:65:d2:28:28:67:4f:b5:79:a0:25:bf:14:5b:ab:
8b:a7:c1:05:99:00:b5:47:4d:f7:52:2b:e6:d4:98:b8:13:75:
b0:ce:1d:97:ae:dd:9d:95:db:9a:06:5e:97:9a:31:e9:ab:ec:
fc:62:62:a2:0e:7d:1e:86:af:c2:55:76:f8:b8:d0:2c:66:8d:
5b:fa:5d:27:f5:4f:8b:b5:f2:db:3c:42:98:7b:3f:72:45:61:
65:1e:54:e7:a3:75:0a:8d:34:12:47:64:b8:5a:5e:cf:51:6e:
7b:69:3a:55:fa:d9:c8:59:56:3c:cd:ad:c6:ba:6b:b0:db:65:
d2:33:cd:29:3a:a8:d6:d2:49:33:f5:dc:f3:8c:2a:24:73:16:
73:ac:20:ae:f8:2b:0d:d3:18:06:b3:bb:62:9c:db:ae:78:e7:
79:27:da:f7:b1:7e:13:ca:a2:10:49:79:43:ef:f7:63:94:22:
07:9b:64:16:96:a9:62:8b:e8:ed:6c:c1:41:c4:1a:42:e6:d5:
23:43:b5:fd:60:0e:5e:75:4a:a1:77:1a:ae:69:93:d4:c2:82:
52:85:e0:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:36:19 2025 by rpki-client