Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/xEm70TsRpB5cIBmGljHIRQSW4jw.roa
File: xEm70TsRpB5cIBmGljHIRQSW4jw.roa (raw, json)
Hash identifier: AXXr65DlSLYcGvUoem6ZyKcHQCv/mLF8+b41X2eRvWM=
Subject key identifier: C4:49:BB:D1:3B:11:A4:1E:5C:20:19:86:96:31:C8:45:04:96:E2:3C
Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Certificate serial: 0B71
Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/xEm70TsRpB5cIBmGljHIRQSW4jw.roa
Signing time: Wed 29 Sep 2021 02:44:12 +0000
ROA not before: Wed 29 Sep 2021 02:44:12 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 192.72.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2929 (0xb71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665
Validity
Not Before: Sep 29 02:44:12 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C449BBD13B11A41E5C2019869631C8450496E23C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:14:f7:81:50:25:22:d1:e5:31:23:de:da:fa:
cb:a0:a9:11:8e:eb:a4:d6:a5:96:a5:31:0c:82:1a:
80:af:4e:19:03:5a:8e:43:48:3e:56:9a:7c:69:0f:
43:2e:97:de:30:19:e5:7c:f8:88:13:d2:21:ba:12:
c2:32:1f:91:80:d6:43:48:b9:61:a8:28:db:1a:b9:
06:10:0f:7d:56:6d:c4:d5:ee:37:21:fb:2f:e2:6b:
a0:db:15:97:e5:fa:3b:56:ba:0b:17:3e:a1:47:90:
bd:37:b2:1b:7a:e4:41:68:5a:c0:47:78:a4:71:04:
4c:2c:2e:a2:22:5c:fe:16:d5:ed:13:e1:fd:25:c0:
b0:80:c5:40:87:0f:06:14:63:a2:90:a8:d8:53:79:
01:84:96:51:02:c8:e7:6a:8f:10:f9:d2:91:ce:c7:
7c:b2:86:e7:c2:33:96:bd:47:67:b0:53:44:97:ef:
63:93:af:94:e6:ee:97:17:5d:0f:b0:ca:85:09:91:
33:a9:83:7d:0f:4e:52:85:06:84:5e:4d:cc:0c:cd:
07:0d:84:0d:a1:76:f1:d1:12:a3:92:72:93:aa:9b:
06:9e:e9:75:33:b0:13:a2:87:7e:aa:f2:aa:bb:f5:
31:b0:2f:87:c5:07:7b:03:74:9f:4d:ad:62:03:13:
bb:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:49:BB:D1:3B:11:A4:1E:5C:20:19:86:96:31:C8:45:04:96:E2:3C
X509v3 Authority Key Identifier:
keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/xEm70TsRpB5cIBmGljHIRQSW4jw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.72.3.0/24
Signature Algorithm: sha256WithRSAEncryption
39:86:3d:f9:a1:04:6b:f2:89:01:fc:52:df:9d:70:b5:6d:9b:
d1:82:9c:67:97:bf:c2:79:12:0f:23:cb:9a:51:23:34:c7:81:
87:91:8a:57:d6:ad:a8:39:3f:a7:a6:93:65:d4:b2:9e:8c:d1:
8e:be:7c:36:94:c0:9b:fe:df:36:ef:bc:32:49:d6:52:f7:e4:
88:4e:c4:ac:89:a3:ac:07:64:cf:9d:16:00:a4:8b:eb:0b:c5:
e3:2d:aa:3b:b8:48:97:ff:e6:60:5f:da:04:18:b9:15:4c:b1:
7b:c6:45:a7:59:28:e2:b6:fd:3c:7e:61:96:57:ce:2d:e6:a7:
78:48:c1:9d:2a:10:97:24:ed:df:8e:ef:32:4b:03:a1:55:03:
00:fc:1e:8a:1c:42:d5:a2:1b:b4:bf:3d:8a:c3:a6:03:9a:d8:
15:86:35:7c:82:bf:af:72:7c:f1:ef:32:16:67:e4:83:7b:d3:
b0:ef:7f:56:23:d2:e2:63:34:a6:14:35:c6:4d:d5:ec:ae:97:
b7:88:7c:e1:1b:dd:e1:91:87:c3:32:b7:f8:2c:0f:31:cf:fe:
30:f7:df:84:b2:8b:49:69:91:0b:ae:9a:db:22:64:a4:6d:06:
f3:1a:9c:84:81:7b:08:00:0a:c9:68:ba:07:f4:52:e9:83:85:
5e:36:db:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 14:46:28 2025 by rpki-client