Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ybGgZXnjG7UL_x86z96qqnQ2_tk.roa
File: ybGgZXnjG7UL_x86z96qqnQ2_tk.roa (raw, json)
Hash identifier: FVbZ9l6BTF0u4hiQ/UH7+VTdIhHFxlvMwCl3R366ziI=
Subject key identifier: C9:B1:A0:65:79:E3:1B:B5:0B:FF:1F:3A:CF:DE:AA:AA:74:36:FE:D9
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1048
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ybGgZXnjG7UL_x86z96qqnQ2_tk.roa
Signing time: Wed 01 Feb 2023 10:28:21 +0000
ROA not before: Wed 01 Feb 2023 10:28:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 106.105.250.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4168 (0x1048)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:21 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C9B1A06579E31BB50BFF1F3ACFDEAAAA7436FED9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:28:a4:da:24:15:6f:17:e4:a2:66:5a:29:23:
5c:4e:51:36:c2:ca:5f:d0:84:36:ab:7e:09:e9:a8:
86:fb:64:46:5d:5b:88:25:ac:1c:af:e6:06:2d:08:
47:f8:01:41:f8:86:8e:80:a5:20:ec:29:21:16:c5:
87:5f:5d:e3:6d:bc:e1:bb:e3:d8:55:b1:1a:63:a3:
e4:5d:ca:72:4f:80:99:2b:a5:b9:7d:8a:8e:4b:75:
99:da:1a:50:96:9f:90:b4:53:65:f0:a6:51:ee:b1:
f9:63:29:c2:72:55:58:b0:bf:97:60:ca:92:8c:dd:
bf:82:72:46:84:3b:7d:36:43:23:f2:7c:a3:98:0c:
37:08:1e:44:74:10:e3:3e:cc:f7:2f:c6:29:f7:ec:
00:72:44:8e:2e:77:07:53:a1:26:4c:ab:cc:7f:db:
ce:84:32:20:87:b4:84:a8:c6:23:81:3d:60:f7:ad:
ca:14:3e:0c:45:31:1d:14:3b:2d:a1:93:ec:be:c1:
08:5d:62:7f:f5:f8:90:22:81:40:b6:f0:c3:27:a2:
03:47:4a:56:59:42:92:e5:39:bf:e1:39:6b:37:a0:
97:52:2b:d0:3d:00:69:40:68:1e:e8:20:21:88:a6:
c3:d2:82:f1:44:e4:da:14:81:86:0c:f1:62:d4:5c:
46:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:B1:A0:65:79:E3:1B:B5:0B:FF:1F:3A:CF:DE:AA:AA:74:36:FE:D9
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ybGgZXnjG7UL_x86z96qqnQ2_tk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.250.0/23
Signature Algorithm: sha256WithRSAEncryption
23:df:00:48:de:ad:f4:f2:12:42:40:99:4a:83:78:a0:9f:8d:
7f:4b:33:27:04:99:f0:0e:62:3d:29:eb:ad:5a:80:8f:96:42:
90:2d:32:5e:25:79:72:3b:c3:b8:38:81:57:01:d0:95:4a:5c:
9d:25:65:77:81:60:20:fb:be:2d:7b:48:91:76:a1:8e:71:64:
aa:81:97:9a:39:f8:8a:43:92:d8:83:a7:b3:a9:e1:33:2a:16:
04:d9:9a:6c:b6:24:70:b9:40:e8:4e:fa:aa:83:a8:33:82:7e:
f9:0e:c1:b6:d2:de:45:bc:67:0f:d0:09:14:c9:7f:50:83:7a:
03:04:5f:f5:47:af:96:52:cd:41:b2:c7:41:38:3e:97:3a:11:
f2:20:48:49:c1:58:a0:84:b9:6a:13:67:d5:b5:41:64:3b:0c:
ef:8a:9e:d3:bf:9f:9d:38:6b:2d:cc:84:32:7c:ea:cf:dd:cb:
53:15:21:91:ae:77:2e:4b:35:2c:12:27:91:c8:40:3c:61:17:
03:15:56:18:4e:f8:bc:4a:64:ad:b2:57:cb:f9:8e:06:42:30:
59:0b:86:e2:35:55:ad:d4:e0:55:55:c3:56:3d:19:e5:ef:de:
ac:52:d4:b9:b3:1f:75:e0:22:a4:d1:f7:d2:f9:f9:33:86:ed:
21:5a:53:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:22:01 2025 by rpki-client