Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/k4f76L7KMqCsEiT8I8TyXv72XcM.roa
File: k4f76L7KMqCsEiT8I8TyXv72XcM.roa (raw, json)
Hash identifier: IRzLFsiuk0V8PXSjO3FctKbv2qKlwL4d3SwCpsBctao=
Subject key identifier: 93:87:FB:E8:BE:CA:32:A0:AC:12:24:FC:23:C4:F2:5E:FE:F6:5D:C3
Certificate issuer: /CN=1C7073A6066C765842FDF07169E43518A0BB0235
Certificate serial: 05
Authority key identifier: 1C:70:73:A6:06:6C:76:58:42:FD:F0:71:69:E4:35:18:A0:BB:02:35
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/k4f76L7KMqCsEiT8I8TyXv72XcM.roa
Signing time: Fri 17 Nov 2023 07:24:40 +0000
ROA not before: Fri 17 Nov 2023 07:24:40 +0000
ROA not after: Sat 09 Nov 2024 15:30:21 +0000
asID: 150755
IP address blocks: 203.175.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1C7073A6066C765842FDF07169E43518A0BB0235
Validity
Not Before: Nov 17 07:24:40 2023 GMT
Not After : Nov 9 15:30:21 2024 GMT
Subject: CN=9387FBE8BECA32A0AC1224FC23C4F25EFEF65DC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d9:85:6d:46:23:3e:84:a7:93:7f:0e:41:2a:
eb:49:59:2d:6e:34:ee:e3:d3:22:23:07:2c:98:2a:
6e:23:8c:03:63:d0:50:03:f2:4e:28:5a:b7:5e:fa:
f5:c9:b5:66:ff:c8:d9:b1:b4:7e:f6:58:fd:c9:df:
ee:93:df:9f:8c:f9:67:71:0b:6a:27:f0:60:73:a5:
69:26:45:51:c9:e3:b3:69:b2:b3:52:4f:4c:d6:21:
67:fe:df:32:4a:f4:56:89:79:bb:52:27:14:cb:fa:
75:3d:bc:01:f6:11:79:ee:c0:7d:cd:ab:e8:8c:8a:
8c:21:90:a9:13:e9:7a:a5:a5:20:5d:93:13:59:fe:
f3:a9:2f:39:4c:15:a7:0c:7f:96:75:f5:a1:3c:65:
75:2f:3b:a1:4e:58:3e:5b:9f:a5:9d:f0:3f:58:26:
bc:4e:01:51:e9:0a:99:48:6a:8c:92:e7:85:07:18:
35:07:7e:91:4a:95:ad:ca:7f:00:8a:74:ac:fa:0a:
96:21:04:2f:98:39:69:53:a9:f4:50:83:5b:79:cf:
2d:42:20:3e:98:46:f9:12:9a:9c:f4:25:da:4d:3b:
53:76:30:09:e6:ce:a2:cf:23:52:2b:e1:6f:5b:7f:
91:d5:f8:78:1a:28:8c:ec:26:8a:a2:e4:8a:85:bf:
e4:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:87:FB:E8:BE:CA:32:A0:AC:12:24:FC:23:C4:F2:5E:FE:F6:5D:C3
X509v3 Authority Key Identifier:
keyid:1C:70:73:A6:06:6C:76:58:42:FD:F0:71:69:E4:35:18:A0:BB:02:35
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/k4f76L7KMqCsEiT8I8TyXv72XcM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.175.105.0/24
Signature Algorithm: sha256WithRSAEncryption
54:6f:fe:e5:5a:b6:9a:49:ba:c3:44:d6:f0:54:d6:c0:79:f0:
d2:67:df:30:9e:34:ed:a3:17:61:ff:bb:b3:52:09:fb:5d:82:
c9:40:b5:83:40:50:f6:7f:f0:b3:8c:bb:fd:87:e0:ad:bc:8f:
70:36:50:2f:3e:9b:f8:91:8c:1e:f9:0e:6b:af:b3:17:e7:4e:
e7:7f:1f:ba:80:a2:15:2d:34:a9:fe:52:37:02:b3:dd:11:96:
3f:c6:90:05:03:7d:14:7f:d9:62:a3:20:42:73:46:96:26:35:
ff:88:62:6a:9b:9f:17:52:f8:a4:e7:6d:b0:1a:42:f2:e0:3c:
3b:67:65:78:43:82:15:04:4a:a1:a3:4e:1b:a9:e5:51:92:e2:
2f:eb:08:81:67:89:b6:35:6a:15:89:7f:af:df:8f:c4:57:d4:
ce:bb:08:3b:c9:b5:11:78:d5:e1:ae:94:47:22:a1:0e:2d:ee:
af:22:90:89:f9:c2:bc:31:9a:06:49:ac:74:67:ed:83:73:c3:
8e:47:84:1d:f5:7b:5e:f6:0c:ae:1f:1c:31:8b:47:14:23:8d:
72:57:86:1e:18:24:b8:0b:5e:e8:cb:35:e7:4f:73:93:8e:9e:
98:35:d3:56:cd:d7:a2:17:26:a3:1c:44:b3:41:f4:41:36:db:
41:2f:6e:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 15:01:27 2025 by rpki-client