Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCDTV/K-PAJTAsJaK0P7yzyuI5W1jjEbU.roa
File: K-PAJTAsJaK0P7yzyuI5W1jjEbU.roa (raw, json)
Hash identifier: toE7l8zzdzol2DW2QbMQeGbPqWMjI99TsfHmPVsJ/No=
Subject key identifier: 2B:E3:C0:25:30:2C:25:A2:B4:3F:BC:B3:CA:E2:39:5B:58:E3:11:B5
Certificate issuer: /CN=4B81BB31FA5292C8025B828F802722DE0D5EADE3
Certificate serial: 094C
Authority key identifier: 4B:81:BB:31:FA:52:92:C8:02:5B:82:8F:80:27:22:DE:0D:5E:AD:E3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/S4G7MfpSksgCW4KPgCci3g1ereM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCDTV/K-PAJTAsJaK0P7yzyuI5W1jjEbU.roa
Signing time: Wed 29 Sep 2021 02:53:05 +0000
ROA not before: Wed 29 Sep 2021 02:53:05 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131597
IP address blocks: 103.196.172.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2380 (0x94c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4B81BB31FA5292C8025B828F802722DE0D5EADE3
Validity
Not Before: Sep 29 02:53:05 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2BE3C025302C25A2B43FBCB3CAE2395B58E311B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:e4:c4:0f:60:e6:f0:6a:e7:8b:66:f9:54:5c:
10:6c:3b:02:95:42:6d:12:ab:55:35:9e:a8:83:f8:
03:51:fe:a4:47:a3:e6:a9:7b:23:bf:2c:25:00:87:
d3:8b:f4:fd:15:a9:da:c4:02:2c:ba:80:87:0b:8d:
1e:bb:78:76:6e:e3:91:32:08:00:f0:a3:94:eb:71:
0d:d9:ce:8d:cb:d2:40:69:66:8d:cc:9e:cb:5e:d3:
d1:6f:37:c9:ca:df:a4:52:6f:fd:de:2d:c9:c9:20:
a1:25:20:0b:04:e5:8b:9b:91:1d:25:e9:b7:32:ee:
53:9e:fb:1d:d7:ec:64:81:37:33:f6:35:12:25:a3:
ba:c0:d6:ed:97:e7:87:56:11:30:23:09:9e:cd:d1:
b1:b2:5c:1e:70:b7:d2:46:25:6c:ed:37:95:47:6c:
2e:d5:c9:5e:1c:c2:f3:94:8d:ea:a3:ff:c0:7a:44:
9f:52:19:d0:c9:1b:66:ab:02:50:5e:14:9f:f8:3d:
a0:94:e8:99:97:03:f6:1a:9c:0d:c8:23:25:8a:14:
2a:d7:72:13:96:ca:9b:d3:58:61:81:bd:75:e7:2a:
39:eb:46:aa:05:a2:ec:af:34:1c:11:43:78:15:d1:
a2:9f:20:1d:6c:d1:e3:f1:49:bd:c1:f6:a0:d7:53:
69:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:E3:C0:25:30:2C:25:A2:B4:3F:BC:B3:CA:E2:39:5B:58:E3:11:B5
X509v3 Authority Key Identifier:
keyid:4B:81:BB:31:FA:52:92:C8:02:5B:82:8F:80:27:22:DE:0D:5E:AD:E3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCDTV/S4G7MfpSksgCW4KPgCci3g1ereM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/S4G7MfpSksgCW4KPgCci3g1ereM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCDTV/K-PAJTAsJaK0P7yzyuI5W1jjEbU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.196.172.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:1c:57:38:5c:95:24:fd:45:c0:ab:e7:57:0d:b3:20:b1:24:
29:ec:71:89:e6:58:cb:ed:9f:1f:89:21:c4:4d:2e:2e:b9:68:
df:e9:df:61:70:3c:1c:00:78:f2:56:7d:89:dc:83:39:56:5c:
ee:ae:96:3d:7d:75:6a:cc:c3:40:3d:65:ea:49:2c:83:6a:6e:
a5:28:60:aa:4a:67:c0:5b:ff:70:2e:f0:f8:b9:80:c9:c0:6c:
f4:1d:76:b6:b7:9f:23:d0:c7:23:db:58:e4:f3:cc:24:29:3b:
cb:16:43:cf:82:95:1f:b2:46:ba:ff:76:27:af:4a:0d:75:6a:
6e:d2:1f:fa:bf:62:54:d7:b8:14:38:7e:de:14:43:0c:2b:7a:
05:5d:31:d7:b0:5e:f6:e6:a2:dd:df:25:a7:d1:bb:6a:d9:57:
47:c0:c7:c0:76:2f:83:a8:e8:ce:94:3f:cc:7b:d3:ac:35:a4:
dd:4a:0a:14:df:67:bd:9e:40:e3:ed:83:23:06:09:af:88:58:
c7:0d:e5:75:7e:fd:bf:99:cf:68:70:54:3f:92:4a:3f:eb:67:
ad:88:ad:46:f0:07:3f:c0:4e:9e:b7:40:ae:01:5d:c5:de:2a:
32:34:d0:e9:b8:5a:01:91:69:a8:db:b8:45:27:e1:7c:15:73:
48:04:5b:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:10:10 2025 by rpki-client