Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCDTV/MuiRvXxwagnRmuN6NPdNz6Xnf2U.roa
File: MuiRvXxwagnRmuN6NPdNz6Xnf2U.roa (raw, json)
Hash identifier: QJUxGqEp/EgkAj3fIBWqyaZUNQmWKKa6aubl7hsG9vA=
Subject key identifier: 32:E8:91:BD:7C:70:6A:09:D1:9A:E3:7A:34:F7:4D:CF:A5:E7:7F:65
Certificate issuer: /CN=4B81BB31FA5292C8025B828F802722DE0D5EADE3
Certificate serial: 076F
Authority key identifier: 4B:81:BB:31:FA:52:92:C8:02:5B:82:8F:80:27:22:DE:0D:5E:AD:E3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/S4G7MfpSksgCW4KPgCci3g1ereM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCDTV/MuiRvXxwagnRmuN6NPdNz6Xnf2U.roa
Signing time: Tue 29 Sep 2020 10:00:43 +0000
ROA not before: Tue 29 Sep 2020 10:00:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131597
IP address blocks: 103.196.172.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1903 (0x76f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4B81BB31FA5292C8025B828F802722DE0D5EADE3
Validity
Not Before: Sep 29 10:00:43 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=32E891BD7C706A09D19AE37A34F74DCFA5E77F65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:7f:4f:2d:57:2e:2c:32:af:ca:a1:29:87:1c:
16:b4:b9:37:94:1f:03:40:70:2c:b8:8a:f1:99:0a:
0b:bb:5b:45:40:af:36:4c:2e:fa:bb:1a:22:1d:a8:
54:38:87:b6:92:a7:cf:d2:b3:96:e4:8c:4e:a0:ac:
24:c4:d5:4d:45:04:68:1c:08:de:40:4f:d5:c1:f2:
03:60:7c:80:c6:aa:72:c5:0b:9d:0d:73:04:56:08:
35:da:b0:6f:67:e7:3c:de:49:4d:07:de:98:42:9c:
fa:6e:07:b5:77:bd:13:e7:9c:99:f3:a2:cf:17:46:
1c:6b:d3:13:11:6f:6c:4f:29:6c:07:01:11:21:fb:
73:e4:02:7e:18:97:38:db:ad:0e:29:c9:4d:38:06:
02:52:0a:12:22:1e:b1:11:0e:c1:29:e8:da:91:b9:
ba:43:d1:e2:47:19:d9:a3:56:ab:5f:51:c0:30:5d:
b9:fc:04:71:79:ba:ad:20:ef:4b:87:fc:20:24:d5:
1d:5b:24:5a:19:3b:cc:db:b0:a7:40:ea:72:c2:4b:
3e:59:74:db:b2:e0:3d:e4:32:a6:fd:94:2c:c1:70:
78:2b:16:c1:ee:ec:25:18:50:13:f9:ec:39:cb:ee:
42:31:d2:e0:bd:19:a3:9a:72:0c:8d:15:68:9c:a6:
cf:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:E8:91:BD:7C:70:6A:09:D1:9A:E3:7A:34:F7:4D:CF:A5:E7:7F:65
X509v3 Authority Key Identifier:
keyid:4B:81:BB:31:FA:52:92:C8:02:5B:82:8F:80:27:22:DE:0D:5E:AD:E3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCDTV/S4G7MfpSksgCW4KPgCci3g1ereM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/S4G7MfpSksgCW4KPgCci3g1ereM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCDTV/MuiRvXxwagnRmuN6NPdNz6Xnf2U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.196.172.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:80:0c:d5:cc:e0:5f:41:86:64:52:0c:93:9f:5c:9c:fb:63:
8b:f1:96:9b:35:99:89:16:dc:d1:b8:f0:d1:61:54:96:a4:f5:
71:bc:db:86:7a:f4:55:3e:4f:56:79:53:4d:9a:56:92:2c:48:
f6:58:3d:28:ea:03:ec:5b:f4:8d:40:de:81:08:7f:cb:84:05:
9a:ab:65:54:bd:60:40:be:0b:2f:d1:0a:53:fa:6d:08:b5:63:
fe:08:7c:c0:59:2a:37:6f:2d:21:38:ec:b3:11:17:b8:70:bf:
12:f7:c0:9c:d3:41:11:55:d1:0a:50:72:a0:39:f8:b7:57:5a:
5f:68:54:81:c7:a5:de:50:12:5d:55:2f:24:dd:3e:fe:e4:e8:
cf:6f:f0:32:23:4b:06:98:39:7d:f1:01:62:b6:23:42:c8:fa:
20:8c:f0:40:aa:fe:8a:cf:7c:72:5a:03:0d:01:d1:72:58:b6:
9e:36:87:31:0e:fc:2a:98:e9:9c:30:fd:42:4b:a0:3c:d7:ab:
1f:18:c2:80:6a:15:55:ae:63:33:49:61:93:87:d9:8f:67:f7:
05:fb:38:63:ed:c3:0e:43:87:e0:64:3c:b2:5a:9f:b0:a3:bc:
aa:3a:21:fd:8f:3d:c1:ee:ed:0d:69:49:bd:0f:23:7b:73:68:
2e:cf:2b:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:39 2025 by rpki-client