Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCREE/ak-2tAcYYrMVFDKjdl9I9WHZZ8U.roa
File: ak-2tAcYYrMVFDKjdl9I9WHZZ8U.roa (raw, json)
Hash identifier: JVEgu+cy7KNx2GThFE11Pm+zqAPk08YxY3vtRhbmwWA=
Subject key identifier: 6A:4F:B6:B4:07:18:62:B3:15:14:32:A3:76:5F:48:F5:61:D9:67:C5
Certificate issuer: /CN=3B49B87A3FF389634C7D090D76DAEAA96FEEFD90
Certificate serial: 0A3B
Authority key identifier: 3B:49:B8:7A:3F:F3:89:63:4C:7D:09:0D:76:DA:EA:A9:6F:EE:FD:90
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCREE/ak-2tAcYYrMVFDKjdl9I9WHZZ8U.roa
Signing time: Thu 15 Sep 2022 02:41:38 +0000
ROA not before: Thu 15 Sep 2022 02:41:38 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18183
IP address blocks: 202.5.12.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2619 (0xa3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3B49B87A3FF389634C7D090D76DAEAA96FEEFD90
Validity
Not Before: Sep 15 02:41:38 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6A4FB6B4071862B3151432A3765F48F561D967C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8c:0c:2c:17:f8:a0:32:0f:fd:a7:34:9a:59:
f7:e9:7e:c7:e4:c2:e0:84:90:6f:b2:4e:fe:98:97:
91:ff:2f:46:9e:af:86:70:1e:47:8e:30:ac:e8:60:
32:8a:97:c2:dd:01:1c:04:d3:03:b4:10:98:6d:3a:
4b:b6:0b:cc:86:39:b1:65:f0:a6:38:02:4d:19:ae:
b5:71:c2:f2:b4:f2:28:f1:bc:9a:6a:08:5d:62:fb:
09:58:d1:0b:5b:fa:dc:6b:14:18:1f:76:6e:12:d1:
5c:ea:76:79:84:04:2f:0b:11:17:e4:e7:df:24:53:
5e:35:85:da:e6:db:72:7e:3b:6d:08:d1:1c:59:72:
c9:89:72:60:4c:40:f7:27:05:58:6c:c0:9f:00:cd:
4f:a9:6c:06:6e:3a:cd:0e:b1:a9:4d:11:56:26:ee:
34:e6:1b:c0:f8:5c:3d:38:a2:07:02:ab:e7:9e:71:
5e:6c:ce:04:ba:7c:82:e7:51:ec:10:f7:ac:04:3d:
ea:9a:76:b6:f4:98:65:8f:9d:e5:a8:ff:ae:c7:13:
55:e6:f9:31:1a:7f:d8:89:98:f9:86:0f:e3:50:29:
b4:8d:f9:8b:d4:c1:30:21:b9:c4:33:5a:26:9c:83:
e5:11:e0:1c:91:85:7c:58:1f:05:52:8b:b5:fb:85:
7f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:4F:B6:B4:07:18:62:B3:15:14:32:A3:76:5F:48:F5:61:D9:67:C5
X509v3 Authority Key Identifier:
keyid:3B:49:B8:7A:3F:F3:89:63:4C:7D:09:0D:76:DA:EA:A9:6F:EE:FD:90
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCREE/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O0m4ej_ziWNMfQkNdtrqqW_u_ZA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCREE/ak-2tAcYYrMVFDKjdl9I9WHZZ8U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.5.12.0/22
Signature Algorithm: sha256WithRSAEncryption
14:34:01:d6:e8:69:22:ae:97:2a:7c:cd:3c:f3:6e:64:88:71:
ae:ee:2e:80:d3:34:60:e9:9a:3f:db:86:b6:c2:70:f4:1a:3f:
aa:6c:19:b7:39:0a:41:82:2c:54:bc:0c:63:d9:bc:d5:e8:80:
82:95:f4:bc:e7:f1:f1:c7:7a:0d:ef:1e:f1:f7:9d:13:3b:10:
5d:6a:3a:74:4c:cc:6f:52:09:6e:13:d1:e8:a7:8c:95:b0:b2:
ae:46:83:65:86:0e:7a:7d:3a:9c:71:5a:b3:04:32:ba:8a:c0:
4d:b2:d6:bc:de:75:6a:2e:e5:f7:30:c9:3b:20:fe:1e:09:e0:
7a:f3:cf:69:44:f4:69:db:ca:62:0c:31:3e:6f:ef:69:c7:04:
cd:35:f9:f8:23:c3:89:0d:e6:a4:11:41:41:90:60:8a:d4:af:
7b:32:8d:ab:8e:2e:2f:af:a0:c0:5a:19:f1:b9:73:1b:66:51:
d3:c8:d0:b0:7a:0f:ad:d4:b0:41:3f:c1:af:ca:23:3e:b3:a3:
4e:4b:0f:3c:1f:a4:23:25:0b:d2:a5:98:f1:0d:22:5e:bf:db:
6d:49:75:56:0c:9f:0e:0b:73:c8:32:9e:5d:ed:6a:69:08:5d:
34:cc:db:b0:55:ce:88:a9:b9:b7:34:6e:4a:04:e1:68:bb:ea:
f4:9e:6a:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:57:08 2025 by rpki-client