Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/vbK26GDoLNj9T9wFKGOkjpGe4Y0.roa
File: vbK26GDoLNj9T9wFKGOkjpGe4Y0.roa (raw, json)
Hash identifier: ph8wu6pUg+ZhCC/gejFgX45R0G8vKamirNl32EIqUzM=
Subject key identifier: BD:B2:B6:E8:60:E8:2C:D8:FD:4F:DC:05:28:63:A4:8E:91:9E:E1:8D
Certificate issuer: /CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Certificate serial: 5583
Authority key identifier: B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/vbK26GDoLNj9T9wFKGOkjpGe4Y0.roa
Signing time: Sun 07 Feb 2021 13:15:55 +0000
ROA not before: Sun 07 Feb 2021 13:15:55 +0000
ROA not after: Tue 23 Nov 2021 09:15:57 +0000
asID: 38851
IP address blocks: 43.227.24.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21891 (0x5583)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Validity
Not Before: Feb 7 13:15:55 2021 GMT
Not After : Nov 23 09:15:57 2021 GMT
Subject: CN=BDB2B6E860E82CD8FD4FDC052863A48E919EE18D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:7c:3f:2e:df:f9:1c:76:b8:5d:12:b4:92:50:
ac:f5:64:07:3d:bf:bc:ab:fd:83:db:cf:79:7f:d3:
76:52:a9:a6:d0:7d:d5:4c:f0:7f:d5:36:62:49:9c:
34:d2:e9:cb:10:76:b7:be:f9:d3:b2:38:c2:59:dc:
0d:a6:ff:81:4c:b8:b0:49:be:11:ad:f1:ca:29:c6:
95:a5:37:43:51:c5:ba:a7:6c:5c:6e:db:90:98:87:
6a:35:46:fa:7c:b4:f1:53:54:6d:c8:68:f2:9a:10:
ca:b0:dd:78:19:96:32:bc:8d:a5:f0:51:57:b6:55:
74:96:56:96:81:e8:72:64:ee:5d:24:f9:c6:7f:8a:
85:5a:8b:2e:74:c7:5c:f3:70:d2:09:ba:a3:e2:73:
ca:9e:0e:35:ac:db:c0:44:35:d1:4a:f1:b8:db:46:
fb:e3:32:a3:93:eb:75:c2:87:06:d9:27:8a:ab:58:
c4:7d:1e:6c:87:03:da:e1:6c:29:53:a9:aa:41:0b:
88:06:2c:4a:b4:a2:0d:f1:df:2a:55:8c:53:7d:82:
83:40:90:4d:4e:6f:58:eb:df:71:f1:f3:d2:69:0c:
ff:a7:26:f6:f5:23:5e:4d:56:be:fc:c1:9c:10:95:
b6:95:d7:63:d5:51:92:4c:55:84:87:7f:c3:19:1d:
72:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:B2:B6:E8:60:E8:2C:D8:FD:4F:DC:05:28:63:A4:8E:91:9E:E1:8D
X509v3 Authority Key Identifier:
keyid:B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/vbK26GDoLNj9T9wFKGOkjpGe4Y0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.227.24.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:13:3d:a6:22:63:cf:66:cc:82:8e:23:8b:3f:98:c2:39:cd:
de:f4:69:cb:7e:1f:9d:06:75:5a:d5:9a:fa:8a:4f:e9:2e:3d:
42:c1:cf:dd:75:f1:13:b2:4b:ad:0c:b0:66:12:9a:f6:f6:bb:
6b:62:8d:cb:40:32:55:74:98:76:a7:1f:dc:a4:09:eb:ac:4c:
47:f6:a2:e1:0c:f5:a2:d2:3b:e0:46:67:b2:2b:2a:6b:5f:8d:
ef:d8:7a:fe:3b:93:e5:56:c4:13:37:28:8e:dd:b5:48:3f:e2:
44:e6:6a:54:c4:07:ea:1e:ea:e5:d7:a9:38:3f:38:39:65:4a:
25:10:01:98:6b:08:c8:60:68:fa:61:2b:e6:24:2a:1d:ca:ff:
5b:cc:f3:a4:8d:91:b8:7c:0b:d7:ce:3d:8f:c9:dc:fe:57:02:
51:70:4c:6a:e5:45:11:ea:b3:5b:f6:c9:68:c3:7b:2d:c8:33:
33:31:74:16:a7:a6:8a:52:4e:dd:7e:fb:0d:d0:61:76:fe:18:
7d:4c:e8:76:ef:a4:ca:fb:df:df:36:41:af:f7:71:96:a5:df:
ad:e8:78:99:41:d8:73:ee:7a:46:93:cc:f4:57:a1:de:40:d9:
b7:ce:82:87:43:70:39:ab:c3:a1:c1:a0:6c:23:c6:29:c3:1d:
59:df:b7:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:06:15 2025 by rpki-client