Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Nmeb_NZ_RMOXiYYMxgdws6ZHaLc.roa
File: Nmeb_NZ_RMOXiYYMxgdws6ZHaLc.roa (raw, json)
Hash identifier: /uTAjJ8jZbFDkpKWRsU5XdfINlwudqbDz0XYHGRnD8A=
Subject key identifier: 36:67:9B:FC:D6:7F:44:C3:97:89:86:0C:C6:07:70:B3:A6:47:68:B7
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0946
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Nmeb_NZ_RMOXiYYMxgdws6ZHaLc.roa
Signing time: Wed 29 Sep 2021 02:52:58 +0000
ROA not before: Wed 29 Sep 2021 02:52:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17420
IP address blocks: 211.73.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2374 (0x946)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 29 02:52:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=36679BFCD67F44C39789860CC60770B3A64768B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e0:b7:85:4c:dd:4c:6f:ab:27:31:2f:15:a7:
af:7e:36:83:73:d3:28:7c:c7:2b:1c:05:94:a0:60:
e5:65:b1:8e:b1:91:75:ea:1c:f7:ed:c0:e0:8b:08:
f7:53:1b:b4:d1:3f:15:05:01:d2:7e:75:88:bc:70:
b9:18:1f:9e:23:9b:f0:6a:a9:7b:40:a2:c4:20:eb:
ba:0c:9b:fa:35:03:9c:b2:ad:2d:d6:08:8c:21:ec:
2c:bd:02:39:1a:f2:76:5b:45:ad:f8:02:5a:df:6d:
93:b3:64:28:24:43:07:c8:54:cb:63:13:d8:a8:8f:
14:c0:eb:3f:67:43:d6:05:f3:8d:3a:97:bd:24:48:
61:1b:65:01:8c:bf:65:f8:4f:2c:cc:15:12:49:36:
9b:09:53:c3:68:86:d8:d9:60:61:46:c4:5a:81:17:
96:03:cb:ff:e7:ca:57:3e:16:3a:87:37:9d:9f:e1:
37:d2:4c:b1:4c:04:41:88:ed:9e:39:3b:16:bc:41:
16:55:21:43:2f:21:67:85:2f:5c:83:fe:83:71:2c:
38:af:83:cd:db:49:48:9f:59:59:f7:3d:95:35:dc:
7a:61:77:de:5b:ce:38:fc:90:4e:b8:da:94:ac:ef:
de:ef:b8:92:cd:51:ff:fc:14:d9:61:c1:36:76:0d:
10:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:67:9B:FC:D6:7F:44:C3:97:89:86:0C:C6:07:70:B3:A6:47:68:B7
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Nmeb_NZ_RMOXiYYMxgdws6ZHaLc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.73.192.0/19
Signature Algorithm: sha256WithRSAEncryption
a3:9c:cf:f2:f2:56:bd:48:5b:0a:ef:ca:b9:1e:4c:3b:06:09:
f0:1f:f7:43:9d:79:79:c9:ab:4c:9a:30:c3:3d:15:2b:64:f5:
bf:41:a9:58:5a:23:87:03:9b:46:d3:38:70:18:64:18:4c:49:
58:28:1f:52:36:f8:ca:66:96:f0:d5:08:00:c1:74:bf:de:f7:
7d:12:27:7e:50:80:f7:86:68:19:38:ef:a8:c8:22:52:de:3c:
7c:af:16:5c:c4:34:97:3b:d8:70:4b:35:e4:17:a6:9d:72:24:
ea:65:42:3a:27:0c:e7:58:29:41:cb:20:7e:1a:3d:da:9c:88:
b7:f8:b9:6c:7a:65:43:7b:69:c0:a0:ae:ba:e0:cb:d1:bf:89:
b2:34:92:c8:4f:0c:a0:4d:e7:84:ca:77:9e:66:94:75:47:e9:
b1:c5:5a:d3:bf:28:25:9b:33:25:02:84:71:86:32:4c:f6:37:
79:66:ca:dd:c7:ea:5d:23:5e:31:46:92:e8:2f:d8:df:e8:4a:
41:70:36:47:6e:11:96:9d:40:25:07:0d:8c:97:11:00:ad:05:
f3:d5:e4:c2:11:c1:3d:60:82:ab:48:2e:d2:8a:04:81:83:89:
bf:9d:04:57:09:19:92:6a:80:bb:57:eb:a7:08:7c:80:5c:6f:
ca:38:0d:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:09 2025 by rpki-client