Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/ahkL5YcDE7asS4lugEE_QmvRv3I.roa
File: ahkL5YcDE7asS4lugEE_QmvRv3I.roa (raw, json)
Hash identifier: 7Kpi/tNX2j3uP5GdxbOPCzS8GcZ+OnPH/ldJd9sx798=
Subject key identifier: 6A:19:0B:E5:87:03:13:B6:AC:4B:89:6E:80:41:3F:42:6B:D1:BF:72
Certificate issuer: /CN=1C7073A6066C765842FDF07169E43518A0BB0235
Certificate serial: 03
Authority key identifier: 1C:70:73:A6:06:6C:76:58:42:FD:F0:71:69:E4:35:18:A0:BB:02:35
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/ahkL5YcDE7asS4lugEE_QmvRv3I.roa
Signing time: Fri 17 Nov 2023 07:22:46 +0000
ROA not before: Fri 17 Nov 2023 07:22:46 +0000
ROA not after: Sat 09 Nov 2024 15:30:21 +0000
asID: 150755
IP address blocks: 203.175.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1C7073A6066C765842FDF07169E43518A0BB0235
Validity
Not Before: Nov 17 07:22:46 2023 GMT
Not After : Nov 9 15:30:21 2024 GMT
Subject: CN=6A190BE5870313B6AC4B896E80413F426BD1BF72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:bf:12:38:93:2f:b0:8f:f9:18:70:0a:b2:38:
44:40:46:3f:92:38:44:9d:b1:25:a3:f9:41:07:a0:
33:12:aa:8d:20:71:ed:a2:b3:2f:a9:4d:b8:01:49:
76:f4:5b:c5:99:71:6d:4f:0b:b9:86:52:5d:55:15:
4c:7c:0b:4a:82:50:9d:af:37:a2:fc:cc:f8:04:3d:
b9:49:b6:f9:e7:35:6f:0f:36:15:a3:8c:53:b1:f3:
24:1c:0c:8f:ba:18:00:98:2d:c8:3d:e0:86:9d:b7:
ec:35:7d:f2:08:d2:30:4d:3a:05:e1:14:7c:13:49:
c0:16:bf:bf:24:d8:25:b7:6b:e9:2c:78:ac:9e:7d:
a2:3d:d1:08:fc:1a:5a:5e:61:17:d1:cc:fa:fe:57:
b5:4c:b2:24:fe:f2:dd:73:d0:3b:90:da:72:2b:ec:
2c:61:10:6a:4a:93:25:27:ec:e7:96:51:2d:1d:a7:
74:cf:a4:b5:f7:0f:96:d3:94:4a:92:5e:56:a1:ad:
ec:b6:b0:84:8e:28:ce:83:71:29:3a:ee:53:74:dd:
63:c0:af:77:ea:fe:0f:d9:cd:48:ca:44:9a:1c:ed:
52:eb:f8:f9:ba:1e:11:72:f7:67:8f:f6:6c:94:a8:
17:db:cf:2d:4c:ad:a5:a7:fa:90:e0:6c:d0:d3:6d:
f7:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:19:0B:E5:87:03:13:B6:AC:4B:89:6E:80:41:3F:42:6B:D1:BF:72
X509v3 Authority Key Identifier:
keyid:1C:70:73:A6:06:6C:76:58:42:FD:F0:71:69:E4:35:18:A0:BB:02:35
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/ahkL5YcDE7asS4lugEE_QmvRv3I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.175.104.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:5f:34:57:fe:2f:55:63:10:59:2c:ed:cd:4b:ce:54:16:3d:
c6:8e:89:bb:6a:c0:3d:09:09:1b:7d:c0:1f:d8:0a:76:50:aa:
5f:63:b4:68:15:3a:cd:6f:87:64:ec:7d:07:86:ae:d5:58:59:
4a:75:6a:85:8a:a4:75:ee:46:d0:8b:27:eb:fd:1e:ce:70:ce:
f8:32:20:80:9f:41:96:f5:f0:9b:7f:41:bb:17:ca:85:20:cc:
8d:f2:b2:79:13:84:ed:51:57:a8:89:e9:73:8e:9c:4b:52:66:
9d:1e:67:74:28:1a:80:77:09:3f:dc:74:b3:84:b1:fd:e7:77:
b1:be:91:55:db:ee:ce:e0:ba:5d:6d:bc:8a:40:2f:ec:b8:e4:
42:19:15:ed:81:fd:5a:d3:67:fa:52:3e:90:7b:f5:12:bb:32:
c9:e9:32:42:50:15:ef:05:a9:93:7a:72:a2:8a:3d:f3:a6:10:
01:ae:69:32:81:23:e1:aa:2d:52:68:6a:f7:21:69:25:2f:06:
c9:67:f7:06:55:12:12:43:9b:9b:60:b2:ad:bf:b9:4d:19:1f:
4a:08:f5:1d:6b:40:3a:e2:10:aa:93:e8:11:d4:3a:e7:7b:e5:
0d:14:0b:a3:00:3d:ef:0c:30:33:11:78:85:2b:c2:45:e6:ce:
4c:73:eb:d8
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQzcw
NzNBNjA2NkM3NjU4NDJGREYwNzE2OUU0MzUxOEEwQkIwMjM1MB4XDTIzMTExNzA3
MjI0NloXDTI0MTEwOTE1MzAyMVowMzExMC8GA1UEAxMoNkExOTBCRTU4NzAzMTNC
NkFDNEI4OTZFODA0MTNGNDI2QkQxQkY3MjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMq/EjiTL7CP+RhwCrI4REBGP5I4RJ2xJaP5QQegMxKqjSBx7aKz
L6lNuAFJdvRbxZlxbU8LuYZSXVUVTHwLSoJQna83ovzM+AQ9uUm2+ec1bw82FaOM
U7HzJBwMj7oYAJgtyD3ghp237DV98gjSME06BeEUfBNJwBa/vyTYJbdr6Sx4rJ59
oj3RCPwaWl5hF9HM+v5XtUyyJP7y3XPQO5DacivsLGEQakqTJSfs55ZRLR2ndM+k
tfcPltOUSpJeVqGt7LawhI4ozoNxKTruU3TdY8Cvd+r+D9nNSMpEmhztUuv4+boe
EXL3Z4/2bJSoF9vPLUytpaf6kOBs0NNt9zsCAwEAAaOCAfAwggHsMB0GA1UdDgQW
BBRqGQvlhwMTtqxLiW6AQT9Ca9G/cjAfBgNVHSMEGDAWgBQccHOmBmx2WEL98HFp
5DUYoLsCNTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ
oE6GTHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9OVU5MSU5F
L0hIQnpwZ1pzZGxoQ19mQnhhZVExR0tDN0FqVS5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvSEhCenBnWnNkbGhDX2ZCeGFlUTFHS0M3QWpVLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlVOTElORS9haGtMNVljREU3YXNTNGx1
Z0VFX1FtdlJ2M0kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMu
dHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
y69oMA0GCSqGSIb3DQEBCwUAA4IBAQC0XzRX/i9VYxBZLO3NS85UFj3Gjom7asA9
CQkbfcAf2Ap2UKpfY7RoFTrNb4dk7H0Hhq7VWFlKdWqFiqR17kbQiyfr/R7OcM74
MiCAn0GW9fCbf0G7F8qFIMyN8rJ5E4TtUVeoielzjpxLUmadHmd0KBqAdwk/3HSz
hLH953exvpFV2+7O4LpdbbyKQC/suORCGRXtgf1a02f6Uj6Qe/USuzLJ6TJCUBXv
BamTenKiij3zphABrmkygSPhqi1SaGr3IWklLwbJZ/cGVRISQ5ubYLKtv7lNGR9K
CPUda0A64hCqk+gR1Drne+UNFAujAD3vDDAzEXiFK8JF5s5Mc+vY
-----END CERTIFICATE-----
Generated at Mon May 19 00:51:34 2025 by rpki-client