Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCHC/763PdqV0VJMHeet2KteOm7bkGHg.roa
File: 763PdqV0VJMHeet2KteOm7bkGHg.roa (raw, json)
Hash identifier: VJKfDotUvsuDlFmbnNXGXh8GpSx3RkApQYjyDD2Cw6o=
Subject key identifier: EF:AD:CF:76:A5:74:54:93:07:79:EB:76:2A:D7:8E:9B:B6:E4:18:78
Certificate issuer: /CN=ED38685FF3EA1F46685DE5F57C6A4B8104481891
Certificate serial: 095A
Authority key identifier: ED:38:68:5F:F3:EA:1F:46:68:5D:E5:F5:7C:6A:4B:81:04:48:18:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/763PdqV0VJMHeet2KteOm7bkGHg.roa
Signing time: Wed 29 Sep 2021 02:37:53 +0000
ROA not before: Wed 29 Sep 2021 02:37:53 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7539
IP address blocks: 211.79.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2394 (0x95a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ED38685FF3EA1F46685DE5F57C6A4B8104481891
Validity
Not Before: Sep 29 02:37:53 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EFADCF76A57454930779EB762AD78E9BB6E41878
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:27:c9:97:7b:34:04:76:7d:6f:3a:f2:ab:dc:
96:2e:01:51:af:16:0c:10:5c:0c:2a:9b:41:c6:c6:
df:cc:00:26:04:d7:85:67:34:1c:06:c5:65:7a:6a:
59:2f:94:f5:3c:c8:97:e6:3a:03:f3:87:ec:96:86:
07:bf:5d:e2:69:2d:d5:51:77:6e:74:99:56:1d:29:
11:45:7e:5b:44:76:b2:a7:cc:5a:e8:40:46:1c:53:
44:5e:a5:0d:0b:56:79:2b:72:b5:18:23:1f:b2:22:
20:c7:a1:db:da:cc:86:b6:2b:33:13:38:09:2f:cf:
e1:b4:eb:e2:43:4c:41:f0:12:06:72:a3:ff:45:f7:
53:d8:c6:0a:ca:45:94:7d:63:b8:ee:08:15:34:cf:
33:0c:6b:4f:23:d6:b8:64:a8:95:25:03:37:e6:9b:
57:b9:05:99:b9:1c:36:b7:4e:2b:85:ed:20:f5:42:
ef:64:a8:03:6a:f0:70:23:c2:db:67:94:ad:14:7c:
64:ad:cb:ce:4d:6a:4c:01:d8:6a:c8:52:ed:c7:1b:
2c:eb:e1:c6:4c:d7:1f:18:fd:06:ef:c5:2e:21:d7:
f3:3f:87:1d:14:7f:a2:e9:fb:0a:61:49:87:88:05:
ed:8f:a9:ae:39:fd:43:1e:85:b9:2a:f9:52:09:2d:
39:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:AD:CF:76:A5:74:54:93:07:79:EB:76:2A:D7:8E:9B:B6:E4:18:78
X509v3 Authority Key Identifier:
keyid:ED:38:68:5F:F3:EA:1F:46:68:5D:E5:F5:7C:6A:4B:81:04:48:18:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/763PdqV0VJMHeet2KteOm7bkGHg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.79.48.0/20
Signature Algorithm: sha256WithRSAEncryption
4c:1c:ae:55:ed:0c:9d:64:8f:c7:a4:eb:bc:6b:ac:7c:11:0b:
3e:d0:bc:ed:fe:77:c2:47:d6:01:1d:56:0c:e8:4a:67:9a:17:
74:f5:41:4a:1c:e0:76:a6:75:64:65:4e:15:a0:e0:e5:4b:04:
61:9a:72:d6:f6:04:a7:93:02:4f:df:ea:77:d3:81:00:ba:4e:
f2:92:a5:71:9a:36:b6:c3:49:ff:b7:d5:cf:a8:d8:10:4f:f2:
a0:57:df:30:03:cf:08:a3:8f:c1:f5:90:ed:5f:d1:50:d6:6e:
cf:e3:17:a9:b8:1a:18:ad:9d:70:94:82:f0:5c:8f:44:e7:de:
49:51:7f:e9:d0:71:b7:74:2b:1c:d9:d5:4f:d0:fa:56:a8:e1:
27:bf:04:5b:45:89:c9:5c:9c:d8:97:67:56:bb:ef:32:95:00:
6d:64:52:e4:69:b3:27:9d:70:7c:c5:58:43:32:ec:52:65:40:
f7:5b:86:9a:ff:51:8b:41:dd:d3:24:3e:63:b1:27:aa:f9:c3:
a9:f4:77:d5:ad:c0:87:da:27:8f:ba:1b:49:dd:a1:52:ec:52:
bc:e1:51:e7:c4:91:d5:4f:45:1f:fc:c4:ae:d1:3d:c1:e1:27:
63:ee:2a:d3:68:d1:3a:c4:c6:5e:d6:48:f7:86:55:b7:4f:39:
13:6d:3a:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:10:16 2025 by rpki-client