Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCHC/8bsSU4q4T-9OTmAeHoULyMDXzLo.roa
File: 8bsSU4q4T-9OTmAeHoULyMDXzLo.roa (raw, json)
Hash identifier: XvXWv5ogvASPrfbQJ3lIZvUjbdAJBRGe9/nJzTaG4Y4=
Subject key identifier: F1:BB:12:53:8A:B8:4F:EF:4E:4E:60:1E:1E:85:0B:C8:C0:D7:CC:BA
Certificate issuer: /CN=ED38685FF3EA1F46685DE5F57C6A4B8104481891
Certificate serial: 09E2
Authority key identifier: ED:38:68:5F:F3:EA:1F:46:68:5D:E5:F5:7C:6A:4B:81:04:48:18:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/8bsSU4q4T-9OTmAeHoULyMDXzLo.roa
Signing time: Tue 19 Apr 2022 14:23:05 +0000
ROA not before: Tue 19 Apr 2022 14:23:05 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7539
IP address blocks: 2001:c58::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2530 (0x9e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ED38685FF3EA1F46685DE5F57C6A4B8104481891
Validity
Not Before: Apr 19 14:23:05 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F1BB12538AB84FEF4E4E601E1E850BC8C0D7CCBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f2:63:b2:42:4b:60:6d:cb:6a:08:78:cc:53:
8e:13:01:e7:f1:33:30:f0:af:69:da:16:eb:61:ff:
0f:2f:0d:8d:f7:e5:f8:94:19:aa:69:e0:75:a4:77:
c0:8c:05:73:a0:68:be:0d:65:ce:d4:24:66:f3:7a:
e2:d0:e7:c7:5d:e5:6d:24:e1:4a:56:2f:bc:15:2c:
52:3e:e0:12:ad:e3:79:14:b5:d3:16:82:f4:8c:65:
94:84:8c:ff:91:fe:20:7d:f5:c3:25:10:d7:19:92:
7a:6d:b8:aa:4a:39:5b:b4:1a:ba:f7:4f:df:55:4c:
2c:01:f7:3f:0f:53:bf:72:d0:67:9d:da:01:51:60:
3a:17:64:b9:cf:6f:e5:68:67:b4:6a:b9:d6:a5:42:
a0:ab:74:58:b7:65:70:ab:ca:0e:6f:2a:06:f8:ae:
fa:f0:a8:24:c2:fe:42:bb:90:f5:b4:0c:7b:c7:04:
01:98:e3:55:f9:b5:06:37:a4:a8:59:c7:35:52:20:
15:68:5d:7a:5b:90:91:54:ef:41:86:9e:54:8a:0d:
29:43:15:e5:85:b2:70:df:d3:b7:74:84:89:c3:48:
8f:fd:00:cd:d5:f9:cc:fd:10:76:99:5f:54:51:47:
f1:ec:20:b4:60:09:85:6b:11:3b:dc:48:f8:c9:79:
a2:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:BB:12:53:8A:B8:4F:EF:4E:4E:60:1E:1E:85:0B:C8:C0:D7:CC:BA
X509v3 Authority Key Identifier:
keyid:ED:38:68:5F:F3:EA:1F:46:68:5D:E5:F5:7C:6A:4B:81:04:48:18:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/8bsSU4q4T-9OTmAeHoULyMDXzLo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:c58::/32
Signature Algorithm: sha256WithRSAEncryption
b8:30:bc:cd:a5:c1:90:6b:0e:e0:19:59:72:eb:51:66:bf:2e:
e1:97:18:dd:af:b2:69:f4:7d:74:10:42:be:d8:8d:2e:ff:e9:
85:5f:9a:a2:03:34:5e:4a:35:47:3b:ab:52:68:95:40:33:71:
90:7d:42:48:c6:e0:20:f6:dc:20:ab:2d:1a:64:f7:69:04:bd:
d3:e0:0a:80:5a:4d:c6:a2:c0:98:6d:81:f8:4e:88:3a:d9:54:
79:66:8b:29:48:85:ed:cd:b1:46:ef:d5:da:b6:f5:f2:64:be:
e2:08:cb:26:6e:0e:bf:bc:c2:bf:82:a3:f5:0d:00:84:ed:36:
4d:6a:6c:c2:ee:fc:2b:9d:ef:03:98:1a:b8:20:b6:da:d6:f9:
33:75:c1:05:1c:34:ba:00:bb:a5:a1:65:9c:a1:5f:da:5f:1a:
66:d3:04:5a:e6:9b:83:e1:bf:10:fe:f6:6f:d3:f4:c5:45:37:
6a:16:67:1a:3a:53:2a:db:f2:eb:bb:19:b5:48:7b:55:ab:21:
db:8a:e2:68:de:9e:d2:dd:a9:69:2f:d3:a7:51:ea:bb:7c:f3:
0b:aa:13:b9:5f:9f:fd:71:4b:9a:0a:b2:c0:d0:5f:80:ab:d1:
ed:7f:f6:33:20:6c:67:02:84:d5:84:a6:da:a8:b9:57:77:65:
70:aa:4d:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org