Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCHC/Czh4HV0n7L3Y8WyHX1LZvABeRkA.roa
File: Czh4HV0n7L3Y8WyHX1LZvABeRkA.roa (raw, json)
Hash identifier: c904Wr/cmnPkY4rH8qjko88Tx1q1JqdKgrIFjm4xf9A=
Subject key identifier: 0B:38:78:1D:5D:27:EC:BD:D8:F1:6C:87:5F:52:D9:BC:00:5E:46:40
Certificate issuer: /CN=ED38685FF3EA1F46685DE5F57C6A4B8104481891
Certificate serial: 077B
Authority key identifier: ED:38:68:5F:F3:EA:1F:46:68:5D:E5:F5:7C:6A:4B:81:04:48:18:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/Czh4HV0n7L3Y8WyHX1LZvABeRkA.roa
Signing time: Tue 29 Sep 2020 10:05:06 +0000
ROA not before: Tue 29 Sep 2020 10:05:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7539
IP address blocks: 211.79.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1915 (0x77b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ED38685FF3EA1F46685DE5F57C6A4B8104481891
Validity
Not Before: Sep 29 10:05:06 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0B38781D5D27ECBDD8F16C875F52D9BC005E4640
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7b:04:0e:62:7f:40:89:20:57:a8:c5:96:c1:
89:f7:77:d2:de:cf:33:6e:2f:16:6d:77:28:a2:c4:
19:51:f2:67:82:ef:90:dd:07:56:d8:33:5e:36:b2:
3f:e7:c7:5b:e6:13:ee:14:07:7d:3b:d6:18:3f:ea:
d7:1c:e1:df:4b:c6:96:a1:5a:89:d1:10:09:5c:81:
a3:f6:97:86:06:9e:f5:c1:59:10:6c:d8:5c:65:f2:
cd:70:66:23:c7:ed:54:fd:ba:6d:69:c8:e6:01:d5:
3a:b8:3a:a9:71:bb:a7:08:55:f0:b1:2d:7d:a2:76:
f4:38:ec:c6:e7:fd:f6:f4:92:7c:09:23:61:16:1f:
36:4c:d6:0e:1f:4e:9b:d1:8e:b0:3d:4f:b4:b4:cf:
02:c0:3b:0a:31:1a:dc:d0:91:8f:31:ad:50:7f:c3:
54:04:1a:85:54:db:27:9c:f7:3d:ea:48:71:ab:66:
75:20:fd:51:a4:d3:08:c1:2a:71:9c:9d:70:78:2e:
68:94:27:8c:e4:33:12:02:ad:0f:87:7f:52:85:4a:
78:1e:3b:82:19:07:5a:41:1d:67:4c:f2:04:bd:be:
49:31:a5:9c:10:33:b1:fe:5f:43:68:4b:8f:21:0f:
a3:63:08:6e:e9:90:79:88:f7:13:df:66:59:4f:62:
57:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:38:78:1D:5D:27:EC:BD:D8:F1:6C:87:5F:52:D9:BC:00:5E:46:40
X509v3 Authority Key Identifier:
keyid:ED:38:68:5F:F3:EA:1F:46:68:5D:E5:F5:7C:6A:4B:81:04:48:18:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/Czh4HV0n7L3Y8WyHX1LZvABeRkA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.79.48.0/20
Signature Algorithm: sha256WithRSAEncryption
65:ae:cb:27:b6:bd:5c:a9:6b:8a:50:94:aa:d5:4e:c2:0c:3f:
9c:d7:9e:76:b0:9f:ad:dd:45:fd:3e:87:77:c9:4c:65:66:45:
bd:d9:1f:06:10:c3:e4:60:5d:a1:bc:67:c0:01:c5:9c:68:73:
1e:db:e0:38:d9:0f:9f:ac:a0:7f:38:f1:8e:cd:4f:e1:0f:dc:
f1:16:80:cf:be:59:6e:73:a9:32:34:be:b7:ba:b4:f6:e2:1c:
6e:3d:6c:6c:64:77:d8:5c:a1:00:32:ee:28:87:4a:28:c0:aa:
02:a6:22:0b:64:f4:c1:f6:33:b2:78:4b:f3:bc:63:f4:48:2e:
50:3d:67:61:2d:17:06:a1:bf:69:62:bf:77:c3:59:47:80:e7:
64:6c:90:ed:39:10:59:dd:07:44:01:dd:03:87:5c:a2:a2:5f:
e1:62:b7:e8:a7:dc:2d:49:e9:d2:31:8b:01:1e:92:c0:5f:3c:
09:ce:c0:c9:29:a2:c6:55:da:dd:a1:5c:e7:77:5b:5a:10:c6:
a4:fd:fe:31:0b:04:f0:c4:eb:03:ec:0c:0d:90:61:3a:91:4a:
b3:7e:92:3b:4d:8f:35:fd:f4:85:ea:bf:84:9c:b1:55:3e:25:
11:95:c7:e6:2e:7c:b8:96:3a:67:c9:be:6f:a1:fd:e2:ee:2f:
c7:4f:f9:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org