Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCHC/PpatQ7mpltbH_92rwP5fYNdAwCo.roa
File: PpatQ7mpltbH_92rwP5fYNdAwCo.roa (raw, json)
Hash identifier: 1BpygiEV5YQzxd90YoL1KINXL1DBMnJYgPYJQpdP/MU=
Subject key identifier: 3E:96:AD:43:B9:A9:96:D6:C7:FF:DD:AB:C0:FE:5F:60:D7:40:C0:2A
Certificate issuer: /CN=ED38685FF3EA1F46685DE5F57C6A4B8104481891
Certificate serial: 0A48
Authority key identifier: ED:38:68:5F:F3:EA:1F:46:68:5D:E5:F5:7C:6A:4B:81:04:48:18:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/PpatQ7mpltbH_92rwP5fYNdAwCo.roa
Signing time: Thu 15 Sep 2022 02:38:19 +0000
ROA not before: Thu 15 Sep 2022 02:38:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7539
IP address blocks: 2001:c58::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2632 (0xa48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ED38685FF3EA1F46685DE5F57C6A4B8104481891
Validity
Not Before: Sep 15 02:38:19 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3E96AD43B9A996D6C7FFDDABC0FE5F60D740C02A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:02:9d:bf:01:b2:4c:63:7d:10:c2:cd:81:5d:
8f:7c:e6:ab:80:99:80:9f:19:f1:49:90:c1:6f:7a:
a2:df:21:69:68:47:91:ea:67:3c:62:e0:bf:23:a7:
7e:1f:11:39:71:19:71:7b:9f:1c:ee:8f:fd:ad:ea:
a7:00:4a:48:7d:bf:b0:20:9d:25:ea:85:37:53:1a:
2b:17:5a:88:41:40:e1:a3:99:b2:57:68:78:9c:66:
fa:96:f5:84:57:06:72:b0:3c:b7:e9:7f:12:dd:0c:
e6:e8:22:1f:ce:56:74:c9:d5:53:e7:38:c9:f2:d7:
e6:03:70:b1:0e:0b:55:a4:bf:d3:ec:32:a8:1d:6e:
c8:b6:09:fd:e8:10:3a:6d:9c:e5:ac:23:33:5c:7c:
cc:72:a1:fb:f9:7b:21:19:25:6e:74:ad:31:b5:0a:
9b:f9:c7:19:76:86:41:d3:dc:a0:cb:33:1d:aa:66:
69:01:b8:00:8f:f7:27:36:4a:58:d8:d4:c6:7b:67:
32:02:a1:67:40:3a:88:48:0d:a6:bb:26:c4:db:4b:
24:c4:f1:52:63:28:84:1e:81:c4:a7:c7:2d:de:c8:
89:3b:91:e1:51:64:72:31:31:ba:22:1c:9c:a3:19:
4f:d6:69:69:d5:e2:7f:bc:d8:7b:9b:ee:5c:83:37:
3a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:96:AD:43:B9:A9:96:D6:C7:FF:DD:AB:C0:FE:5F:60:D7:40:C0:2A
X509v3 Authority Key Identifier:
keyid:ED:38:68:5F:F3:EA:1F:46:68:5D:E5:F5:7C:6A:4B:81:04:48:18:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/PpatQ7mpltbH_92rwP5fYNdAwCo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:c58::/32
Signature Algorithm: sha256WithRSAEncryption
0f:3a:c1:a9:66:9f:ed:89:c5:87:9d:b5:bb:6a:a3:01:30:8c:
26:c6:0c:54:e0:76:1f:e2:4f:ee:68:0d:c0:42:3d:8b:a6:83:
3d:31:64:e5:fb:46:09:2f:0d:85:dd:55:c5:26:9c:90:20:ea:
24:27:e9:8c:38:d5:99:37:50:a6:2f:9b:90:12:1c:5f:cb:d6:
f0:df:19:cd:a0:d3:ea:e9:79:37:73:19:d6:00:27:1c:aa:52:
40:33:1c:be:2d:a5:c9:28:c1:c4:0b:24:05:47:e6:ce:12:20:
42:4b:8a:cf:6a:7a:2b:79:ba:dc:f3:8a:e4:8f:fa:cb:e4:85:
1a:a7:4d:71:d0:7b:51:9f:dc:e5:98:52:b4:ae:56:74:31:57:
fe:de:54:6a:0f:39:5f:2d:bf:4b:62:74:e5:ca:cc:7c:ce:47:
f8:97:ad:dd:bd:31:e6:85:18:69:76:dd:3d:7d:31:7c:d5:30:
7b:6c:c8:51:57:56:46:f1:4f:b8:56:69:4b:c8:b2:1f:fc:f3:
6a:da:18:80:27:5c:30:60:b6:94:3f:f8:ca:2d:9a:95:50:4d:
eb:09:6f:5c:92:2b:96:87:e9:3b:16:9b:ed:6a:98:dc:c9:17:
66:e5:e0:e8:b6:42:28:e3:53:a4:4c:d0:27:25:19:61:05:e6:
2b:74:b8:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org