Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCHC/diiCMC4gMwzKzLVC0UKxRh2EZR8.roa
File: diiCMC4gMwzKzLVC0UKxRh2EZR8.roa (raw, json)
Hash identifier: gQ3p6q/uLNteHxozsSbCKbl875mGrlra9H6RPyeAg5Y=
Subject key identifier: 76:28:82:30:2E:20:33:0C:CA:CC:B5:42:D1:42:B1:46:1D:84:65:1F
Certificate issuer: /CN=ED38685FF3EA1F46685DE5F57C6A4B8104481891
Certificate serial: 0B39
Authority key identifier: ED:38:68:5F:F3:EA:1F:46:68:5D:E5:F5:7C:6A:4B:81:04:48:18:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/diiCMC4gMwzKzLVC0UKxRh2EZR8.roa
Signing time: Fri 01 Sep 2023 09:23:55 +0000
ROA not before: Fri 01 Sep 2023 09:23:55 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7539
IP address blocks: 2001:c58::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2873 (0xb39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ED38685FF3EA1F46685DE5F57C6A4B8104481891
Validity
Not Before: Sep 1 09:23:55 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=762882302E20330CCACCB542D142B1461D84651F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7d:3c:c0:54:36:a9:f3:02:70:f4:ed:78:e2:
cb:1a:d8:c8:9b:6d:e8:46:a0:cd:59:38:43:cc:b0:
53:9f:84:1d:95:fd:06:06:c6:1c:eb:42:db:55:fa:
b7:d0:93:70:5e:3b:87:38:3f:e2:65:0b:bd:66:59:
42:67:25:0f:be:9a:49:47:9a:e0:1b:73:a2:61:96:
8a:54:26:32:29:e1:0f:d2:80:25:bb:06:23:37:ad:
b7:53:3c:ce:e1:d3:a7:c5:f5:41:6f:fd:a4:e9:51:
c8:d3:87:04:0f:7e:63:2a:8d:98:47:e5:1c:4a:4f:
b3:40:c3:f8:c7:ec:3c:14:14:61:5f:69:15:5b:33:
75:d0:24:32:c6:71:80:22:7a:1f:44:00:71:60:51:
92:b8:55:17:b5:27:c5:f8:a4:58:db:83:8d:c1:47:
1b:9b:24:89:a5:e3:a4:49:5b:34:17:b9:06:cc:e9:
03:fc:e3:3f:fd:26:dd:3c:91:86:8f:7c:a0:b7:46:
ae:af:ae:1f:20:be:cc:d6:65:e6:3a:b2:a1:c3:08:
7e:55:c6:95:40:b6:62:da:c1:c3:47:75:4b:3b:38:
4c:49:69:53:e9:96:7d:56:2b:9f:68:37:1b:9f:aa:
da:68:4a:e9:b0:1b:b7:bd:50:ec:4f:ed:8a:9e:3d:
5e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:28:82:30:2E:20:33:0C:CA:CC:B5:42:D1:42:B1:46:1D:84:65:1F
X509v3 Authority Key Identifier:
keyid:ED:38:68:5F:F3:EA:1F:46:68:5D:E5:F5:7C:6A:4B:81:04:48:18:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/diiCMC4gMwzKzLVC0UKxRh2EZR8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:c58::/32
Signature Algorithm: sha256WithRSAEncryption
36:db:e6:6b:90:f2:03:61:0f:f1:1e:1a:16:f7:a4:ab:31:c7:
d2:c5:27:ce:8a:d5:09:20:85:f9:c9:41:9c:1f:a5:17:6c:6a:
a9:a9:c2:a4:cb:16:d6:90:92:cc:e0:cc:04:e1:67:ce:05:3f:
51:5b:46:90:1d:af:12:1b:52:f3:9f:f6:0f:65:c6:66:5e:15:
5a:9c:37:c5:9d:4b:67:8c:e7:09:cb:7a:09:91:87:de:ff:e9:
cf:28:4c:77:4b:09:24:54:c9:17:1f:33:4f:02:40:35:13:27:
40:0e:8f:ed:47:e8:81:f6:c0:9d:8a:9b:2c:4d:db:cf:2b:ff:
59:08:29:32:c2:34:c1:24:b9:6f:17:22:f3:2f:93:e2:24:14:
27:99:e9:5d:21:cd:32:f0:45:de:ac:e9:6d:b3:f7:96:42:76:
00:37:ce:77:c9:f0:37:80:d7:0c:03:b8:c7:10:98:68:b0:be:
5c:88:e5:55:52:c5:fb:12:6a:47:f7:f6:8c:d3:00:2a:e5:52:
d6:ae:98:6d:af:bc:64:b0:8f:3b:c6:56:5b:c4:87:c0:6c:00:
b4:8c:27:27:34:86:f4:31:e3:53:76:ac:f1:40:7b:dc:20:b4:
83:11:b2:f9:98:11:19:0d:55:51:bf:2b:6a:0c:e2:ef:eb:06:
24:6c:dc:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:53 2025 by rpki-client