Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCHC/t2fvqkCIeqwfpfMUpIICwRmrjUs.roa
File: t2fvqkCIeqwfpfMUpIICwRmrjUs.roa (raw, json)
Hash identifier: 3qYpQeR6NYTGxJWK1UBOOI0sIQNjlViXx7DB8TzrKwo=
Subject key identifier: B7:67:EF:AA:40:88:7A:AC:1F:A5:F3:14:A4:82:02:C1:19:AB:8D:4B
Certificate issuer: /CN=ED38685FF3EA1F46685DE5F57C6A4B8104481891
Certificate serial: 08BC
Authority key identifier: ED:38:68:5F:F3:EA:1F:46:68:5D:E5:F5:7C:6A:4B:81:04:48:18:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/t2fvqkCIeqwfpfMUpIICwRmrjUs.roa
Signing time: Sun 07 Feb 2021 11:50:08 +0000
ROA not before: Sun 07 Feb 2021 11:50:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7539
IP address blocks: 211.79.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2236 (0x8bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ED38685FF3EA1F46685DE5F57C6A4B8104481891
Validity
Not Before: Feb 7 11:50:08 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B767EFAA40887AAC1FA5F314A48202C119AB8D4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:34:cf:e3:b0:2d:56:74:d1:bc:b3:ac:d9:35:
0d:38:6c:92:88:77:82:cd:56:b9:29:e7:36:dd:4f:
44:ce:1f:da:0b:ef:20:3b:29:b0:9e:75:81:c2:7c:
d6:31:8f:27:9e:54:95:a3:85:19:26:cd:a9:0a:69:
6e:92:33:53:f4:35:9a:6b:c1:ad:5c:3e:a4:40:6a:
95:3a:9a:ce:f7:23:3d:55:31:de:5b:71:de:76:02:
83:d7:00:fa:ea:79:57:0f:db:b5:00:26:6e:24:7c:
b5:63:bd:e2:7d:fc:01:c7:0b:68:ea:5c:cd:8e:9f:
c3:c3:8e:f1:7d:07:a8:2c:81:ff:d7:f0:27:3a:62:
dc:dd:8a:38:5b:e9:b1:61:c4:71:22:44:3d:11:b0:
e5:02:13:d7:1f:b7:48:83:8f:63:4e:e3:7d:06:96:
70:d1:4d:dd:5e:1e:20:e1:9e:5b:83:d3:ef:75:e3:
a6:68:97:4c:5a:4e:f4:07:0f:8c:93:3a:fd:a1:d2:
94:63:74:22:45:b9:11:92:7c:05:e6:5f:1d:f4:b4:
9a:a0:24:e3:0d:e5:56:78:ce:0d:82:75:dc:cb:8a:
8e:b4:6e:e2:6e:04:08:a6:1e:2c:16:26:10:e4:7b:
0b:a0:c9:4e:d7:15:63:b0:50:22:e1:53:30:0a:42:
ab:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:67:EF:AA:40:88:7A:AC:1F:A5:F3:14:A4:82:02:C1:19:AB:8D:4B
X509v3 Authority Key Identifier:
keyid:ED:38:68:5F:F3:EA:1F:46:68:5D:E5:F5:7C:6A:4B:81:04:48:18:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/t2fvqkCIeqwfpfMUpIICwRmrjUs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.79.48.0/20
Signature Algorithm: sha256WithRSAEncryption
87:11:2a:6b:42:09:2b:7e:54:13:3c:db:a5:3d:86:7b:82:f9:
d6:df:80:27:37:1e:32:3b:35:d4:06:c8:36:fb:5c:01:de:27:
d6:28:4d:76:72:eb:83:43:ad:6c:b5:ed:f1:19:dc:c7:57:a1:
7e:9c:8a:10:3a:36:83:4d:62:63:23:b1:db:8e:c6:04:f6:08:
e5:0e:b0:31:a3:df:ac:a2:52:e8:b9:23:f6:58:46:9a:14:52:
0b:4a:e2:ac:d5:10:62:8c:1d:df:7c:75:72:2e:a7:a3:f9:a5:
8e:0f:e6:2c:c1:fb:4c:32:cb:99:bd:65:84:5d:f9:55:69:75:
21:b2:f9:6d:6c:af:12:3c:92:a0:61:c7:2b:9c:68:74:2a:c5:
91:a1:f3:05:23:44:e6:48:cc:31:fb:43:a0:ef:12:5f:96:c8:
4b:12:c7:02:d6:c7:4f:41:61:57:78:04:d3:41:21:03:24:ae:
58:b0:dc:16:69:33:cd:8e:ba:33:3b:04:37:b8:41:6f:65:b2:
ae:e7:0a:6e:95:ca:97:43:4a:71:e5:15:6e:ee:3d:9d:b4:e6:
29:3c:39:d5:63:83:12:c8:a4:20:d0:5a:30:a7:ff:19:2a:fe:
b9:c2:12:53:6a:3f:3c:1a:ce:87:80:a7:ad:32:2f:cd:db:47:
9e:a7:41:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org