Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCHC/z4bdosyMm0a0tRI7kqvGZL0CcKI.roa
File: z4bdosyMm0a0tRI7kqvGZL0CcKI.roa (raw, json)
Hash identifier: zixqLeClXDGOiGFgePoG9oBVu8Avb33v4KrekXWJZLs=
Subject key identifier: CF:86:DD:A2:CC:8C:9B:46:B4:B5:12:3B:92:AB:C6:64:BD:02:70:A2
Certificate issuer: /CN=ED38685FF3EA1F46685DE5F57C6A4B8104481891
Certificate serial: 09E4
Authority key identifier: ED:38:68:5F:F3:EA:1F:46:68:5D:E5:F5:7C:6A:4B:81:04:48:18:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/z4bdosyMm0a0tRI7kqvGZL0CcKI.roa
Signing time: Wed 20 Apr 2022 02:01:18 +0000
ROA not before: Wed 20 Apr 2022 02:01:18 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7539
IP address blocks: 211.73.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2532 (0x9e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ED38685FF3EA1F46685DE5F57C6A4B8104481891
Validity
Not Before: Apr 20 02:01:18 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CF86DDA2CC8C9B46B4B5123B92ABC664BD0270A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:39:87:ab:72:05:88:2f:d4:ac:15:eb:58:78:
50:d6:16:95:36:33:04:db:4c:94:ff:c4:ae:eb:a7:
e6:59:b1:49:7b:70:00:cc:37:6d:a0:4d:c4:2a:91:
b4:c2:f9:9c:65:58:c1:1b:bb:a2:c8:f6:6b:51:ce:
77:71:88:67:7b:b5:d2:d5:26:12:ce:ce:a9:bf:90:
85:f1:ac:cc:15:b5:f7:f8:7b:1f:2a:50:aa:5c:e7:
91:8b:8d:f8:40:1a:18:21:14:51:2e:1c:0a:45:79:
cc:32:b7:64:ca:2f:9b:99:29:b6:b4:c8:02:b1:d4:
f3:74:9a:9e:77:d7:16:22:07:3d:b3:7a:06:b4:c8:
8c:c3:45:f4:a5:b6:70:17:dc:7a:1e:fa:31:b6:50:
c2:03:ee:38:42:39:a7:e5:47:70:d9:a8:ab:58:af:
d6:96:82:99:62:a0:c0:98:d6:eb:c1:77:4e:52:88:
5e:f8:f1:6c:16:41:0c:4d:f4:ee:5d:2d:b9:1a:6d:
63:46:66:7a:72:be:d0:28:49:b8:1a:de:70:07:9b:
46:31:d0:32:2c:45:ad:24:81:74:ed:d6:e3:cc:cb:
da:86:65:2a:64:73:b8:fd:cc:ed:eb:07:64:48:26:
f2:19:6c:50:74:9f:6e:63:c6:31:29:f3:dc:07:2f:
c8:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:86:DD:A2:CC:8C:9B:46:B4:B5:12:3B:92:AB:C6:64:BD:02:70:A2
X509v3 Authority Key Identifier:
keyid:ED:38:68:5F:F3:EA:1F:46:68:5D:E5:F5:7C:6A:4B:81:04:48:18:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/z4bdosyMm0a0tRI7kqvGZL0CcKI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.73.64.0/19
Signature Algorithm: sha256WithRSAEncryption
0e:28:e4:7b:85:ab:0c:19:1f:14:7e:9d:04:96:bd:a2:2b:39:
2e:2e:1c:b0:11:fd:d5:7d:d4:84:27:8c:32:94:2e:92:44:55:
e0:92:d0:41:fb:25:df:99:6c:0a:d6:74:1d:b8:16:a8:fe:74:
06:8e:dd:96:0c:fe:d3:3c:aa:3f:9a:95:98:78:d4:b6:a8:2c:
06:bb:ea:60:bf:14:07:97:43:c2:32:81:8c:c7:d7:f5:f4:2e:
23:5b:4d:12:52:f2:46:be:bf:c2:ea:34:29:6b:c8:4d:5d:a9:
e7:68:e2:13:68:dc:5b:98:81:0a:f5:f0:6d:05:a2:eb:08:a2:
01:28:93:3b:39:aa:16:0d:8f:d5:9a:8d:5e:a0:4f:88:85:dd:
fd:70:b4:a6:c6:91:2f:da:9b:f1:31:6c:09:20:00:60:62:9f:
a6:4b:f3:c2:66:7b:34:e5:f9:e1:1f:f8:8f:74:84:22:8e:cc:
8b:88:cb:d9:4c:1f:bc:8c:77:d9:d9:35:e7:77:40:b7:bc:42:
64:38:b7:bb:f3:98:66:5a:bd:15:f9:96:41:0c:a9:7e:05:ae:
8f:bf:dd:8f:78:db:5a:02:21:a6:c5:87:b3:5b:1f:e1:02:8f:
d1:ed:bc:c9:5f:4a:8c:27:94:0d:65:28:50:fb:bd:3c:a5:3f:
13:ad:de:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org