Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/0nMsatHGeCrO-5y5UT24b0JwBhY.roa
File: 0nMsatHGeCrO-5y5UT24b0JwBhY.roa (raw, json)
Hash identifier: s/XBz6skanC0Bf71iAPwUPhlbJlo6uhbxrGyUKXU56k=
Subject key identifier: D2:73:2C:6A:D1:C6:78:2A:CE:FB:9C:B9:51:3D:B8:6F:42:70:06:16
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0CAD
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/0nMsatHGeCrO-5y5UT24b0JwBhY.roa
Signing time: Wed 26 Apr 2023 06:00:42 +0000
ROA not before: Wed 26 Apr 2023 06:00:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 27.96.252.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3245 (0xcad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 06:00:42 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D2732C6AD1C6782ACEFB9CB9513DB86F42700616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:1a:f1:2e:88:3a:54:df:e0:89:ad:47:6a:39:
63:94:2a:d5:99:1d:17:b3:2f:03:25:1d:05:80:b3:
46:a6:44:f6:af:ea:46:a4:0c:3d:d9:70:f8:72:25:
b1:60:04:43:15:9b:dc:c9:bc:f4:84:7a:e3:d4:1d:
4b:1a:5f:e0:1f:17:2c:c0:e9:78:69:a3:18:82:6f:
4f:3d:42:ea:81:03:6e:69:e5:fc:46:b2:40:c3:3f:
2b:dc:39:58:92:fb:78:4d:98:ad:a5:8d:36:75:ed:
a0:06:c8:b2:01:0a:e4:e5:28:21:35:dc:17:09:a5:
91:37:2c:a2:6e:cf:3c:2d:8b:85:b3:9d:70:7e:ab:
aa:c6:6f:ca:a8:38:9d:24:de:86:4a:32:a6:0b:bf:
7b:4d:37:f2:37:5b:3f:da:94:34:d3:34:2b:e5:5a:
4f:02:65:33:7c:c8:83:ec:a2:c8:f6:eb:e8:64:37:
98:56:62:ac:90:73:36:66:a1:66:1e:77:e8:36:c0:
b7:cd:ff:e1:0c:36:e7:f8:bd:28:18:3c:74:81:ed:
12:7e:a5:d9:b6:c9:63:69:c0:4f:5c:d1:59:b5:56:
12:cb:5a:b5:a2:e1:09:52:5f:4b:6a:72:48:7c:9a:
74:45:4d:2c:6b:0f:dd:15:99:a1:56:0c:36:bb:f4:
6a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:73:2C:6A:D1:C6:78:2A:CE:FB:9C:B9:51:3D:B8:6F:42:70:06:16
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/0nMsatHGeCrO-5y5UT24b0JwBhY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.252.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:8d:29:b4:83:cf:cb:d3:05:35:15:81:f0:a3:63:7b:6f:46:
26:bd:c6:da:ad:ee:56:58:2c:82:d0:19:8d:ae:35:e8:06:1d:
93:8a:6e:e4:2a:6a:99:98:e3:1c:b1:7d:27:ba:74:8d:0a:ee:
16:16:39:19:a9:96:cc:2e:42:87:fb:e3:73:39:9c:75:0f:eb:
02:38:ab:33:b0:3f:f4:5f:6f:1b:7a:c0:9b:49:44:e7:98:aa:
e9:03:5c:3b:53:da:6b:d8:30:c6:33:14:af:9a:4b:f2:3d:88:
56:09:75:9b:fa:48:8a:2d:fd:af:fa:77:29:3d:39:75:9a:30:
a4:b8:5c:4f:38:c4:8e:e2:ac:ff:0a:5f:c6:5b:e9:72:12:f9:
9f:74:3b:8f:47:cf:b4:0e:a0:23:00:45:4f:cc:3e:9c:ae:68:
ee:5d:ea:37:82:8a:31:82:3d:a4:f6:36:a7:b0:34:b5:65:0b:
59:22:89:9f:08:7b:03:11:0f:a6:37:57:c2:04:cb:11:27:0b:
06:d4:cb:42:a3:51:06:f1:0f:e0:dc:e9:d3:64:0e:70:7d:ab:
45:bf:f1:a9:bb:e6:0e:a8:d5:21:c2:32:fa:24:c0:16:ac:66:
19:c7:c0:c4:b9:f5:9b:e5:ca:fc:fd:30:af:21:0e:aa:87:65:
5e:a0:03:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org