Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/1CNNryhmBomzv_S33fM8Pjq7JfM.roa
File: 1CNNryhmBomzv_S33fM8Pjq7JfM.roa (raw, json)
Hash identifier: 6+rHdJiFUa1tzIrKXsuC3rWLK75KnOpL6v0KepdVHTc=
Subject key identifier: D4:23:4D:AF:28:66:06:89:B3:BF:F4:B7:DD:F3:3C:3E:3A:BB:25:F3
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0BFC
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/1CNNryhmBomzv_S33fM8Pjq7JfM.roa
Signing time: Thu 15 Sep 2022 02:37:24 +0000
ROA not before: Thu 15 Sep 2022 02:37:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 210.209.224.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3068 (0xbfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 15 02:37:24 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D4234DAF28660689B3BFF4B7DDF33C3E3ABB25F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:d0:dc:5b:55:26:5f:17:65:84:9a:28:8f:3c:
d9:a0:e3:db:04:9a:0d:c3:fa:6a:36:9f:6c:08:fe:
02:0c:74:e4:cc:5d:38:c4:e9:72:02:23:91:b4:6a:
f5:6b:e0:d5:ed:4b:71:f4:e7:7d:71:37:50:fd:69:
65:bb:c1:87:c7:5c:86:30:fe:98:32:cf:e4:35:5c:
53:fe:67:2e:db:27:77:a9:1e:90:bf:cf:27:40:8a:
d0:a8:1c:e2:11:91:a5:b0:72:fc:24:61:20:63:54:
dc:a9:6b:32:74:a0:39:1c:3a:97:99:8d:e1:ef:ea:
5b:8e:12:48:47:c2:f4:65:f6:48:c2:48:a4:70:d7:
3a:7d:7f:75:d7:fb:ac:86:b3:d3:e7:62:53:68:98:
4a:7a:76:6f:b8:5d:ce:a7:39:2c:e0:ab:a3:19:10:
c8:de:32:98:5d:76:72:74:2b:e9:87:93:6f:9c:b1:
24:b1:27:89:2a:4c:ac:f1:6b:09:c0:e5:4c:c7:c8:
6f:54:16:c2:63:40:2a:c9:11:b1:66:08:ea:1d:39:
b2:26:03:3e:2e:af:33:05:5d:72:3d:e1:ec:f7:e8:
e1:e3:a3:8d:d3:00:5a:82:ce:4d:40:1d:22:f5:f1:
10:6d:b3:3c:4a:9d:e9:7a:d9:06:2f:cb:4d:c3:c6:
9f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:23:4D:AF:28:66:06:89:B3:BF:F4:B7:DD:F3:3C:3E:3A:BB:25:F3
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/1CNNryhmBomzv_S33fM8Pjq7JfM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.209.224.0/19
Signature Algorithm: sha256WithRSAEncryption
16:06:cf:6a:c9:e6:66:92:f1:c4:c8:31:f3:b6:54:38:fb:00:
76:b2:e4:35:9f:df:de:af:4a:a4:0a:26:42:c6:ae:3b:ce:10:
bd:9f:22:8b:47:e1:dd:54:90:e7:37:4e:14:c6:a3:63:60:4b:
9e:04:1b:21:cb:4d:c0:03:36:cf:95:8a:3c:27:c6:ef:37:b2:
a1:1d:18:b4:6f:4a:9f:f2:5f:a1:d9:a8:50:19:e7:9a:a9:a9:
25:0b:d2:c8:6f:46:bf:46:16:cd:ce:1d:8b:d4:eb:fb:2a:f6:
c2:65:b8:39:c0:d8:49:8e:8c:b1:67:44:ee:ab:7b:7d:3c:87:
6b:12:b5:32:c2:6c:04:b6:6d:57:4b:5f:45:0d:b9:f4:d3:63:
de:cd:9a:33:e2:ce:26:75:be:ff:69:ca:5d:eb:48:64:eb:1b:
30:5b:20:fe:e1:e7:95:82:71:ab:a8:9f:a1:63:c5:dd:81:d2:
b4:a7:9c:b9:28:9e:11:10:cc:d7:26:96:59:6b:73:3a:9a:3a:
64:cc:10:1c:af:72:88:96:38:a0:a6:fb:a7:46:f4:3c:95:1c:
ed:ce:d4:ed:4a:26:2d:6c:3b:46:90:a9:a1:26:1c:05:75:a5:
2d:29:04:4c:02:1d:44:d0:81:1b:83:8e:35:a6:cd:62:43:fe:
0b:e5:1f:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org