Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/2pJiHcuTofiigFTKKXFP2qzhKtA.roa
File: 2pJiHcuTofiigFTKKXFP2qzhKtA.roa (raw, json)
Hash identifier: ZxktcjQfR6foykJdDYuXj7vKvgVpfBSLl7v+IqW5Qfo=
Subject key identifier: DA:92:62:1D:CB:93:A1:F8:A2:80:54:CA:29:71:4F:DA:AC:E1:2A:D0
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0BFC
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/2pJiHcuTofiigFTKKXFP2qzhKtA.roa
Signing time: Thu 15 Sep 2022 02:37:21 +0000
ROA not before: Thu 15 Sep 2022 02:37:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 113.61.208.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3068 (0xbfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 15 02:37:21 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DA92621DCB93A1F8A28054CA29714FDAACE12AD0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8e:e6:7e:90:b8:21:82:20:ce:bb:4a:3d:c4:
cd:62:40:f6:e7:c7:f9:7d:91:09:55:62:d5:08:a1:
0e:8d:c1:8a:47:e7:37:7a:16:ff:70:25:fa:9c:e3:
14:68:11:a9:64:84:b5:a3:2b:53:0f:53:ab:1b:ea:
4b:e7:45:44:e3:d9:c9:a4:37:b1:07:53:99:0b:56:
5d:87:49:27:b5:e9:2d:71:a2:b5:13:cf:27:05:59:
a2:f2:ba:3c:dd:eb:22:fb:8a:27:b4:96:fa:72:bf:
bf:07:65:4e:00:82:90:ae:83:df:7c:d9:ce:45:b2:
00:6f:14:e8:49:fd:1d:89:16:07:fc:af:12:93:f8:
d3:be:32:8e:a7:9d:39:78:67:2e:bd:6f:5b:fa:dc:
5f:03:41:de:55:df:2c:5a:cc:c9:1c:5d:bc:e5:e2:
55:01:ad:e1:50:c0:f1:7e:75:1e:14:e3:a1:1e:dc:
d2:37:a1:c3:4f:0c:13:e6:5d:f4:96:f3:e8:f6:e3:
e0:d1:f5:57:55:c7:21:8b:79:95:95:dc:12:6b:89:
2c:c4:f0:73:ea:72:a9:7b:ee:c3:6f:16:e4:87:d2:
a4:17:bd:9b:a8:03:43:59:37:97:11:54:09:63:b9:
47:5d:c7:37:49:5c:c5:9e:58:de:cd:94:9f:12:35:
fc:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:92:62:1D:CB:93:A1:F8:A2:80:54:CA:29:71:4F:DA:AC:E1:2A:D0
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/2pJiHcuTofiigFTKKXFP2qzhKtA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.208.0/20
Signature Algorithm: sha256WithRSAEncryption
8d:56:86:cb:a2:02:42:7f:d0:2e:0c:e7:2b:0f:ed:16:6b:3a:
57:81:f9:55:d1:50:7c:57:50:c0:6b:9b:a0:7c:34:6c:04:39:
45:4e:84:7a:bf:3f:0b:f1:e0:2c:8d:5a:d7:74:50:1d:13:12:
e4:93:3e:bc:6c:cd:9c:43:71:b9:7e:ff:ea:91:9b:93:b5:0d:
73:04:68:ed:36:ae:3e:4e:39:3a:45:b6:fa:be:5d:02:11:9a:
74:b5:45:46:81:ab:30:be:25:dc:19:86:6b:b7:14:00:c5:29:
c5:70:ad:34:92:63:39:8b:82:5f:6c:2a:c6:7f:9c:b6:df:4f:
0c:79:68:77:78:ee:95:a8:99:e0:bf:e8:0e:d6:42:da:67:3b:
8a:d7:82:13:ac:b0:c7:60:b4:9b:71:a5:3d:21:f4:af:e5:97:
b4:89:5a:d8:d3:98:f9:f2:d9:ab:bf:3c:8b:b3:a6:67:3b:59:
7d:25:90:9e:e8:51:0d:e9:41:f2:4b:eb:fd:68:f4:a7:5a:46:
28:29:7c:c0:83:d8:43:92:07:8b:0f:bf:60:19:03:bf:27:da:
e0:d9:e9:72:77:00:ab:b1:66:1a:54:d5:d7:cb:26:cd:46:47:
d0:fd:b6:3a:0d:3f:99:82:dd:fa:4a:51:98:6c:dc:08:e5:45:
f2:17:7b:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org