Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/3KT7Pmd5aOXgvY6ZIkfRGl7wILU.roa
File: 3KT7Pmd5aOXgvY6ZIkfRGl7wILU.roa (raw, json)
Hash identifier: eRiZlBYTdeIuPR/OyCBSVt6B67CA4vz/eQEvTQdCutI=
Subject key identifier: DC:A4:FB:3E:67:79:68:E5:E0:BD:8E:99:22:47:D1:1A:5E:F0:20:B5
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0AE0
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/3KT7Pmd5aOXgvY6ZIkfRGl7wILU.roa
Signing time: Thu 16 Dec 2021 06:32:49 +0000
ROA not before: Thu 16 Dec 2021 06:32:49 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17809
IP address blocks: 113.61.128.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2784 (0xae0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Dec 16 06:32:49 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DCA4FB3E677968E5E0BD8E992247D11A5EF020B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:98:87:46:4b:57:39:a5:b8:2e:5c:16:9d:fc:
ba:03:4f:b2:d8:5a:f8:a5:cc:3c:d2:74:ee:27:b7:
b5:34:7a:e7:53:fe:02:e5:1b:95:0d:36:2a:e9:e9:
cd:2c:90:07:35:8f:63:22:46:36:34:c4:2a:bc:87:
9f:7d:86:ea:2e:f5:dc:48:af:ef:06:b1:0b:c6:4b:
74:9d:45:68:50:29:02:a1:e6:e3:15:05:e4:f6:46:
54:64:d8:ca:df:e8:c6:47:17:30:51:f7:2f:72:0c:
e2:9d:d9:ce:83:db:d9:a3:64:08:2e:fb:08:99:32:
02:a2:e7:fe:75:bf:9d:7d:f9:d9:5b:e3:e0:2c:54:
81:83:c9:9c:75:48:19:97:9a:84:13:2a:6b:da:5d:
9a:c1:fa:f2:d3:5d:a1:33:d1:21:3a:89:83:7c:14:
d6:65:9f:dd:b3:84:30:e1:15:07:8f:f4:fa:b4:8c:
c3:f5:14:13:ed:59:02:c9:f5:e3:ae:80:80:9f:a2:
ed:35:26:9b:53:1f:ed:53:79:96:ca:24:a5:cc:ef:
f9:19:73:ee:f3:c8:1f:ea:01:a5:df:2f:15:76:29:
67:bf:8a:3f:ce:7b:a5:e1:e9:df:9f:52:ce:97:8a:
29:6b:1b:1b:e7:5c:87:f9:5e:8a:6e:5b:9c:a1:95:
d3:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:A4:FB:3E:67:79:68:E5:E0:BD:8E:99:22:47:D1:1A:5E:F0:20:B5
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/3KT7Pmd5aOXgvY6ZIkfRGl7wILU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.128.0/20
Signature Algorithm: sha256WithRSAEncryption
5d:dc:23:19:16:3b:08:18:b5:13:ea:35:b1:31:db:46:bf:9b:
b3:01:f2:a9:63:ea:a6:73:b7:eb:a0:52:6d:21:81:6f:07:97:
48:79:43:d5:26:01:c5:1c:3b:8d:d6:4e:b1:dd:cc:a9:dc:79:
80:29:60:ea:ab:fe:11:0a:69:dd:f5:81:e0:5e:4d:63:50:3a:
6b:ff:0d:f6:ee:fe:03:78:74:e4:09:68:e4:c4:62:d6:68:30:
08:a2:7f:7a:83:f0:d3:80:e7:87:f5:36:85:b2:22:8f:95:1a:
6f:04:b6:d8:95:16:f5:e5:69:71:95:d6:df:7f:bf:88:6b:05:
67:7f:ca:ba:f2:5d:a1:0f:e2:c0:d3:7c:10:1d:8e:b8:f2:4a:
b1:65:a4:47:5c:f7:0c:1b:95:ef:92:76:43:26:dd:ff:0c:3f:
1c:08:72:e0:08:54:80:3e:c1:5b:97:32:d0:7c:10:01:78:d6:
46:9c:42:e5:cb:4c:c7:3d:c5:2b:eb:b0:47:56:66:bc:e4:b8:
9e:6a:d1:a5:be:ca:1f:3b:15:0c:b4:d1:2e:93:7d:c7:ab:3f:
9d:d5:a7:fc:3f:00:67:5a:34:c8:fe:e3:05:6a:ce:7d:4d:3e:
6f:40:c2:9e:73:86:65:73:63:f2:c4:53:ce:7c:68:7b:4f:6c:
12:fe:0f:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:52 2023 by rpki-client on console-ams.rpki-client.org