Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/46hjE7IgtvI3W9TmsVvyyfoP0F4.roa
File: 46hjE7IgtvI3W9TmsVvyyfoP0F4.roa (raw, json)
Hash identifier: 1ujycMmoZcXA6gYGMBOLZvva+irF8YXoG+UFOtd40Es=
Subject key identifier: E3:A8:63:13:B2:20:B6:F2:37:5B:D4:E6:B1:5B:F2:C9:FA:0F:D0:5E
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D0D
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/46hjE7IgtvI3W9TmsVvyyfoP0F4.roa
Signing time: Wed 26 Apr 2023 10:31:29 +0000
ROA not before: Wed 26 Apr 2023 10:31:29 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 210.209.192.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3341 (0xd0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:29 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E3A86313B220B6F2375BD4E6B15BF2C9FA0FD05E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:15:4e:af:57:e0:a7:45:7d:d0:c2:02:1e:5a:
9d:a3:c3:81:36:e1:39:c0:f5:80:6b:65:d1:98:eb:
9f:4c:13:bb:9e:e4:b0:8d:72:ba:18:c6:58:8e:84:
e0:88:b9:74:5a:a0:f6:c5:46:db:f6:23:7e:4c:06:
f2:ba:f4:98:12:17:a6:4b:05:37:d7:bc:7d:8c:6d:
70:56:78:e3:76:0e:a4:17:76:ed:fb:2b:cf:50:2f:
ea:b4:6c:d0:58:a4:43:76:d0:eb:61:b5:10:e2:b5:
7e:01:2b:82:02:69:5f:a0:bc:87:36:8b:6d:5d:e7:
d4:a8:06:d6:5d:05:b7:01:06:86:d1:c6:aa:54:cd:
a0:6d:33:4b:4b:08:75:8e:25:a5:bf:be:5f:a0:3d:
1c:6a:f2:3e:64:cd:78:28:ba:87:a9:fa:30:69:2e:
7d:a8:3c:5a:6c:d1:e7:30:ba:07:c8:3f:91:df:fd:
f3:74:48:0f:4f:f1:9b:87:6b:2f:c6:ae:10:33:a4:
b2:33:09:1b:7e:24:dd:92:93:33:c1:8e:4a:c8:68:
a6:f1:fe:fa:d8:d6:be:a7:28:8b:28:2f:8e:e1:a3:
9f:9d:49:15:f3:5b:55:50:4c:b9:00:40:fa:e1:26:
5d:b2:c6:19:7d:2f:b1:99:d8:8f:16:27:1d:e8:1c:
4d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:A8:63:13:B2:20:B6:F2:37:5B:D4:E6:B1:5B:F2:C9:FA:0F:D0:5E
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/46hjE7IgtvI3W9TmsVvyyfoP0F4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.209.192.0/19
Signature Algorithm: sha256WithRSAEncryption
0d:0e:7d:6e:85:72:a5:49:86:19:93:88:12:f7:eb:67:01:91:
b3:8f:e6:96:85:b1:aa:89:7e:35:b2:bc:f8:32:3f:fd:c6:10:
de:27:ce:19:7f:36:36:ae:70:44:7d:5d:87:ff:1a:d2:51:58:
ee:c9:b3:56:a3:12:16:48:dd:b2:b9:25:19:86:71:6b:97:73:
77:e5:31:24:d3:95:f1:eb:d4:62:9a:c5:7d:76:ac:aa:d5:9f:
3e:c5:e7:97:18:19:82:a8:6c:d6:c8:c4:4c:5b:74:6d:49:4e:
87:af:a5:f7:34:4e:e6:9b:42:00:0b:f9:8c:cf:89:8f:5e:96:
b6:f9:0f:aa:34:71:fa:41:1e:39:f9:e3:9c:ef:89:80:b9:53:
7c:09:b2:92:c4:c9:c0:8c:54:cf:a7:ca:3c:c9:0b:a1:d2:0d:
ce:74:cc:1d:d4:4b:0e:29:74:b7:4b:19:f6:8c:57:88:a8:a1:
b2:e1:29:a4:6b:93:7a:a7:48:06:89:27:75:15:1a:f8:6f:e5:
8e:3b:c7:71:f5:5f:cd:37:32:b3:84:cd:b1:0a:16:8c:a8:f6:
5c:16:a0:21:fd:79:91:a5:84:31:54:bc:24:f3:19:eb:9e:29:
63:ad:fe:4f:82:6e:c3:64:3c:4a:30:95:85:92:0b:fb:65:3c:
99:6a:cb:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org