Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/5FmnQnJP3VMDDy7tH28pODCUfSU.roa
File: 5FmnQnJP3VMDDy7tH28pODCUfSU.roa (raw, json)
Hash identifier: xM19lbwzn1HjuQCCwegYqGvdBposw7PC1KApwzf9uIQ=
Subject key identifier: E4:59:A7:42:72:4F:DD:53:03:0F:2E:ED:1F:6F:29:38:30:94:7D:25
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0CF2
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/5FmnQnJP3VMDDy7tH28pODCUfSU.roa
Signing time: Wed 26 Apr 2023 10:31:22 +0000
ROA not before: Wed 26 Apr 2023 10:31:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18046
IP address blocks: 119.15.192.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3314 (0xcf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:22 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E459A742724FDD53030F2EED1F6F293830947D25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:5e:0d:b4:a2:d0:c5:58:a3:e9:6d:9a:e8:79:
cc:7a:71:51:6c:88:3f:4d:4d:93:8f:39:a7:12:8a:
6b:f0:ab:1e:f3:70:4b:8b:07:52:7c:fe:d8:e6:4c:
7b:88:8c:1a:56:ba:ad:cc:a0:a2:98:f4:e3:b3:4b:
43:12:a3:89:ba:af:b5:d1:ee:ad:91:5f:ca:bd:7f:
48:75:20:39:49:c6:bd:0f:39:12:68:d5:b0:82:1c:
7d:19:4c:f1:76:ee:c5:a7:78:56:9f:4a:1b:5b:8b:
d5:d3:83:1e:58:f4:56:7c:bf:62:f9:c1:26:30:53:
5c:5f:9a:4a:0c:b2:ba:e8:2c:da:25:34:c6:16:91:
5a:7c:ba:28:a6:15:d9:d2:98:c3:6a:07:9b:8b:6b:
90:88:65:59:db:f4:7c:be:cb:b5:63:ff:0d:37:54:
9a:a5:6a:8f:db:c4:35:6b:90:3d:ff:d5:4c:cc:8d:
73:ad:54:ff:28:68:00:09:54:51:34:43:b4:bc:ba:
a5:9f:30:94:81:c5:79:75:80:99:67:cf:86:76:e6:
c6:68:5f:02:0c:87:02:93:c0:28:ec:76:f3:35:2b:
60:ed:fe:af:de:a3:51:ed:df:f1:c3:c3:6a:1b:13:
b2:cf:d1:99:93:4d:d7:37:e9:27:06:64:66:96:ea:
00:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:59:A7:42:72:4F:DD:53:03:0F:2E:ED:1F:6F:29:38:30:94:7D:25
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/5FmnQnJP3VMDDy7tH28pODCUfSU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.15.192.0/21
Signature Algorithm: sha256WithRSAEncryption
28:43:43:dc:9e:c0:3f:ce:13:3b:f3:36:44:f5:2e:8c:25:bf:
f8:45:8d:7d:06:ba:08:bd:2c:af:1c:54:f2:82:10:63:5c:09:
ea:bf:36:31:e9:74:43:ef:22:6e:04:a2:5f:35:2d:72:45:bc:
4c:e3:34:76:ad:43:5a:d9:83:45:3d:a1:16:75:13:f5:51:2d:
74:45:79:9d:5d:0f:07:cf:0b:16:b1:0c:bc:ec:82:88:f8:97:
39:3d:6d:85:6c:bc:fd:4a:02:09:2e:44:55:01:1a:36:06:e1:
a6:da:64:3f:aa:7c:fb:f9:22:77:26:71:3b:0b:a8:c4:dd:ea:
91:82:fc:dc:79:bb:e1:e1:b7:59:56:ce:ae:c6:1b:0a:e2:96:
7e:2f:2d:d9:5c:73:9e:4e:d3:bb:e4:db:bc:c6:f6:f4:e3:ff:
56:93:7d:c8:ff:b0:b3:fa:97:9c:bb:3d:73:78:09:f5:a6:2a:
4a:22:b4:50:1a:ba:00:f2:8a:11:ae:d1:90:89:6c:37:ab:64:
54:1e:65:ec:a4:bc:b1:e1:24:56:6c:98:b5:5f:63:e6:23:04:
b4:21:5f:50:8f:29:81:aa:f4:83:d3:55:80:2f:55:ae:38:b1:
2c:71:e5:09:79:b6:ec:d2:71:73:03:ee:97:aa:93:72:f5:b9:
4b:a0:11:5c
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDPIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA0MjYx
MDMxMjJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEU0NTlBNzQyNzI0RkRE
NTMwMzBGMkVFRDFGNkYyOTM4MzA5NDdEMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDrXg20otDFWKPpbZroecx6cVFsiD9NTZOPOacSimvwqx7zcEuL
B1J8/tjmTHuIjBpWuq3MoKKY9OOzS0MSo4m6r7XR7q2RX8q9f0h1IDlJxr0PORJo
1bCCHH0ZTPF27sWneFafShtbi9XTgx5Y9FZ8v2L5wSYwU1xfmkoMsrroLNolNMYW
kVp8uiimFdnSmMNqB5uLa5CIZVnb9Hy+y7Vj/w03VJqlao/bxDVrkD3/1UzMjXOt
VP8oaAAJVFE0Q7S8uqWfMJSBxXl1gJlnz4Z25sZoXwIMhwKTwCjsdvM1K2Dt/q/e
o1Ht3/HDw2obE7LP0ZmTTdc36ScGZGaW6gDHAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU5FmnQnJP3VMDDy7tH28pODCUfSUwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvNUZtblFuSlAzVk1ERHk3dEgyOHBP
RENVZlNVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3cPwDAN
BgkqhkiG9w0BAQsFAAOCAQEAKEND3J7AP84TO/M2RPUujCW/+EWNfQa6CL0srxxU
8oIQY1wJ6r82Mel0Q+8ibgSiXzUtckW8TOM0dq1DWtmDRT2hFnUT9VEtdEV5nV0P
B88LFrEMvOyCiPiXOT1thWy8/UoCCS5EVQEaNgbhptpkP6p8+/kidyZxOwuoxN3q
kYL83Hm74eG3WVbOrsYbCuKWfi8t2Vxznk7Tu+TbvMb29OP/VpN9yP+ws/qXnLs9
c3gJ9aYqSiK0UBq6APKKEa7RkIlsN6tkVB5l7KS8seEkVmyYtV9j5iMEtCFfUI8p
gar0g9NVgC9VrjixLHHlCXm27NJxcwPul6qTcvW5S6ARXA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org