Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/65EfetCXG_et08Gat-xsZ4UA6MU.roa
File: 65EfetCXG_et08Gat-xsZ4UA6MU.roa (raw, json)
Hash identifier: yGgPZAGhss1qH2G9Bmk1Y1tmkuovdcI4Gs9r5PoExXs=
Subject key identifier: EB:91:1F:7A:D0:97:1B:F7:AD:D3:C1:9A:B7:EC:6C:67:85:00:E8:C5
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0CAB
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/65EfetCXG_et08Gat-xsZ4UA6MU.roa
Signing time: Wed 26 Apr 2023 05:57:31 +0000
ROA not before: Wed 26 Apr 2023 05:57:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 27.96.248.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3243 (0xcab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 05:57:31 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EB911F7AD0971BF7ADD3C19AB7EC6C678500E8C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:72:e5:75:94:32:49:be:f9:2f:2e:0b:14:21:
91:0b:d1:2e:d4:f7:ae:56:fb:3c:48:0f:6a:40:e6:
bb:39:5d:a3:99:3d:ae:76:ca:33:e7:86:70:ed:47:
fe:5b:12:49:a4:60:40:08:96:b3:93:1c:67:65:f3:
70:0f:e2:0b:68:d3:c0:b3:c5:e3:2d:62:da:ae:6a:
29:bb:49:4b:f0:e8:aa:09:b5:6a:6c:3e:19:9f:c0:
ea:52:78:16:93:7d:54:25:5c:c7:72:d4:3d:ba:24:
58:fe:07:66:be:ae:ac:53:bc:d6:3d:d3:5f:47:22:
ab:4b:b8:c0:04:20:44:4d:dc:bf:b7:fb:8d:ec:13:
38:04:7a:b9:36:0e:96:c9:8c:e8:4a:06:a1:67:20:
e7:82:75:13:6d:63:8e:22:b1:1e:2e:bb:12:67:65:
b2:6a:03:c8:82:2c:34:7c:f5:cc:0d:c3:e3:2a:8a:
65:7f:44:06:dd:ad:18:cd:66:6a:7d:c4:00:f0:a0:
f4:af:0f:c5:0e:6a:bc:0c:d4:3f:e0:9b:6b:4c:66:
d5:b3:b9:04:0a:d2:68:fa:4b:19:70:43:58:9a:a1:
de:32:ec:3c:6c:f0:18:4f:e5:c8:a4:a4:5a:7a:e1:
86:db:eb:ae:41:ce:9b:08:1d:0c:3e:a3:e7:3e:83:
2e:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:91:1F:7A:D0:97:1B:F7:AD:D3:C1:9A:B7:EC:6C:67:85:00:E8:C5
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/65EfetCXG_et08Gat-xsZ4UA6MU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.248.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:cf:2e:08:87:66:2e:6b:68:6d:25:fc:65:6f:1b:d0:48:17:
25:81:18:a3:5a:e2:c9:a3:12:57:f8:4a:1b:23:94:98:1e:01:
2c:26:c9:85:f4:34:f8:f6:8b:18:3b:0a:ce:e6:3f:54:bd:7c:
61:94:53:57:2e:dd:2f:98:cb:e1:2d:f5:74:ef:cd:82:c2:f8:
60:14:f4:3a:36:29:77:18:0a:e8:43:31:f3:05:b8:d6:fa:c7:
33:5f:c2:8f:f8:90:1a:68:17:0a:ca:5e:4e:6a:6f:8d:06:c6:
da:ce:ed:57:4d:f6:01:ac:06:c2:d7:79:f4:99:53:c0:93:10:
25:d3:4e:6b:5c:7d:e5:5d:da:6a:2a:58:d0:7c:4a:01:16:96:
4c:e4:e4:6f:a1:dd:2a:8f:86:4e:ff:f0:5a:6b:b6:55:80:f7:
5f:74:c6:db:a6:e5:0a:ae:f3:18:0f:a8:41:3a:90:52:e0:c0:
49:5b:43:14:c2:ff:ee:f3:af:17:6a:e3:ce:96:49:12:11:ab:
22:59:57:bc:4e:a0:1a:f5:5f:1b:a3:b1:0a:49:50:8c:c1:58:
ce:1b:eb:0f:0d:7d:90:ae:22:b9:ff:bf:ab:eb:7b:7a:6d:03:
aa:19:f2:fb:f9:50:94:22:ec:8f:78:fa:a5:f2:ea:2a:3e:64:
c5:49:9f:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org