Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/6M9sDvvZ1ALQYBpVelkaQy4MLx8.roa
File: 6M9sDvvZ1ALQYBpVelkaQy4MLx8.roa (raw, json)
Hash identifier: 3Ds0xsYvuIA0oexLuWf0emvGCGdB97HstIpdrUqhR8Q=
Subject key identifier: E8:CF:6C:0E:FB:D9:D4:02:D0:60:1A:55:7A:59:1A:43:2E:0C:2F:1F
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D1C
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/6M9sDvvZ1ALQYBpVelkaQy4MLx8.roa
Signing time: Wed 26 Apr 2023 10:31:33 +0000
ROA not before: Wed 26 Apr 2023 10:31:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 203.222.24.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3356 (0xd1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:33 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E8CF6C0EFBD9D402D0601A557A591A432E0C2F1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:5c:b7:85:8f:c9:54:2d:5c:8b:26:5c:68:01:
99:48:e0:64:bc:b1:a8:52:5f:bc:35:b2:c2:9e:61:
80:7a:31:20:e9:28:7c:96:f9:68:6f:ce:e5:da:19:
3f:3e:ef:30:1c:5d:87:ea:d0:7e:f3:b7:0d:89:d7:
c7:f7:d5:fd:90:4e:f9:5e:67:44:4d:51:c4:05:d8:
ec:2d:8f:68:ba:61:8f:fc:e2:a2:b5:3a:c6:41:27:
fe:d8:fd:40:b3:ab:ae:10:58:6b:dc:3b:42:f7:9b:
b5:53:cf:ee:10:86:3b:e3:96:7e:bb:11:4a:59:4f:
c2:a4:89:ba:83:d6:ed:1a:b4:94:80:5c:97:af:3f:
50:c7:f7:48:bf:d4:b6:fc:a5:9a:1d:dd:34:b4:c7:
a3:a2:13:fd:44:58:a9:87:c0:cd:d5:30:ef:73:cb:
05:69:98:69:47:6c:bb:11:4d:0b:6d:d1:d7:ef:94:
0c:ef:81:74:ea:af:72:01:ae:67:f2:a2:44:42:3d:
af:59:fe:2a:82:13:b8:71:f8:b3:f8:3a:b0:c3:15:
3f:92:1a:6e:ef:f0:59:94:aa:d7:be:9f:42:6c:57:
60:4e:c1:1e:c4:0b:d6:e0:63:b6:22:2c:06:0f:70:
29:c4:de:7e:cd:50:b0:37:46:80:ca:05:04:d9:14:
9f:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:CF:6C:0E:FB:D9:D4:02:D0:60:1A:55:7A:59:1A:43:2E:0C:2F:1F
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/6M9sDvvZ1ALQYBpVelkaQy4MLx8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.222.24.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:56:db:20:8a:42:b1:d9:28:b4:24:20:cf:47:64:3c:98:ac:
96:76:d5:02:80:87:74:5f:79:17:27:77:7b:ea:c0:4b:37:2d:
32:78:8a:20:0d:c0:25:c4:71:03:5a:33:9a:6f:31:18:bb:ee:
5f:af:54:86:ba:3e:42:d0:d0:5f:21:ea:31:2b:ed:2d:e5:f8:
08:7f:62:c2:d1:35:d8:4c:88:47:50:30:b6:94:1b:61:01:67:
94:9d:51:c1:6d:6d:db:6a:93:8c:78:c2:27:5d:77:77:eb:20:
53:6f:b8:7d:df:ae:b0:d2:21:b3:b4:68:a8:ab:9b:ad:f6:38:
7a:21:0d:9e:32:c5:0c:64:e6:3d:36:43:9d:d1:81:eb:0e:3b:
d9:a1:39:7c:80:72:74:ad:49:30:c5:2b:eb:49:37:5c:c7:79:
80:c1:8e:dc:d5:a1:a4:18:b3:da:f8:6c:50:9d:6e:c2:09:0f:
50:46:88:fd:86:ab:54:12:36:10:61:e5:91:41:6b:e1:2c:20:
84:1c:f2:7d:45:b9:7f:8d:91:1a:68:b2:4a:a5:19:34:bb:aa:
0e:3a:53:10:06:94:70:e3:f6:3b:97:e8:b5:c2:f8:38:10:fd:
5e:9d:ab:01:83:eb:c6:da:ac:e6:f1:de:7a:49:1b:7d:61:4d:
21:44:ac:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:00 2025 by rpki-client