Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/7gCFCpPrixdSKJY5khqgvjUnlWQ.roa
File: 7gCFCpPrixdSKJY5khqgvjUnlWQ.roa (raw, json)
Hash identifier: GoVqPHKSxBpRIMqdiWYhQMoO/0RlL4oHkd3mmdqE28o=
Subject key identifier: EE:00:85:0A:93:EB:8B:17:52:28:96:39:92:1A:A0:BE:35:27:95:64
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0918
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/7gCFCpPrixdSKJY5khqgvjUnlWQ.roa
Signing time: Tue 24 Nov 2020 03:27:32 +0000
ROA not before: Tue 24 Nov 2020 03:27:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38851
IP address blocks: 119.15.200.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2328 (0x918)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Nov 24 03:27:32 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EE00850A93EB8B1752289639921AA0BE35279564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:6f:90:ae:4c:de:f3:c6:50:82:f6:75:13:8b:
ea:5d:98:f2:8a:6c:cc:3e:60:af:e1:bc:72:3a:e1:
ad:05:f2:0d:ef:38:a0:5a:56:b2:27:d3:7d:b2:91:
aa:31:68:b4:2f:96:3c:9c:7c:ea:27:75:58:27:cf:
d4:ad:e6:92:91:c2:b9:a8:e6:e9:18:b6:6f:d6:46:
b4:5e:72:64:c9:8c:90:17:ad:cc:33:d3:37:d0:ed:
b8:72:3f:e9:e8:24:cf:b6:97:c1:98:b5:42:d6:71:
3f:6c:ec:69:5e:d9:15:1c:1d:9d:f8:d9:6a:d2:fa:
11:dd:a0:55:06:10:ac:1b:29:ba:79:20:9e:3a:44:
68:a4:50:6b:5a:5a:85:3f:5b:6d:17:ae:0f:2a:92:
05:72:d9:cf:f1:ba:15:e7:e2:72:84:09:24:4d:d5:
0e:4f:32:a4:a0:1f:d8:d2:57:79:b7:d4:43:6a:2e:
53:e7:8d:55:c7:7d:5f:5d:9f:46:ac:38:78:a2:f9:
f1:3b:ad:4e:34:b4:67:66:ce:0b:79:20:1f:bb:3d:
39:7d:95:a1:11:b9:3b:23:e5:eb:88:15:05:b8:0f:
88:bf:68:33:64:6b:f6:39:b7:86:70:8b:43:f4:fb:
7e:07:26:58:27:62:d8:92:62:20:d0:e9:30:27:ef:
22:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:00:85:0A:93:EB:8B:17:52:28:96:39:92:1A:A0:BE:35:27:95:64
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/7gCFCpPrixdSKJY5khqgvjUnlWQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.15.200.0/21
Signature Algorithm: sha256WithRSAEncryption
3d:5b:d3:37:ec:0c:e9:7f:88:30:92:c6:54:e4:32:c3:60:ab:
29:64:3b:5d:11:9e:86:27:10:50:51:94:7f:7d:08:8c:aa:56:
c6:41:ef:f2:41:01:f3:4b:1e:75:34:db:8b:62:2d:e4:df:04:
d4:82:df:58:0d:2b:fa:2a:0f:27:f4:01:d0:b6:d0:42:fd:40:
8e:85:5d:ce:e1:0b:07:e8:bb:4b:39:c4:dd:57:d8:82:eb:a9:
76:e6:85:49:cd:69:6c:2c:e9:9c:42:a1:0d:49:89:43:6b:bf:
0c:0a:eb:81:db:2f:d5:26:bc:83:ce:41:d8:64:b9:3c:ee:5d:
0c:01:05:4e:0c:73:f3:b6:78:6b:a5:2c:c5:ef:ad:ab:92:6e:
42:5e:8b:f4:8a:6d:f4:8a:33:b1:0f:50:2d:bd:1a:0f:fc:af:
a4:2f:32:fc:36:59:77:c9:83:e5:86:ef:e5:62:d6:cc:5c:45:
95:92:e3:07:dd:02:3e:20:5d:0c:78:c6:16:d3:e6:81:ac:ed:
aa:e7:09:13:c8:35:52:27:ee:03:74:65:f7:dc:ac:d9:ef:32:
da:e5:49:51:96:0d:71:73:d2:8d:a2:14:f0:87:b6:ca:89:25:
d4:d8:75:4b:0b:81:c4:bd:4c:10:d8:f4:7b:76:41:bf:47:04:
d7:6f:b6:69
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCRgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMDExMjQw
MzI3MzJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEVFMDA4NTBBOTNFQjhC
MTc1MjI4OTYzOTkyMUFBMEJFMzUyNzk1NjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDjb5CuTN7zxlCC9nUTi+pdmPKKbMw+YK/hvHI64a0F8g3vOKBa
VrIn032ykaoxaLQvljycfOondVgnz9St5pKRwrmo5ukYtm/WRrRecmTJjJAXrcwz
0zfQ7bhyP+noJM+2l8GYtULWcT9s7Gle2RUcHZ342WrS+hHdoFUGEKwbKbp5IJ46
RGikUGtaWoU/W20Xrg8qkgVy2c/xuhXn4nKECSRN1Q5PMqSgH9jSV3m31ENqLlPn
jVXHfV9dn0asOHii+fE7rU40tGdmzgt5IB+7PTl9laERuTsj5euIFQW4D4i/aDNk
a/Y5t4Zwi0P0+34HJlgnYtiSYiDQ6TAn7yKZAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU7gCFCpPrixdSKJY5khqgvjUnlWQwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvN2dDRkNwUHJpeGRTS0pZNWtocWd2
alVubFdRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3cPyDAN
BgkqhkiG9w0BAQsFAAOCAQEAPVvTN+wM6X+IMJLGVOQyw2CrKWQ7XRGehicQUFGU
f30IjKpWxkHv8kEB80sedTTbi2It5N8E1ILfWA0r+ioPJ/QB0LbQQv1AjoVdzuEL
B+i7SznE3VfYguupduaFSc1pbCzpnEKhDUmJQ2u/DArrgdsv1Sa8g85B2GS5PO5d
DAEFTgxz87Z4a6Usxe+tq5JuQl6L9Ipt9IozsQ9QLb0aD/yvpC8y/DZZd8mD5Ybv
5WLWzFxFlZLjB90CPiBdDHjGFtPmgaztqucJE8g1UifuA3Rl99ys2e8y2uVJUZYN
cXPSjaIU8Ie2yokl1Nh1SwuBxL1MENj0e3ZBv0cE12+2aQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:52 2023 by rpki-client on console-ams.rpki-client.org