Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/8qjSLifTIXbsJz2VFHL7BYEM8Ho.roa
File: 8qjSLifTIXbsJz2VFHL7BYEM8Ho.roa (raw, json)
Hash identifier: 9wRZaXGhHxKKpnZ+3y1XQxPBRw+7jhXiGbLTaGG6hrk=
Subject key identifier: F2:A8:D2:2E:27:D3:21:76:EC:27:3D:95:14:72:FB:05:81:0C:F0:7A
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D05
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/8qjSLifTIXbsJz2VFHL7BYEM8Ho.roa
Signing time: Wed 26 Apr 2023 10:31:27 +0000
ROA not before: Wed 26 Apr 2023 10:31:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 27.96.224.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3333 (0xd05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:27 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F2A8D22E27D32176EC273D951472FB05810CF07A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:67:da:36:ea:78:5c:e4:28:e2:03:64:61:07:
12:df:b2:d1:74:90:61:11:7b:c2:a1:f9:87:cc:d2:
f0:e8:cd:e4:90:ba:c9:a7:37:b7:92:92:7c:ec:dc:
98:7e:31:50:b5:2a:0c:b5:90:d4:52:ab:7d:62:48:
16:7a:ac:e3:8a:ce:7a:da:f7:66:9c:69:d1:06:2b:
4a:e0:ab:8e:06:02:44:bd:0b:10:b4:6a:c8:25:31:
ff:70:2c:97:89:54:89:07:62:bd:80:0d:2d:ee:20:
a3:0a:f0:35:48:65:b6:db:ed:06:30:f6:06:7a:fd:
49:64:e9:25:b7:c7:c6:ea:3a:52:9a:49:cf:e5:35:
53:68:ea:2b:d4:50:59:b4:c7:2b:da:b7:b5:79:aa:
1d:91:8b:f9:68:39:f3:39:e9:d5:a6:0f:0c:47:21:
db:51:2e:04:74:15:ef:df:8f:3b:14:00:98:25:ec:
85:6c:b1:12:0a:3c:82:a5:68:99:19:98:f2:3a:c1:
77:61:fd:db:ee:d0:c9:ff:95:42:d8:53:cd:ba:a0:
39:1d:dc:34:85:7b:84:31:98:41:33:b4:18:e8:00:
b1:4b:4b:71:84:7e:55:1b:ac:28:ff:51:27:52:53:
83:bd:65:71:f5:48:a7:0c:a4:4b:cc:94:cb:7a:ae:
eb:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:A8:D2:2E:27:D3:21:76:EC:27:3D:95:14:72:FB:05:81:0C:F0:7A
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/8qjSLifTIXbsJz2VFHL7BYEM8Ho.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.224.0/20
Signature Algorithm: sha256WithRSAEncryption
40:44:43:56:21:2f:c5:1b:67:49:73:0c:60:37:fc:23:55:1f:
58:5e:f9:3e:bd:a1:a8:d7:7b:74:c3:34:be:24:50:16:ee:0d:
74:88:9a:11:1e:c2:9c:71:39:2a:b5:6d:22:30:ac:c4:7e:0b:
51:11:0a:fd:8f:c9:93:fd:94:4e:aa:b9:7e:fe:54:04:b5:32:
52:fb:74:41:04:f8:a8:bf:9e:66:40:bf:97:04:fd:d3:ec:30:
3a:c7:4e:df:14:c3:74:90:2e:5b:df:c8:7c:1e:6e:75:15:9a:
1f:e2:5f:86:56:64:ba:9b:65:fd:b1:0b:0c:b8:ec:0f:3f:93:
96:f8:7c:c7:0d:76:ef:a5:6e:c0:83:5b:04:7e:7b:72:54:dc:
22:58:14:4d:d5:3e:1c:dc:64:9e:38:b2:b1:68:24:58:3b:41:
9e:66:0a:b1:d9:69:44:54:72:95:41:81:1d:96:14:bd:57:45:
c8:61:ac:a8:13:6b:92:5d:56:34:70:36:ed:60:2d:76:2e:ee:
8f:be:6f:0b:61:05:3c:80:42:e0:16:4f:45:af:1f:7e:0f:93:
f6:68:3b:af:59:23:08:0d:2b:54:2f:49:4f:d8:a5:da:32:17:
7d:e7:7e:a3:8d:80:20:ff:6f:ea:11:ce:df:9e:3d:63:b2:fd:
64:42:b0:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org