Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/95AoP8eZnibiMYy8k8FvA7D39ms.roa
File: 95AoP8eZnibiMYy8k8FvA7D39ms.roa (raw, json)
Hash identifier: jZiPjyQ9I2FGpCa8gpG4fLbMgkYOg2dUbJD8zQlLHsc=
Subject key identifier: F7:90:28:3F:C7:99:9E:26:E2:31:8C:BC:93:C1:6F:03:B0:F7:F6:6B
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0BFC
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/95AoP8eZnibiMYy8k8FvA7D39ms.roa
Signing time: Thu 15 Sep 2022 02:37:21 +0000
ROA not before: Thu 15 Sep 2022 02:37:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 203.217.104.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3068 (0xbfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 15 02:37:21 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F790283FC7999E26E2318CBC93C16F03B0F7F66B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a4:86:9a:f5:5d:e2:94:20:45:d1:01:6c:b3:
66:a2:65:15:6a:8c:fb:5b:72:69:7d:ad:47:e4:09:
c5:19:02:c0:60:6e:8a:50:12:5b:e5:ed:15:51:05:
82:34:db:64:27:41:6e:a8:e3:ca:44:e7:b0:10:64:
4a:57:e9:bb:cc:dc:8c:91:a9:30:15:22:78:a4:3c:
d5:5f:1e:0f:b6:3d:6c:1b:dc:b5:a3:01:be:eb:65:
69:8d:75:fe:23:5c:fa:56:b7:e8:4b:b5:80:ac:57:
21:d6:7e:66:23:f2:16:af:f2:1e:65:15:c9:43:0f:
fc:3c:a1:e2:e7:70:2c:15:bd:b4:d8:58:e3:1c:97:
b0:c1:ac:c8:6e:77:18:79:93:08:b1:e0:47:fb:af:
01:ce:52:83:e2:82:7d:0b:99:16:25:23:83:8b:02:
2c:76:25:1e:a7:02:06:b2:89:2d:64:b1:3c:47:42:
ec:83:2c:29:9e:99:0e:d1:ff:a5:a3:bd:2a:0b:e5:
13:b7:d4:54:11:5b:3c:12:9a:66:c9:b7:8e:54:1f:
57:02:29:6a:95:f0:93:1d:be:b5:7e:f5:3b:50:94:
ec:98:ee:be:6b:a0:b0:6d:68:69:26:2f:6d:1f:a5:
70:cf:4e:8b:eb:ab:fb:87:95:33:ab:26:c8:05:b8:
61:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:90:28:3F:C7:99:9E:26:E2:31:8C:BC:93:C1:6F:03:B0:F7:F6:6B
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/95AoP8eZnibiMYy8k8FvA7D39ms.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.217.104.0/21
Signature Algorithm: sha256WithRSAEncryption
38:ac:45:a4:80:d7:72:0d:e7:8f:fa:ed:79:c4:e7:70:a5:2a:
cc:d3:d9:97:5f:a4:b0:bd:66:a1:d8:55:59:b3:20:33:8c:f9:
59:dd:09:d5:06:0c:36:a4:28:e8:b3:f4:78:1b:16:c0:2e:07:
82:d8:63:53:d7:4d:58:b5:aa:5a:21:40:e9:26:1b:fd:3b:8f:
13:57:99:de:57:f6:4a:95:a3:45:da:fb:60:44:bd:cf:48:76:
2c:1b:45:2e:fc:d3:6d:3f:f2:2c:a6:ae:29:91:68:80:70:27:
1b:9e:49:79:44:2b:2b:19:44:0d:3c:14:60:93:bb:a0:f0:c7:
9a:87:25:2a:88:fc:c5:2d:dd:da:ad:81:e6:2b:f6:c5:aa:c6:
35:f1:a6:d1:95:a9:2b:7d:ae:85:ab:c9:f3:dd:2c:38:71:21:
18:f2:8f:17:d6:1b:fa:7b:28:09:80:20:48:cd:25:3c:1c:fe:
bd:7f:c1:73:b0:4c:12:28:3d:93:2e:97:de:5b:9e:f0:e3:48:
98:bc:af:64:02:6f:f2:0b:ea:35:18:f2:e9:2c:65:43:7c:c5:
2e:e1:3c:33:1b:4d:d5:97:9d:a0:c6:44:70:1e:8b:73:df:38:
ba:62:30:19:ca:0b:d4:d0:5a:ec:61:0c:67:03:b8:a5:41:b4:
b6:12:de:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org