Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/9Otalo5DDpoPkvrRNsXkMYS1zjU.roa
File: 9Otalo5DDpoPkvrRNsXkMYS1zjU.roa (raw, json)
Hash identifier: WBVtADufAOBaCFUxT3RHmyQjGyc1IWjFeTJQUdxmbrY=
Subject key identifier: F4:EB:5A:96:8E:43:0E:9A:0F:92:FA:D1:36:C5:E4:31:84:B5:CE:35
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E65
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/9Otalo5DDpoPkvrRNsXkMYS1zjU.roa
Signing time: Fri 01 Sep 2023 08:49:39 +0000
ROA not before: Fri 01 Sep 2023 08:49:39 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 211.79.112.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3685 (0xe65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:39 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F4EB5A968E430E9A0F92FAD136C5E43184B5CE35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:3d:db:3d:81:92:b1:ee:89:1a:c7:23:39:94:
d1:36:fe:ed:6a:95:51:bd:d4:07:65:d4:36:82:a0:
87:67:a3:a8:7e:34:03:64:3f:cc:43:6f:cb:aa:13:
bf:e4:ac:d0:b0:0e:db:a3:38:a4:4d:b1:69:81:e7:
67:70:ce:7c:d7:d8:80:4c:74:dc:4a:22:64:9c:8f:
7f:45:f1:c5:52:7a:5c:db:41:21:f0:f4:d1:4c:1b:
5f:cb:0e:e9:e0:66:a4:19:81:39:7f:2b:3b:37:75:
51:68:ca:05:24:e9:2b:c4:f3:fe:f0:dd:70:fe:f3:
f5:89:69:69:45:61:40:1c:a1:f0:e1:a0:38:86:b3:
fb:8a:69:32:23:d1:0e:5f:fe:1f:d9:a5:76:06:9f:
95:a8:a4:43:3d:5d:e5:a7:52:b9:83:85:ef:7c:dc:
ca:98:64:c7:b1:56:e5:11:1a:96:f1:11:bd:85:a7:
d8:00:9a:73:4c:fc:0d:81:0d:df:c3:d0:46:2b:81:
87:e8:ee:13:b2:c6:30:7e:a3:63:db:d1:df:89:16:
f0:15:05:ee:d8:7c:c6:93:fc:d3:96:b5:dd:70:36:
51:4f:81:5f:06:d6:45:18:7c:91:96:70:fd:86:e7:
c8:4e:75:9b:e7:a4:68:3d:b0:5c:2e:31:63:f3:b5:
f1:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:EB:5A:96:8E:43:0E:9A:0F:92:FA:D1:36:C5:E4:31:84:B5:CE:35
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/9Otalo5DDpoPkvrRNsXkMYS1zjU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.79.112.0/21
Signature Algorithm: sha256WithRSAEncryption
b3:1e:b8:d6:a8:5e:49:01:60:2b:f5:71:fe:d6:07:ee:8d:d9:
07:74:32:e7:d1:d6:02:26:fe:63:dd:3b:a6:e5:ab:38:af:91:
3d:93:63:59:50:03:04:20:d2:eb:50:72:ab:d0:14:a4:9a:b2:
8f:1b:fe:7b:f7:12:a3:26:60:6e:ea:12:be:6a:a2:55:87:7f:
09:30:ed:af:f0:83:09:ed:42:8d:64:9b:f6:37:3c:f3:98:b2:
9b:b5:ff:92:07:75:44:2a:ec:5e:2d:70:f7:62:3e:8f:d3:70:
a1:a6:51:51:63:3c:2b:ed:11:94:73:28:5b:cf:99:81:60:1d:
10:7b:85:cb:3f:4a:35:b7:c1:47:05:aa:b9:1c:db:ab:d9:d8:
92:d3:e9:e9:1e:65:46:c6:99:d3:b1:51:e9:25:ff:b1:97:c4:
38:ce:0a:d9:9c:86:e4:13:4b:98:ef:ab:05:45:f8:22:bc:a7:
af:d9:e3:b1:f7:29:5a:66:80:91:0a:a9:a9:82:c2:09:3c:cf:
a7:d0:b9:98:60:3e:9f:af:3d:58:95:a5:1f:85:0c:ac:60:ef:
0c:3b:6d:f9:cc:54:ed:ac:da:71:46:f5:c2:b5:76:5d:c0:b2:
95:28:a3:4b:4c:53:8c:61:f3:b3:78:ad:9b:a7:a1:1d:0b:33:
f3:85:57:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:04 2025 by rpki-client