Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/9flhiThzDPuTiLUFaGBPIL83l5s.roa
File: 9flhiThzDPuTiLUFaGBPIL83l5s.roa (raw, json)
Hash identifier: vuIml6Hu4gKcQLmo+V8L+UvNNBYr9hzadMgg1E8ZGQ0=
Subject key identifier: F5:F9:61:89:38:73:0C:FB:93:88:B5:05:68:60:4F:20:BF:37:97:9B
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0CFD
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/9flhiThzDPuTiLUFaGBPIL83l5s.roa
Signing time: Wed 26 Apr 2023 10:31:25 +0000
ROA not before: Wed 26 Apr 2023 10:31:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 113.61.160.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3325 (0xcfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:25 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F5F9618938730CFB9388B50568604F20BF37979B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:bf:aa:be:e1:d4:d2:56:96:e0:7b:66:ce:b2:
ce:7a:37:aa:44:25:00:16:93:8b:73:f7:bd:6e:12:
67:65:93:14:10:c7:c8:e6:a7:67:fe:a5:6c:b5:81:
f6:90:c0:cc:95:33:03:9f:1d:18:e6:2e:32:a9:9a:
db:92:02:97:f1:c3:db:81:ce:c8:97:9b:c1:84:66:
35:27:ba:f6:f1:f5:d9:98:8d:ed:9b:a0:d1:4c:b4:
3c:ae:5f:31:d9:c5:1b:cb:21:82:f2:11:8b:82:e4:
35:05:36:cf:ae:f5:5c:56:92:4c:b2:7a:bf:93:db:
9a:2d:b5:29:00:a6:b7:3e:fa:ff:f1:76:f6:28:58:
27:20:55:35:19:f1:31:dd:01:17:ce:09:dd:26:62:
05:4e:9a:68:97:2f:e0:89:d8:20:97:6b:b8:39:ba:
c4:6b:87:9e:5c:3d:2c:7e:55:ff:0c:21:27:5f:cf:
2c:9d:4b:a7:94:b5:0d:47:9d:f8:03:89:c8:39:fd:
47:da:c9:84:28:df:35:bd:a1:6c:d0:eb:ac:1e:31:
7b:ec:f4:ba:36:3e:2f:80:68:cf:2d:6f:0d:a5:63:
cb:50:5d:6e:28:a0:56:45:f5:d8:70:61:94:77:88:
e5:cd:2e:53:ef:1a:05:47:ce:6b:5c:6e:f1:a0:77:
8f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:F9:61:89:38:73:0C:FB:93:88:B5:05:68:60:4F:20:BF:37:97:9B
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/9flhiThzDPuTiLUFaGBPIL83l5s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.160.0/19
Signature Algorithm: sha256WithRSAEncryption
5a:9f:07:69:78:02:24:87:de:0f:10:7a:a2:15:98:b7:66:2c:
85:b6:0c:1b:16:f6:72:23:e2:41:14:10:c3:5e:f4:ee:34:2f:
0f:cf:9d:ae:2c:3c:0f:a9:f0:12:25:24:9e:67:ce:7d:6c:8e:
36:43:fb:2d:65:2d:08:49:08:7b:4e:3a:cf:14:06:bf:00:46:
02:95:da:9d:9d:51:e7:7c:68:3d:73:25:b7:b4:4e:ff:ab:9f:
5a:35:62:a4:5e:0c:3f:b6:fb:12:7e:27:7b:ed:20:24:d8:04:
43:8e:72:60:b1:5a:85:05:2e:d0:3a:5b:f2:55:f0:9e:41:7e:
95:1c:41:63:a1:b1:73:27:96:20:0d:45:c5:08:35:53:52:01:
fb:9b:3d:8c:d0:80:5b:92:0b:51:68:ff:86:06:c1:7e:51:03:
e4:7a:47:15:da:ec:b6:a7:b5:25:fc:3a:e1:68:8c:fc:61:2c:
87:22:1d:c6:e5:85:72:96:bc:61:b9:dd:a6:4f:bb:f4:c3:ea:
f9:ce:0b:0d:21:e8:31:f1:d2:74:83:ce:54:49:ce:ef:0b:50:
c9:31:27:e2:75:db:90:16:1b:d9:65:0a:0f:b4:0e:31:f8:53:
b1:7e:9b:69:ac:3d:dd:07:c7:3a:c0:bd:f3:0c:86:48:eb:53:
07:be:ad:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org