Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/9ftKN2KxPAD0tn3llSZ3iRH3n70.roa
File: 9ftKN2KxPAD0tn3llSZ3iRH3n70.roa (raw, json)
Hash identifier: vv8l3EAdujixDz0YBTuBa8gr4sXdva9yzh00U/CW8ag=
Subject key identifier: F5:FB:4A:37:62:B1:3C:00:F4:B6:7D:E5:95:26:77:89:11:F7:9F:BD
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0B45
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/9ftKN2KxPAD0tn3llSZ3iRH3n70.roa
Signing time: Fri 24 Dec 2021 11:41:50 +0000
ROA not before: Fri 24 Dec 2021 11:41:50 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17809
IP address blocks: 210.209.128.0/17 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2885 (0xb45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Dec 24 11:41:50 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F5FB4A3762B13C00F4B67DE59526778911F79FBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:35:d8:2e:ab:6c:bb:33:fc:ab:55:44:af:c3:
9d:d0:2a:a8:15:78:dc:d2:64:a4:17:b5:1f:8c:99:
62:56:42:d7:c1:56:3f:c4:58:cd:ea:fa:3d:d4:cb:
26:7c:31:33:2b:00:82:03:77:56:3b:6b:32:ff:38:
90:8f:45:51:4b:0d:ea:5e:c9:9a:d7:a5:95:cd:3e:
46:7f:fd:dc:26:6e:c9:b9:46:e4:57:5b:8b:ba:30:
39:39:3a:fa:8d:d4:31:d3:d0:87:ad:85:a9:d9:6a:
d3:d2:0f:f3:64:e0:1c:0f:9f:25:ea:c5:e0:15:6c:
ac:ea:90:35:4b:e6:86:45:c0:b6:87:6e:c6:b6:3b:
2f:7d:14:5c:e7:06:ee:b2:2b:3f:39:ac:02:04:56:
21:40:f9:96:ba:36:7d:01:31:02:08:3a:65:3a:69:
0d:d5:f1:f9:30:14:c8:5a:04:94:bb:d1:94:71:68:
05:d7:b7:81:5b:f8:6e:50:20:4b:d9:4b:61:3d:5b:
2a:ec:8b:36:6c:5f:22:bb:ad:ff:e7:40:4e:0f:d5:
bc:ef:8a:e1:c4:37:51:99:85:82:cd:fa:ad:9b:1c:
42:eb:cf:c8:0a:18:c0:1c:8d:24:4e:5a:65:16:3d:
61:79:4d:bb:44:80:99:16:44:ce:22:bc:17:62:cc:
d0:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:FB:4A:37:62:B1:3C:00:F4:B6:7D:E5:95:26:77:89:11:F7:9F:BD
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/9ftKN2KxPAD0tn3llSZ3iRH3n70.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.209.128.0/17
Signature Algorithm: sha256WithRSAEncryption
5a:20:fc:a1:a8:f3:3f:50:63:73:51:5f:e3:a1:a3:5c:9d:ee:
90:c1:ea:2c:55:7f:96:5e:34:12:e2:ba:63:7d:a4:64:7c:9d:
0f:6d:3f:99:87:21:aa:cd:40:71:cf:50:0e:9a:4f:19:d3:b6:
f0:22:bb:2a:e3:9d:3c:0c:00:90:58:27:b2:07:0d:6d:7c:96:
ef:d3:9e:10:7a:86:a7:d5:38:50:c1:38:df:0f:0e:3d:f0:ee:
fc:ae:b3:26:84:62:21:7b:b8:85:8e:62:fe:9f:fb:0d:8c:09:
29:76:6c:b2:eb:e8:ab:0f:a9:0d:24:02:53:67:37:54:1a:00:
bf:69:83:a5:d5:06:a1:d4:2f:77:e1:42:ff:03:dc:1e:05:a5:
f1:bc:b2:3b:d2:49:e9:53:82:11:10:ec:cb:e5:56:51:cc:1c:
69:20:19:a1:bb:34:e0:ed:58:65:e4:a6:c6:79:b4:8a:bf:71:
7c:84:08:dd:78:f3:d0:1b:33:e1:a0:9d:c4:67:3b:77:ca:4b:
93:d9:31:4b:cb:15:89:a8:89:c8:86:5b:33:c9:da:ff:63:f8:
59:30:7e:e6:e4:ff:34:72:e5:4a:cf:45:b3:8b:44:ad:88:9b:
76:49:0a:18:b7:87:c0:82:08:2c:74:51:07:59:63:23:f0:bd:
eb:2f:fd:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org