Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/Cw_rncMMha99TlWpVYWqDGDs6tU.roa
File: Cw_rncMMha99TlWpVYWqDGDs6tU.roa (raw, json)
Hash identifier: fe/8nwfPGF8D/lW44VFjcldOEUGClBY6Jicdv+OZ+rU=
Subject key identifier: 0B:0F:EB:9D:C3:0C:85:AF:7D:4E:55:A9:55:85:AA:0C:60:EC:EA:D5
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 095E
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Cw_rncMMha99TlWpVYWqDGDs6tU.roa
Signing time: Thu 21 Jan 2021 10:09:13 +0000
ROA not before: Thu 21 Jan 2021 10:09:13 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17809
IP address blocks: 27.96.224.0/19 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2398 (0x95e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Jan 21 10:09:13 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0B0FEB9DC30C85AF7D4E55A95585AA0C60ECEAD5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:8a:9a:e9:31:b8:39:81:66:93:2c:f8:89:88:
e0:43:e3:91:61:1c:17:0e:8c:d6:b8:3e:43:a1:98:
4d:b0:25:84:c6:fe:76:f3:8a:bf:50:be:98:a2:d3:
2a:45:b2:21:56:4a:0f:0b:27:de:bd:3c:00:25:88:
76:76:64:5d:60:a4:46:49:8c:28:b0:02:19:27:dd:
0d:60:91:b2:e7:e6:57:4e:c0:0d:e9:be:05:23:a2:
ba:32:23:ad:8f:7a:e3:d0:54:42:02:06:0f:ed:ab:
d0:b8:48:78:69:b1:89:03:51:aa:75:9c:38:5c:7c:
e7:5c:6e:04:ca:99:77:63:46:6e:83:fb:59:ea:ca:
f8:67:8b:1f:79:bd:12:47:36:16:e4:13:bd:c3:58:
9d:ed:9f:8e:04:93:b9:1e:a1:c0:44:42:97:54:4e:
88:9a:e6:c5:57:85:35:8d:76:36:f8:63:4f:ce:92:
f6:8d:0b:45:29:46:2e:0c:3b:72:96:a3:1c:95:d3:
f9:ea:b5:cb:af:20:f7:9e:be:1a:31:26:0d:88:fc:
25:85:ff:7a:7c:32:c0:46:ab:14:25:b3:0d:be:f4:
2b:3b:3c:a5:cf:ff:4d:dc:85:d8:fa:c0:c5:ae:a0:
44:15:d3:2b:73:7e:27:9e:03:a2:46:f1:e6:db:b0:
ae:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:0F:EB:9D:C3:0C:85:AF:7D:4E:55:A9:55:85:AA:0C:60:EC:EA:D5
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Cw_rncMMha99TlWpVYWqDGDs6tU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.224.0/19
Signature Algorithm: sha256WithRSAEncryption
32:08:eb:f6:6c:5f:77:1c:4d:0e:70:c5:83:82:a5:85:fb:e8:
87:39:fb:1c:f4:d8:a3:58:1c:3b:3a:40:9f:e5:f3:47:4a:69:
d5:6a:47:d7:00:6f:b2:12:64:86:53:9c:6a:4f:58:e1:95:d0:
7b:35:26:c9:de:c5:ad:26:6a:82:69:14:76:7f:85:6a:c5:54:
a5:89:9c:03:60:a5:0c:ee:bc:91:0e:6c:1c:f7:58:dd:55:92:
16:39:32:6b:2d:58:3f:af:93:c9:af:35:81:34:5c:18:82:a7:
a3:d4:69:83:b7:4d:3a:b0:6b:d0:53:01:03:77:ca:fb:94:be:
74:0d:83:a1:99:89:b2:69:26:c9:c4:ed:0b:c2:51:ab:32:68:
bc:98:a3:b4:06:86:50:f5:95:2a:15:8f:a3:f2:22:3e:6f:34:
d8:6f:7f:2c:11:59:40:80:2d:b0:6a:4d:cd:55:ea:c2:cb:55:
5e:91:6e:ce:7c:5f:6a:44:f5:d0:c5:53:62:51:d0:5e:a2:a0:
b8:ff:9b:d4:19:0b:23:8e:9e:d2:fa:dd:e2:b5:16:38:82:6c:
c5:7e:24:32:e2:d4:18:3c:72:5f:15:27:20:5d:b7:29:c5:52:
26:90:7e:f9:43:dd:82:d4:d8:f7:26:31:24:2b:40:ac:c7:ac:
c3:5a:82:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org