Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/E9_xN7GbNX-y5JoFFY1K9U48fOg.roa
File: E9_xN7GbNX-y5JoFFY1K9U48fOg.roa (raw, json)
Hash identifier: KW3H1nLaRPgx23rS5JMTTi4irnhFEU8qFISjWdR7tZU=
Subject key identifier: 13:DF:F1:37:B1:9B:35:7F:B2:E4:9A:05:15:8D:4A:F5:4E:3C:7C:E8
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D26
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/E9_xN7GbNX-y5JoFFY1K9U48fOg.roa
Signing time: Wed 26 Apr 2023 10:31:36 +0000
ROA not before: Wed 26 Apr 2023 10:31:36 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 2401:ab00::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3366 (0xd26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:36 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=13DFF137B19B357FB2E49A05158D4AF54E3C7CE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:81:6a:f4:8c:bf:51:5d:f9:a3:08:f0:a7:24:
59:80:cf:44:4e:9a:12:10:2e:f4:7f:c3:ea:21:1c:
eb:e3:fb:0a:e9:58:14:70:bd:05:05:e7:a4:4f:f1:
ce:a1:86:8f:10:83:45:3b:28:72:94:f4:35:86:73:
00:ed:92:a1:a8:7d:ac:1b:43:21:33:00:43:fb:cc:
da:cb:b5:66:65:1e:d3:b5:02:9c:ea:72:67:b0:37:
10:a3:32:3e:b7:72:85:4f:32:ea:af:ab:dc:5c:5b:
8e:3d:cf:3f:20:5b:86:81:5f:87:88:fb:68:54:fc:
af:65:3e:69:b6:86:aa:48:3b:89:81:4c:a7:97:53:
e0:f1:62:63:53:9a:02:e4:c7:d8:80:2d:e4:0f:df:
82:04:84:fd:28:ae:36:92:a0:e7:3e:e2:09:23:0b:
c2:a5:43:ca:07:f3:94:2c:7a:03:3e:cc:be:64:29:
18:db:7c:2d:de:16:40:65:87:ce:c4:cb:a9:92:1c:
1d:53:76:22:8c:f1:1e:c1:45:ca:cd:e8:0b:e6:3e:
85:03:f7:74:55:d5:e2:f4:c9:94:35:20:ec:ff:2d:
59:71:66:72:37:eb:05:1f:7d:77:78:e3:f2:23:99:
43:22:df:a7:5c:9a:c2:df:e7:ab:5a:d2:d4:01:53:
ad:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:DF:F1:37:B1:9B:35:7F:B2:E4:9A:05:15:8D:4A:F5:4E:3C:7C:E8
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/E9_xN7GbNX-y5JoFFY1K9U48fOg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:ab00::/32
Signature Algorithm: sha256WithRSAEncryption
04:d2:73:51:c6:f2:c6:8f:28:48:fc:78:75:7d:d5:29:b3:3a:
97:a5:3e:95:46:20:12:71:c1:88:b6:ff:1f:ad:cb:b6:f9:f2:
37:02:4b:67:a4:7a:8d:a7:00:11:99:1f:b3:2a:9a:53:90:e2:
3e:8f:98:87:e6:e3:d3:a8:15:76:a2:9a:a4:e5:59:b1:3f:32:
ff:ee:c2:00:5c:95:6c:05:d1:ac:6f:ec:e2:4a:1c:7c:ea:79:
4a:10:41:01:2c:5c:9c:60:2e:63:2a:d4:20:6a:c8:61:42:b6:
f3:08:b7:7c:48:3e:5b:ea:fe:1d:41:48:93:60:93:ef:ff:72:
60:82:db:8c:04:5c:e3:b4:9c:a3:b0:34:5f:6a:dd:d7:96:c1:
36:31:61:a1:1d:0f:66:02:56:80:6b:f4:21:1f:1c:e2:46:ca:
e8:2f:99:3f:0c:34:46:2a:49:a0:97:38:e6:6e:95:b5:9a:7d:
c6:e7:f3:df:b5:e3:8b:ad:b3:5d:19:05:38:e5:ae:2c:c2:22:
03:35:3c:7f:33:e9:9e:24:b7:a4:0b:22:51:12:77:0b:3a:79:
02:9b:e3:2e:f0:50:19:f6:4d:f2:41:f2:8b:70:21:86:fb:e7:
d9:75:9f:d4:9c:fc:7d:23:9c:b9:12:96:e8:15:c1:8c:21:c3:
de:da:f4:c2
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDSYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA0MjYx
MDMxMzZaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDEzREZGMTM3QjE5QjM1
N0ZCMkU0OUEwNTE1OEQ0QUY1NEUzQzdDRTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6gWr0jL9RXfmjCPCnJFmAz0ROmhIQLvR/w+ohHOvj+wrpWBRw
vQUF56RP8c6hho8Qg0U7KHKU9DWGcwDtkqGofawbQyEzAEP7zNrLtWZlHtO1Apzq
cmewNxCjMj63coVPMuqvq9xcW449zz8gW4aBX4eI+2hU/K9lPmm2hqpIO4mBTKeX
U+DxYmNTmgLkx9iALeQP34IEhP0orjaSoOc+4gkjC8KlQ8oH85QsegM+zL5kKRjb
fC3eFkBlh87Ey6mSHB1TdiKM8R7BRcrN6AvmPoUD93RV1eL0yZQ1IOz/LVlxZnI3
6wUffXd44/IjmUMi36dcmsLf56ta0tQBU60DAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUE9/xN7GbNX+y5JoFFY1K9U48fOgwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvRTlfeE43R2JOWC15NUpvRkZZMUs5
VTQ4Zk9nLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBqwAw
DQYJKoZIhvcNAQELBQADggEBAATSc1HG8saPKEj8eHV91SmzOpelPpVGIBJxwYi2
/x+ty7b58jcCS2ekeo2nABGZH7MqmlOQ4j6PmIfm49OoFXaimqTlWbE/Mv/uwgBc
lWwF0axv7OJKHHzqeUoQQQEsXJxgLmMq1CBqyGFCtvMIt3xIPlvq/h1BSJNgk+//
cmCC24wEXOO0nKOwNF9q3deWwTYxYaEdD2YCVoBr9CEfHOJGyugvmT8MNEYqSaCX
OOZulbWafcbn89+144uts10ZBTjlrizCIgM1PH8z6Z4kt6QLIlESdws6eQKb4y7w
UBn2TfJB8otwIYb759l1n9Sc/H0jnLkSlugVwYwhw97a9MI=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:37 2025 by rpki-client