Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/EAEihsCmtheTCFxc-ooCJvTGtwA.roa
File: EAEihsCmtheTCFxc-ooCJvTGtwA.roa (raw, json)
Hash identifier: H9v42i+y0+V4hpnCPe0qkrMWPwqZnDuHI/hTEKYym5w=
Subject key identifier: 10:01:22:86:C0:A6:B6:17:93:08:5C:5C:FA:8A:02:26:F4:C6:B7:00
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D35
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/EAEihsCmtheTCFxc-ooCJvTGtwA.roa
Signing time: Wed 26 Apr 2023 10:31:40 +0000
ROA not before: Wed 26 Apr 2023 10:31:40 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 121.254.72.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3381 (0xd35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:40 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=10012286C0A6B61793085C5CFA8A0226F4C6B700
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:5b:f9:9c:9f:02:6c:ec:22:4a:9b:2e:99:93:
99:ce:fc:86:3c:5e:80:33:9c:a8:92:05:5d:49:18:
9e:ca:72:27:f8:b6:20:6e:9a:10:f7:f4:4c:e5:29:
92:a7:3f:0d:6f:d7:c9:79:e5:b3:34:08:99:c4:d7:
45:40:3c:1c:fe:b5:33:27:47:33:a5:79:94:a9:f7:
73:40:2e:ed:6e:fb:99:32:c4:df:69:9e:d7:fb:04:
fd:fe:c1:2b:11:1c:a6:3c:40:b9:63:45:84:4e:9f:
05:49:c0:f5:b5:c3:b4:32:a8:4e:79:e2:40:fc:65:
ef:bc:40:54:5f:d5:76:4e:c1:fe:2d:7a:80:fb:23:
31:9f:37:83:a1:0a:68:c8:06:2f:a2:7e:af:f5:36:
e8:64:56:5c:88:a3:2f:86:23:f5:0d:b6:bc:a2:bd:
1a:b3:55:3b:f9:3f:55:00:99:c8:dd:44:59:6b:c3:
c4:85:27:79:8a:f6:92:86:84:f2:fb:05:d4:31:68:
ea:57:d1:c2:f6:fb:98:5f:0c:9f:55:f7:52:c3:59:
d6:7e:1c:ae:1a:ce:e4:bf:c6:af:e5:8b:2f:27:86:
2b:ba:d7:cc:eb:5a:20:a1:5b:17:85:2c:41:29:33:
d0:7f:d6:91:f8:29:b9:b5:10:8d:d4:30:5c:be:c3:
90:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:01:22:86:C0:A6:B6:17:93:08:5C:5C:FA:8A:02:26:F4:C6:B7:00
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/EAEihsCmtheTCFxc-ooCJvTGtwA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.254.72.0/21
Signature Algorithm: sha256WithRSAEncryption
44:54:7e:7a:d5:5f:52:4b:f3:f6:06:19:76:cb:df:82:62:33:
02:db:8f:8e:a0:92:8b:38:82:ef:28:20:17:a7:b0:01:5a:a4:
cb:ae:c4:9a:4b:e2:f3:b6:db:b3:d7:88:cf:46:c3:43:26:2d:
31:f6:5f:c1:46:25:ca:24:37:1e:0b:98:9b:57:13:0b:00:90:
92:a4:bf:a7:de:2e:20:f0:5c:15:05:da:35:f6:93:25:87:ff:
05:53:40:2b:de:08:36:ad:d4:08:a3:6a:20:44:81:20:da:f5:
30:5a:32:87:fa:bc:99:7e:22:d8:32:2c:d4:5c:30:cd:ca:89:
95:18:6a:d7:97:5a:2a:a6:b7:b2:92:44:29:43:87:30:6c:48:
d4:fe:c5:52:fd:20:ed:bd:6f:5b:71:fb:68:85:d9:61:9c:31:
93:46:8a:24:ae:ab:97:b9:7c:bc:85:3e:79:23:fc:2a:db:97:
16:e8:04:1d:a3:fa:07:8f:62:44:7c:18:ae:ce:79:8c:20:3e:
a8:3a:2f:01:9e:53:ed:f6:aa:a5:61:04:6e:21:c8:84:24:e0:
d7:77:2f:71:fc:9a:4b:90:ee:a0:63:af:b6:c4:31:45:4c:ed:
2e:a9:7e:47:6b:c1:ee:3b:3c:ff:10:c4:90:f7:0f:f2:8f:69:
a7:84:3f:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org