Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/Eg72OBOdoFORc4VLllZNqbhGW2U.roa
File: Eg72OBOdoFORc4VLllZNqbhGW2U.roa (raw, json)
Hash identifier: C3SxpQVuamJv8LvyTr7AbXWww8RzRj49emN5daKnSZk=
Subject key identifier: 12:0E:F6:38:13:9D:A0:53:91:73:85:4B:96:56:4D:A9:B8:46:5B:65
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0CB7
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Eg72OBOdoFORc4VLllZNqbhGW2U.roa
Signing time: Wed 26 Apr 2023 06:09:54 +0000
ROA not before: Wed 26 Apr 2023 06:09:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 121.254.96.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3255 (0xcb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 06:09:54 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=120EF638139DA0539173854B96564DA9B8465B65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:8a:39:63:bd:c9:f9:f3:1e:c8:2a:c1:f1:98:
ad:60:f4:35:08:62:ef:81:e9:28:b9:0d:85:a2:b6:
c7:54:7d:c0:6c:26:fe:79:c9:7b:27:72:b7:1c:97:
4c:d7:d0:9c:ad:4e:39:17:46:24:8b:7c:96:5b:2b:
72:fb:22:d0:40:e8:aa:ed:f8:e9:a0:5c:8a:e6:73:
06:00:e0:ea:48:a3:9f:f0:72:ff:2d:6d:fc:01:5c:
9e:5d:ff:26:ad:4b:ce:24:ad:ed:92:69:01:b9:4d:
e0:7b:3a:c6:f8:c0:d2:91:a0:70:c9:eb:d7:7e:63:
f0:ff:bb:35:02:42:a9:35:d4:dc:1b:a5:a6:ec:ca:
15:9c:0f:c0:96:b5:f0:65:72:d3:54:71:d6:cd:1a:
41:38:28:3c:8c:f4:3e:47:c6:8d:93:09:07:23:36:
7c:ce:9f:20:22:a4:19:5e:e5:00:60:36:9e:1d:fd:
e8:7a:35:e7:59:48:09:9d:90:8c:96:7c:07:2f:13:
09:a9:4c:6e:a0:51:1d:ee:3c:fb:e1:d4:ea:a1:82:
62:a6:ba:04:c4:98:73:78:15:3b:f1:32:eb:03:cd:
c7:53:94:1f:51:1c:bf:5e:a8:29:d8:b2:58:03:03:
1d:27:6c:fb:35:53:03:03:0b:4e:90:13:02:35:83:
34:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:0E:F6:38:13:9D:A0:53:91:73:85:4B:96:56:4D:A9:B8:46:5B:65
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Eg72OBOdoFORc4VLllZNqbhGW2U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.254.96.0/20
Signature Algorithm: sha256WithRSAEncryption
68:a2:66:6c:07:84:55:7b:51:7f:89:ba:41:ff:a3:ab:b6:4b:
1d:28:61:75:8f:a1:65:f9:26:7d:6d:ed:4c:c3:9c:b6:cc:11:
42:ca:94:e7:73:ee:11:0b:af:94:62:0b:76:f6:39:6a:e9:15:
bf:35:36:d9:fc:e9:a9:2d:98:31:8b:0f:cc:d0:18:69:ce:bc:
b8:0d:13:cc:00:a5:d7:46:79:a4:76:ca:1e:2d:d7:b9:69:99:
24:f0:5c:c7:b4:0c:1e:39:16:27:ef:65:a0:e7:1b:24:02:47:
1e:9b:74:b4:b6:66:6d:b9:09:a6:ae:1e:5e:6b:30:62:e9:fc:
68:69:45:45:97:45:24:63:e4:99:54:c8:33:cd:fb:13:35:be:
ed:03:43:17:1d:e1:bd:e9:07:71:39:89:0e:4b:38:30:0b:c7:
03:aa:87:23:8e:27:cd:3c:4e:eb:f8:b1:85:0f:87:99:b5:fe:
da:3f:cd:73:f8:bc:30:0c:99:6b:62:23:09:c9:af:9e:f3:38:
15:31:6e:80:52:cb:1a:a6:a6:b2:47:9b:f1:ed:93:2e:8d:21:
ad:ef:79:dc:da:60:fb:1e:c1:84:7f:12:8f:d4:73:49:35:a1:
5f:9c:5f:0b:91:39:80:7a:d6:68:a9:e9:2f:85:6a:93:3f:e8:
14:29:ae:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org