Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/FYlQVGzhjm8_ul4vX5gBhwu9jXk.roa
File: FYlQVGzhjm8_ul4vX5gBhwu9jXk.roa (raw, json)
Hash identifier: 5NlcNt6PeTjlbtmm5Seh4cQUFfVHa+5RaEuoHv1rM2g=
Subject key identifier: 15:89:50:54:6C:E1:8E:6F:3F:BA:5E:2F:5F:98:01:87:0B:BD:8D:79
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E34
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/FYlQVGzhjm8_ul4vX5gBhwu9jXk.roa
Signing time: Fri 01 Sep 2023 08:49:24 +0000
ROA not before: Fri 01 Sep 2023 08:49:24 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 210.209.128.0/17 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3636 (0xe34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:24 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=158950546CE18E6F3FBA5E2F5F9801870BBD8D79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1d:37:ff:59:6b:27:42:af:9a:db:2d:02:74:
02:6f:b3:93:37:dd:ca:1d:86:d5:24:a7:99:fc:62:
a7:42:7e:1a:ac:d6:76:a4:72:e2:56:16:f7:4b:38:
2f:3c:be:e1:1f:df:e5:99:63:e9:cc:0b:30:6b:a5:
59:ed:30:6c:19:d9:8d:23:10:a0:eb:71:ae:dd:d6:
d2:ed:dd:f8:a8:03:af:03:8a:2c:7d:90:8f:14:7a:
43:24:19:b8:51:5d:d6:16:da:57:d2:a8:64:04:2e:
fa:ef:d3:56:4b:8b:5c:9a:1a:f7:75:85:90:4b:77:
59:96:6f:c4:3f:da:ed:09:9c:3e:b6:b9:13:e5:a3:
16:98:76:07:27:7f:43:c6:30:38:08:cc:c8:2a:96:
1c:ee:9a:01:60:2d:d7:84:a6:21:aa:d7:39:96:6f:
4b:6b:bf:03:f8:36:d2:8b:10:2d:ce:ca:51:88:ef:
7e:e5:d4:3c:34:b2:bc:d8:06:bd:9a:f4:57:23:9e:
35:b1:6e:04:ae:e1:84:37:bf:02:1d:20:0e:35:67:
8c:b9:c8:25:59:11:44:68:d6:3a:61:4b:33:96:5d:
16:2c:89:f9:3b:d2:21:a6:51:85:4c:9d:04:a9:64:
81:5d:ed:b1:b6:a7:57:c7:15:86:7e:89:57:da:a4:
82:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:89:50:54:6C:E1:8E:6F:3F:BA:5E:2F:5F:98:01:87:0B:BD:8D:79
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/FYlQVGzhjm8_ul4vX5gBhwu9jXk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.209.128.0/17
Signature Algorithm: sha256WithRSAEncryption
24:db:db:16:69:7b:ec:e0:dd:6b:f4:08:19:5c:ab:bb:7c:b9:
f3:6e:ac:0b:2d:53:df:58:a2:5b:84:86:65:2f:3f:57:5c:03:
13:35:ba:f6:52:a0:6f:87:67:c6:10:9f:6d:d2:5e:d8:0b:f8:
22:e0:ce:c2:4d:f5:db:fd:d3:d1:87:d5:a4:96:f7:aa:59:e6:
93:d9:b3:83:71:2c:02:2c:7e:a7:31:16:33:b7:27:64:c1:e6:
c6:27:20:76:ad:aa:72:2c:e8:b8:af:72:fc:78:1b:05:73:f9:
ee:92:17:ef:2f:6d:30:21:ad:c7:2a:03:43:40:d0:ce:b2:66:
09:88:ac:27:f2:0b:c3:63:c9:7f:30:0d:48:92:3b:e6:6a:95:
f4:8c:ae:74:ce:fe:5f:0a:f4:d4:f4:9e:11:be:90:da:be:fe:
55:03:8b:8e:81:23:9a:77:96:80:2e:a4:ae:f8:13:33:e1:33:
08:81:57:28:e2:aa:1c:08:da:7a:a9:50:18:f3:b4:84:a9:5a:
53:69:30:ae:45:b9:1d:e7:5b:86:ec:1f:8d:bb:68:6d:34:64:
af:31:c8:1e:8b:80:8b:50:fd:a5:0f:14:7c:db:e4:eb:79:72:
fb:08:83:37:8c:e2:9f:f2:cf:57:d2:ae:86:65:a0:28:55:b5:
4b:c1:4b:62
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDjQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA5MDEw
ODQ5MjRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDE1ODk1MDU0NkNFMThF
NkYzRkJBNUUyRjVGOTgwMTg3MEJCRDhENzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7HTf/WWsnQq+a2y0CdAJvs5M33codhtUkp5n8YqdCfhqs1nak
cuJWFvdLOC88vuEf3+WZY+nMCzBrpVntMGwZ2Y0jEKDrca7d1tLt3fioA68Diix9
kI8UekMkGbhRXdYW2lfSqGQELvrv01ZLi1yaGvd1hZBLd1mWb8Q/2u0JnD62uRPl
oxaYdgcnf0PGMDgIzMgqlhzumgFgLdeEpiGq1zmWb0trvwP4NtKLEC3OylGI737l
1Dw0srzYBr2a9FcjnjWxbgSu4YQ3vwIdIA41Z4y5yCVZEURo1jphSzOWXRYsifk7
0iGmUYVMnQSpZIFd7bG2p1fHFYZ+iVfapIJVAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUFYlQVGzhjm8/ul4vX5gBhwu9jXkwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvRllsUVZHemhqbThfdWw0dlg1Z0Jo
d3U5alhrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB9LRgDAN
BgkqhkiG9w0BAQsFAAOCAQEAJNvbFml77ODda/QIGVyru3y5826sCy1T31iiW4SG
ZS8/V1wDEzW69lKgb4dnxhCfbdJe2Av4IuDOwk312/3T0YfVpJb3qlnmk9mzg3Es
Aix+pzEWM7cnZMHmxicgdq2qcizouK9y/HgbBXP57pIX7y9tMCGtxyoDQ0DQzrJm
CYisJ/ILw2PJfzANSJI75mqV9IyudM7+Xwr01PSeEb6Q2r7+VQOLjoEjmneWgC6k
rvgTM+EzCIFXKOKqHAjaeqlQGPO0hKlaU2kwrkW5HedbhuwfjbtobTRkrzHIHouA
i1D9pQ8UfNvk63ly+wiDN4zin/LPV9KuhmWgKFW1S8FLYg==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:29 2025 by rpki-client