Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/GKGz_uk21TQ2CE3U5cW0T2NaqpE.roa
File: GKGz_uk21TQ2CE3U5cW0T2NaqpE.roa (raw, json)
Hash identifier: chi1QM6Ce7H7wAvowTFaOE038TZRCjHMrsdjWCjbl0k=
Subject key identifier: 18:A1:B3:FE:E9:36:D5:34:36:08:4D:D4:E5:C5:B4:4F:63:5A:AA:91
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0AF6
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/GKGz_uk21TQ2CE3U5cW0T2NaqpE.roa
Signing time: Thu 16 Dec 2021 06:38:16 +0000
ROA not before: Thu 16 Dec 2021 06:38:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17809
IP address blocks: 113.61.240.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2806 (0xaf6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Dec 16 06:38:16 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=18A1B3FEE936D53436084DD4E5C5B44F635AAA91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:7b:7c:d0:f4:ea:fa:9f:73:ad:cc:40:c4:cc:
be:e2:11:38:93:45:15:81:1c:58:63:01:ee:bd:d9:
a1:d7:77:5f:90:b8:1a:0b:2a:f7:d2:44:d1:fb:59:
bd:60:27:44:b5:cc:f9:d8:57:c9:98:40:64:c5:ad:
84:04:35:3f:c6:ef:03:d3:f0:4d:3b:65:26:10:ec:
de:0f:3a:d5:5a:1c:e7:06:42:df:68:ca:2b:a9:a2:
96:ad:cf:3e:16:9e:1b:f8:a0:37:3f:8d:5c:60:29:
5c:3b:c1:9b:11:cd:d2:01:7c:8f:8f:61:07:75:76:
38:d0:a3:2e:86:af:07:51:71:2f:30:da:98:b8:3b:
06:bb:44:3e:42:88:a1:cc:dc:27:18:44:a2:75:c7:
11:df:a9:e6:a4:d0:63:a2:67:e5:1b:ef:48:57:ac:
d0:d8:aa:33:8e:a8:c8:fb:df:d4:93:c7:cd:9a:0a:
6f:32:ca:3a:95:dc:2d:a9:b7:11:01:88:fa:7c:ee:
23:1d:ca:2f:77:f2:90:f4:99:4a:dd:7c:58:ef:5d:
59:dd:b7:20:20:12:6e:58:b5:24:02:2b:03:81:f2:
d7:76:a8:21:55:14:83:9e:07:88:02:b4:1f:9c:5d:
4d:3b:ea:ca:4f:62:0c:d4:4d:92:f1:0c:4b:cc:4f:
40:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:A1:B3:FE:E9:36:D5:34:36:08:4D:D4:E5:C5:B4:4F:63:5A:AA:91
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/GKGz_uk21TQ2CE3U5cW0T2NaqpE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.240.0/20
Signature Algorithm: sha256WithRSAEncryption
b4:10:50:1e:f3:2c:7a:6c:ae:a4:61:aa:61:35:d1:92:b5:50:
a1:d1:9d:30:a4:73:ae:3b:a9:c9:b9:6b:f0:c4:7c:52:25:ca:
6a:33:ba:55:a5:64:0c:56:7d:3a:3a:b0:cb:36:ae:56:8d:84:
f5:a2:3f:d2:38:c1:45:e9:27:2e:fc:87:1b:9c:22:b8:92:27:
16:9e:88:88:6c:a5:ca:a2:99:80:9a:82:4d:79:ec:49:de:32:
06:74:3f:2b:4d:05:63:83:76:01:af:93:52:8a:8e:95:05:3f:
df:f0:23:32:b1:bb:fe:77:30:f5:cd:e5:44:a9:8b:e5:e9:f6:
08:21:99:26:cb:17:60:c1:31:af:57:f5:54:45:5d:1d:64:74:
d8:be:c3:bf:9c:4e:8e:56:0e:d2:d9:a2:8d:92:95:18:4a:a2:
70:b2:ae:10:a7:1e:69:95:e3:98:5d:94:e4:d1:84:f3:c2:43:
37:56:10:64:e9:3c:ba:2a:26:7e:cf:57:11:6f:55:05:4b:d9:
8e:c2:69:b3:36:c8:5e:fc:21:f6:f4:7e:f6:41:73:23:28:0a:
f0:3f:81:d2:8d:8d:2d:61:3f:fa:e2:ea:91:dc:ed:df:81:26:
97:4f:c3:ff:1c:85:90:c9:95:12:00:23:69:04:d4:9b:10:8d:
a4:a3:73:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org