Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/GO2rQPZ4X12LibwG3Q3Uc00jfFw.roa
File: GO2rQPZ4X12LibwG3Q3Uc00jfFw.roa (raw, json)
Hash identifier: XH1UDLRanBUpj9b133HU5TkwHL0+dlaim2KJRqEANeU=
Subject key identifier: 18:ED:AB:40:F6:78:5F:5D:8B:89:BC:06:DD:0D:D4:73:4D:23:7C:5C
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0B1A
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/GO2rQPZ4X12LibwG3Q3Uc00jfFw.roa
Signing time: Thu 16 Dec 2021 06:47:26 +0000
ROA not before: Thu 16 Dec 2021 06:47:26 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17809
IP address blocks: 203.217.112.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2842 (0xb1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Dec 16 06:47:26 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=18EDAB40F6785F5D8B89BC06DD0DD4734D237C5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:25:05:59:32:1b:9c:da:3d:4d:13:b1:32:7c:
87:21:fa:24:b4:c1:93:3c:11:bb:4a:37:03:af:35:
43:80:7a:60:33:48:07:fe:4b:c2:65:f4:06:0c:61:
23:3d:00:a0:89:3e:6c:f8:e1:59:ca:df:6f:20:ee:
2a:1b:11:83:84:f2:76:ba:20:c4:8e:2c:d9:2c:1d:
98:aa:68:f1:f0:b6:e4:73:c8:ef:1b:97:60:69:ff:
fd:94:7d:f5:72:13:dc:e9:7d:22:87:c0:53:28:d1:
23:77:05:7b:95:7f:bd:67:c8:67:24:cd:09:c1:4d:
01:38:f3:bf:dc:b5:da:1e:d7:c6:6f:23:d3:00:00:
b4:1e:f3:c5:39:28:fd:c8:94:4e:dd:e5:56:04:30:
6f:98:7f:32:3f:f9:bc:6f:43:fc:7e:0d:95:c7:78:
0c:65:df:d9:4e:e2:81:f1:55:61:cc:01:08:87:d0:
1c:ec:f4:23:c1:22:b8:09:b4:00:af:b6:24:57:b1:
07:2e:64:97:9c:ee:e4:65:69:06:27:53:48:85:41:
ef:1c:be:f6:54:55:ce:f8:45:5f:39:e2:9e:07:59:
6d:3d:d3:3b:ed:cf:f9:0d:e7:43:27:4e:6b:f9:26:
a3:66:7a:fc:97:e1:c8:03:de:04:62:29:c2:74:61:
cd:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:ED:AB:40:F6:78:5F:5D:8B:89:BC:06:DD:0D:D4:73:4D:23:7C:5C
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/GO2rQPZ4X12LibwG3Q3Uc00jfFw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.217.112.0/21
Signature Algorithm: sha256WithRSAEncryption
7e:c9:7a:d1:62:22:cf:53:8a:7d:26:b2:82:da:a2:03:1f:c3:
f2:96:78:93:6d:19:1b:bf:e9:1a:1a:e3:d1:0f:e4:cd:49:b6:
e8:5d:33:1d:cb:eb:c3:87:8b:5a:0c:a2:49:9d:32:3f:cc:13:
17:a2:e3:46:50:72:31:08:4b:0c:e5:cd:da:9e:59:31:90:ae:
77:be:db:f5:72:31:ec:4d:a1:2b:ad:89:55:0c:fb:6e:70:41:
7a:7f:fd:b5:17:9e:7f:f7:dc:f7:8b:a2:04:10:75:75:a0:aa:
0f:6f:23:9c:40:3e:3a:a6:f5:6c:ab:4c:7f:d2:01:72:49:cf:
99:09:40:d9:aa:a8:6a:9a:29:7c:08:50:13:ab:bd:df:4e:45:
40:03:87:ab:c1:81:4e:33:3e:8d:08:ac:a8:36:a7:88:4d:5a:
ac:b6:fd:5a:4f:1f:29:f0:b5:0f:97:c9:85:20:79:fa:8b:1a:
8c:ed:7d:2f:e5:45:e5:b1:9f:75:45:42:38:f8:a5:94:9e:35:
a3:a5:b1:c0:18:f2:3b:4e:71:0e:db:fc:fa:f4:b0:b7:f2:fa:
0b:15:2d:bd:5c:8f:ba:00:3b:e5:ee:79:29:f0:c5:83:a2:17:
81:b2:d3:96:d3:7d:41:3c:76:c5:6c:e2:45:99:a5:b9:30:cf:
46:72:74:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org