Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/HPNwMuI8es-wvdrg32eXa-i0bZE.roa
File: HPNwMuI8es-wvdrg32eXa-i0bZE.roa (raw, json)
Hash identifier: Uj+5UE13dd0pKaDHWCzQcpbc0kTgr5uLC8FbThrzPZU=
Subject key identifier: 1C:F3:70:32:E2:3C:7A:CF:B0:BD:DA:E0:DF:67:97:6B:E8:B4:6D:91
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D1D
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/HPNwMuI8es-wvdrg32eXa-i0bZE.roa
Signing time: Wed 26 Apr 2023 10:31:33 +0000
ROA not before: Wed 26 Apr 2023 10:31:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 210.209.128.0/17 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3357 (0xd1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:33 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1CF37032E23C7ACFB0BDDAE0DF67976BE8B46D91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:23:52:0f:f7:eb:5f:4c:b3:4a:7e:61:96:86:
ac:21:af:7f:42:cf:62:84:87:9a:fa:91:ed:ef:4e:
b5:3a:ff:34:04:3b:a4:b4:4d:4e:cf:79:7b:05:ab:
f7:75:d0:9f:3b:00:60:6f:74:06:41:65:80:9f:ba:
0a:85:b6:b9:fa:a7:54:74:7c:b1:ab:ec:47:53:bb:
f7:be:8f:70:1c:e7:73:d3:08:29:2b:e7:bb:88:e9:
b3:29:43:69:7f:fc:32:fd:7e:7d:83:47:86:8b:0a:
04:00:a4:15:e3:fd:37:22:de:b1:d8:e5:f1:99:80:
b8:c9:85:53:35:3b:55:ed:9c:a6:90:79:2b:27:0c:
01:cf:2d:d7:ba:13:9c:c1:0a:5e:58:d9:75:89:b8:
7d:d9:4f:b9:4d:fb:75:5a:67:97:7c:f8:37:20:06:
76:2b:47:a1:57:63:57:91:cd:03:3d:db:11:88:1f:
db:86:cb:8b:14:62:64:4f:22:b9:b5:ef:2d:d4:cc:
8b:48:c1:ec:cd:fa:13:a7:0a:14:4c:d6:f0:f3:cb:
d7:c0:bf:10:96:e6:36:5a:80:59:ec:82:74:2e:28:
97:b1:0b:47:d2:fc:a7:d2:23:80:5f:07:56:2c:ca:
4a:f3:d3:4d:59:7a:bf:2d:09:a7:2b:2c:cd:e4:d2:
98:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:F3:70:32:E2:3C:7A:CF:B0:BD:DA:E0:DF:67:97:6B:E8:B4:6D:91
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/HPNwMuI8es-wvdrg32eXa-i0bZE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.209.128.0/17
Signature Algorithm: sha256WithRSAEncryption
af:3d:de:c3:15:1e:aa:f0:bc:a3:59:48:8e:cf:b7:ff:ce:dd:
c7:f3:31:b4:9c:b2:20:f3:a3:53:d6:52:85:1d:a1:cd:f6:d1:
55:df:70:55:9a:49:c9:02:4a:0e:42:0a:f2:ef:72:7c:f2:f6:
45:c2:c5:eb:18:ea:8e:03:32:23:61:3f:7e:32:43:8c:28:fb:
56:6c:cb:90:53:c0:10:ee:58:a0:f5:b6:7e:e5:97:3f:76:11:
40:8b:bc:e6:02:58:c6:06:c6:aa:0c:9f:9f:3f:c9:b0:bc:bc:
fd:4a:15:43:c8:ba:e6:64:86:38:13:aa:0c:1e:f2:55:91:50:
8c:c9:df:eb:6b:e2:b2:88:b4:54:46:ee:53:4d:c0:e0:9f:51:
7f:14:9d:5a:5e:27:58:2c:ba:fd:dc:17:b3:d1:86:97:fe:7d:
3b:cb:03:d8:5a:e2:c3:d3:9a:2d:84:52:d4:fa:e5:1d:d2:4c:
72:87:7a:dd:91:11:84:a1:23:05:3a:4f:02:d8:54:06:dd:c8:
94:60:29:a8:bb:6a:0e:9f:47:e4:f3:77:a7:72:e2:88:49:21:
7f:0f:28:cc:e3:29:b6:be:c7:a0:50:0f:31:93:27:a0:a3:31:
5c:db:c5:9f:d7:e4:55:72:72:21:79:44:b7:ac:c6:66:f7:ce:
6d:7c:6a:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org