Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/HeuEzMx5Tz18Al51J7AfSpXhrvA.roa
File: HeuEzMx5Tz18Al51J7AfSpXhrvA.roa (raw, json)
Hash identifier: oeikzkjSpad/QAotvhcjHEbWBVH2Cjrj1w+8y/sK19U=
Subject key identifier: 1D:EB:84:CC:CC:79:4F:3D:7C:02:5E:75:27:B0:1F:4A:95:E1:AE:F0
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 08CA
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/HeuEzMx5Tz18Al51J7AfSpXhrvA.roa
Signing time: Wed 18 Nov 2020 07:49:10 +0000
ROA not before: Wed 18 Nov 2020 07:49:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17809
IP address blocks: 203.222.0.0/19 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2250 (0x8ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Nov 18 07:49:10 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1DEB84CCCC794F3D7C025E7527B01F4A95E1AEF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:40:ae:b9:ab:18:ce:2d:8f:3a:b5:2a:0f:8f:
c6:e7:bb:79:99:ac:6f:e8:61:02:e8:95:7d:41:be:
ad:65:73:80:b6:3d:23:96:a4:a1:80:b2:7d:d5:71:
f0:6f:0e:84:57:58:19:d6:12:75:aa:06:75:26:60:
f6:f9:03:9e:a9:69:91:ca:72:a6:e2:bc:40:0b:21:
48:6e:90:49:09:3e:a1:05:70:0f:7e:93:14:4f:fc:
5e:ea:9a:31:a5:56:4f:47:e4:45:26:e3:3e:db:42:
19:f6:63:33:c7:5b:44:3d:53:33:29:98:fe:b0:02:
d6:44:05:3d:d7:6c:a7:a4:27:bd:d5:ba:97:fe:f5:
9a:47:73:a1:89:81:e2:b7:28:5c:1a:08:45:71:57:
6b:3e:65:0d:ca:5f:ba:4b:a0:e5:03:67:de:e2:a2:
5e:54:94:a6:87:bb:fb:5b:8e:eb:19:03:de:1d:3b:
c2:71:96:02:a7:9f:16:d1:c7:33:eb:a9:70:09:1b:
ed:a0:e3:f5:18:f1:1e:3a:7e:9b:95:a3:ac:66:90:
7a:3a:d0:ed:b1:23:be:3c:2b:bc:8a:c5:a7:65:cf:
42:37:f7:7b:e4:5c:f8:87:d7:18:8d:16:b2:7d:21:
53:c9:d1:6b:83:2e:aa:12:9a:fb:12:b6:78:f8:2e:
12:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:EB:84:CC:CC:79:4F:3D:7C:02:5E:75:27:B0:1F:4A:95:E1:AE:F0
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/HeuEzMx5Tz18Al51J7AfSpXhrvA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.222.0.0/19
Signature Algorithm: sha256WithRSAEncryption
b3:d1:40:1c:d4:d8:80:99:a3:e7:fa:0b:8c:d1:e0:fd:ab:4b:
46:2b:c5:61:e0:fe:1c:87:c5:14:09:28:19:ac:08:74:3d:5e:
5d:5a:d3:47:36:4a:52:bf:96:1f:f5:07:7e:5c:ba:51:40:a0:
61:75:67:fe:a5:3b:8c:9a:5c:d8:eb:b4:2b:57:eb:7d:31:59:
f9:64:f0:05:f9:2b:90:bb:85:1f:8d:40:ed:df:ee:ee:17:37:
82:7b:f5:77:3b:14:9c:7f:ca:c3:77:e3:83:52:40:d0:c6:9f:
35:81:3a:93:e0:7b:db:97:84:2e:65:7a:ef:7f:b1:bd:4b:8f:
a7:a9:7e:01:4a:75:c9:01:a0:36:0f:a7:20:5e:07:ed:5f:a1:
04:ac:cb:40:32:4b:37:14:07:eb:76:9b:9d:de:06:77:72:18:
f8:15:59:8a:0a:b6:7b:89:fa:74:08:1e:e5:7e:81:78:2c:c3:
e3:a8:b7:05:5f:2e:fe:6c:28:22:08:1e:f4:24:cb:ad:6d:6b:
fd:14:ce:20:7a:cd:17:1d:94:ed:93:1b:13:aa:8e:92:22:99:
5f:87:f8:10:2c:66:9c:91:0c:ff:d3:3b:8a:6b:1c:b7:ae:2e:
ba:58:f0:84:f0:75:bf:76:c7:a0:88:83:38:9e:d1:d3:df:67:
45:7b:84:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:53 2023 by rpki-client on console-ams.rpki-client.org