Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/IRdb7FhIOCeSO5PmFqTKfvg39-s.roa
File: IRdb7FhIOCeSO5PmFqTKfvg39-s.roa (raw, json)
Hash identifier: ZAp9IP/MkV/TP1jOgF8YyPlZmPy2+K3OGHtWX+CGw0g=
Subject key identifier: 21:17:5B:EC:58:48:38:27:92:3B:93:E6:16:A4:CA:7E:F8:37:F7:EB
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D03
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/IRdb7FhIOCeSO5PmFqTKfvg39-s.roa
Signing time: Wed 26 Apr 2023 10:31:27 +0000
ROA not before: Wed 26 Apr 2023 10:31:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 27.96.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3331 (0xd03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:27 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=21175BEC58483827923B93E616A4CA7EF837F7EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:3e:07:24:e0:80:5b:f7:7d:ad:f6:91:8c:33:
57:42:ef:8d:77:93:d2:69:d0:7f:f0:58:c1:5f:b4:
0c:a3:0c:72:cc:cc:8f:03:06:ea:bb:07:8e:d1:11:
55:f6:a0:fb:fe:c0:96:ca:5b:76:2a:77:ea:af:8a:
8e:f8:c8:a6:32:0a:c8:60:5a:dc:d5:2f:b5:b5:96:
0a:08:50:da:ad:17:63:15:15:c7:ec:e9:36:0a:29:
3b:69:c7:39:77:c1:02:55:7f:91:3d:6d:08:6d:a1:
0f:98:c3:5f:6c:17:01:c5:9e:18:ca:9b:ff:0b:41:
82:fc:2b:7f:57:20:32:fd:76:d5:0b:72:26:00:ca:
d4:9c:7f:29:3f:93:49:c3:92:62:2f:b7:17:96:ee:
89:b8:23:f7:4b:8a:b8:21:b4:04:81:c0:c5:b2:f1:
bc:ac:e6:80:b4:97:cc:19:c8:fe:10:5b:1f:09:f9:
a3:d2:e6:92:10:e1:e7:88:a1:6c:3d:1d:d8:ff:27:
89:a5:f0:c2:86:64:18:3e:c0:3a:0e:dc:29:8b:24:
88:c6:e8:94:62:bc:3b:ab:5a:f6:02:0e:c5:6f:14:
e4:5f:b0:d0:20:de:29:f8:8b:e4:3a:5f:ef:7d:8e:
b0:24:9e:dc:fa:b6:12:2a:b8:ee:a1:5e:a4:08:cc:
a7:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:17:5B:EC:58:48:38:27:92:3B:93:E6:16:A4:CA:7E:F8:37:F7:EB
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/IRdb7FhIOCeSO5PmFqTKfvg39-s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.224.0/22
Signature Algorithm: sha256WithRSAEncryption
19:89:56:71:aa:e6:e6:56:e0:e4:6c:2d:17:ee:e1:dd:9a:68:
fe:49:be:30:7a:68:01:fe:5e:ed:d9:d3:74:16:da:ef:56:0a:
64:78:e8:85:f7:6c:ef:46:e9:16:c3:14:7c:e7:5e:6e:ff:38:
88:b9:4a:f8:9d:5d:2a:3a:f3:6d:71:4c:56:98:3c:a3:09:9a:
02:2e:4b:ba:a8:b5:a6:35:03:fd:f3:11:f2:40:36:4b:51:7f:
fd:b8:34:71:32:92:a7:14:f3:a3:1f:59:2b:2a:eb:fa:f5:6d:
a3:ec:00:8e:d7:d4:1f:ce:e1:29:2e:72:80:05:ca:70:ee:a5:
9f:6c:18:54:0c:c2:bd:20:00:29:78:90:37:65:86:f1:89:03:
cb:15:b6:be:a9:3d:2b:70:15:71:62:de:c4:08:bb:6d:5d:78:
67:10:2a:d0:5b:ed:b4:eb:af:d9:c4:05:41:04:0c:e5:14:3d:
dd:85:e3:a7:49:ed:e0:ae:b2:4c:41:af:e8:ae:cb:91:02:f1:
07:3d:88:04:80:19:db:22:74:a1:53:f6:9b:1e:2c:81:c8:1b:
d5:a6:f4:a4:6f:b3:f0:9a:9c:7b:30:50:52:36:26:4a:1d:6b:
44:27:4d:a3:59:4c:48:df:23:d4:3a:44:8a:6f:1d:e7:9e:06:
bf:49:61:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:47:16 2025 by rpki-client