Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/J0P4zgnMy6ZQs72SXVuYLVf8PbQ.roa
File: J0P4zgnMy6ZQs72SXVuYLVf8PbQ.roa (raw, json)
Hash identifier: I2RRNq1LWXWF8RfDdq1iYC9ZQDp0JjOStHLzfZ2yk5g=
Subject key identifier: 27:43:F8:CE:09:CC:CB:A6:50:B3:BD:92:5D:5B:98:2D:57:FC:3D:B4
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0C27
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/J0P4zgnMy6ZQs72SXVuYLVf8PbQ.roa
Signing time: Mon 07 Nov 2022 06:12:13 +0000
ROA not before: Mon 07 Nov 2022 06:12:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18046
IP address blocks: 119.15.224.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3111 (0xc27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Nov 7 06:12:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2743F8CE09CCCBA650B3BD925D5B982D57FC3DB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:53:b0:05:6f:b6:9b:86:04:29:39:a2:f9:ca:
2f:fd:00:45:92:a0:f0:0f:bd:8e:41:d4:e3:fe:3e:
ac:fb:05:fe:3e:84:85:1e:b7:a5:e1:68:cb:fa:97:
fe:d5:1d:c8:7d:80:5d:6a:05:80:17:e8:7a:78:26:
6d:f9:7c:7c:fe:56:63:20:6b:5c:fe:03:df:7e:e7:
6d:e5:f3:5c:66:9d:3a:3f:72:50:7e:0d:1a:74:08:
50:65:8f:18:a1:8f:08:58:d1:79:13:c6:d5:9d:61:
73:a3:89:4c:d3:1b:d6:71:ae:d7:11:fb:3c:7a:bd:
70:a9:4b:c8:a6:7a:91:74:c2:c9:f2:67:b4:ee:5f:
da:b0:5e:b9:b0:c0:c7:e9:ed:8f:c5:b3:c1:ed:7d:
e9:df:02:c5:0c:9b:8f:ab:c0:d5:ec:64:03:61:0d:
32:f3:38:b3:4a:f7:c9:9b:3d:dd:1e:94:73:43:51:
27:cb:88:15:c2:f5:80:3d:b3:da:0a:f6:d8:d9:92:
da:fb:f8:3b:b2:0c:16:e1:9a:52:b0:26:c4:4d:b2:
1c:d7:32:f2:7e:a3:35:27:8b:bb:5e:51:2b:6e:98:
63:ac:f5:be:c0:00:51:65:71:01:46:02:24:4d:1b:
1b:9b:00:3a:9b:14:57:a3:93:61:86:e1:4f:ae:70:
3f:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:43:F8:CE:09:CC:CB:A6:50:B3:BD:92:5D:5B:98:2D:57:FC:3D:B4
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/J0P4zgnMy6ZQs72SXVuYLVf8PbQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.15.224.0/19
Signature Algorithm: sha256WithRSAEncryption
91:11:e5:cf:35:96:c3:c4:0e:6f:5f:1d:77:1e:72:cb:1b:dc:
d1:c1:04:14:6b:68:24:d3:06:17:53:a9:3f:ec:b7:f6:17:bd:
2c:63:81:85:65:1e:a2:2e:20:e6:01:24:8f:cf:6c:e3:3e:2b:
56:e2:28:92:f6:d7:1d:e4:de:13:80:8f:2f:59:1d:c8:af:7e:
04:ff:2d:d8:30:ad:33:c8:a4:9d:f3:84:41:e6:23:5f:80:31:
94:56:55:4b:e1:25:4e:0b:72:77:0f:aa:0b:ee:a6:0a:e3:d5:
29:fd:7a:2f:07:7f:11:f5:92:28:94:bf:c9:93:3c:8a:20:46:
c3:b7:84:52:ea:53:a8:7f:d1:28:85:af:3d:fe:52:2d:16:0a:
22:b8:78:18:97:25:85:09:1b:07:a7:2c:db:f4:ec:d0:d3:12:
06:0c:ec:19:a6:4a:2f:66:da:c7:89:6b:25:a8:8f:26:ec:6b:
d4:5c:6f:12:e8:02:3d:68:58:64:8f:56:2c:26:4e:b2:8f:26:
66:19:44:34:16:5f:73:68:e8:5a:e3:bc:e9:97:ba:2f:a3:5c:
b2:a4:cd:23:8f:30:44:23:c8:c4:f9:2a:f4:a2:be:b7:ff:21:
29:b8:4e:f1:19:9d:1b:9a:4d:e5:4b:73:2f:b9:d7:7f:ff:21:
5c:47:f3:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org