Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/JejWBwFu9-evP11HxaQgPij2bpc.roa
File: JejWBwFu9-evP11HxaQgPij2bpc.roa (raw, json)
Hash identifier: +3hq6rNbf40HdUlIaxPgj5qzQiG26ccWWBOogmAU2zE=
Subject key identifier: 25:E8:D6:07:01:6E:F7:E7:AF:3F:5D:47:C5:A4:20:3E:28:F6:6E:97
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0906
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/JejWBwFu9-evP11HxaQgPij2bpc.roa
Signing time: Tue 24 Nov 2020 03:16:49 +0000
ROA not before: Tue 24 Nov 2020 03:16:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17809
IP address blocks: 27.96.224.0/19 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2310 (0x906)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Nov 24 03:16:49 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=25E8D607016EF7E7AF3F5D47C5A4203E28F66E97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3b:c7:06:af:45:de:1d:ba:63:73:c0:29:31:
bf:93:6b:53:92:ea:e9:2e:48:0e:4a:71:5f:76:2d:
0b:30:d2:f6:82:1b:62:a8:9c:a4:56:96:f3:60:47:
dc:f4:b4:35:f6:96:14:af:d3:29:d1:9f:51:46:01:
d1:bd:29:02:8c:a1:e9:aa:3a:ad:e6:b7:a3:26:54:
06:9b:5d:b5:69:c2:33:ac:44:97:af:a8:c9:6d:c7:
73:e1:27:80:b5:60:82:2c:49:77:4f:e8:ae:66:83:
f5:a5:27:32:9e:97:92:84:5e:37:73:33:11:0c:43:
5c:ab:2f:85:b9:1b:dc:1a:2d:11:a6:e6:b1:4d:b1:
f6:ab:5e:5a:07:41:e0:27:59:2c:7a:47:bc:1f:3b:
36:3d:62:e8:03:26:cd:75:c8:2d:43:b0:92:da:96:
bf:bf:05:a9:8e:56:15:1d:41:2a:c3:9e:2f:c8:3e:
38:7e:ca:08:73:67:9c:81:c8:37:2f:a1:92:99:9b:
dc:f8:46:34:2b:bb:4a:d3:95:9a:85:d6:3a:21:2d:
73:78:1c:59:b5:8f:16:5d:6b:5c:22:9c:41:a3:18:
b7:ec:80:4f:d4:5b:a1:7c:7a:1c:ff:c4:e0:15:d3:
b2:84:45:92:ca:4f:39:cb:b6:d6:56:ad:c4:52:e1:
a1:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:E8:D6:07:01:6E:F7:E7:AF:3F:5D:47:C5:A4:20:3E:28:F6:6E:97
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/JejWBwFu9-evP11HxaQgPij2bpc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.224.0/19
Signature Algorithm: sha256WithRSAEncryption
b1:87:89:d0:d9:1a:75:50:97:68:51:fb:b1:32:e4:90:ad:ef:
a2:91:03:93:bb:f3:cf:d5:b2:12:4a:76:6f:7d:23:36:9d:0d:
e3:75:2a:85:9e:b3:de:9a:bf:a5:5b:dc:cc:9a:19:d8:f3:e0:
99:6b:ee:ef:cd:a9:af:60:cf:7a:19:a2:40:16:58:c7:c5:6f:
85:a0:59:f5:ab:73:fe:ff:bb:b2:2b:81:fb:30:ec:e0:a4:a2:
29:f5:fe:13:18:f1:6e:b8:f2:51:b9:6b:75:f2:90:55:d2:1a:
5c:44:07:d8:a3:f8:f0:68:0e:bf:37:a0:1f:6e:8e:d0:c9:29:
2a:e3:83:50:5e:ab:22:06:1b:f5:20:80:6e:ba:35:b3:d7:d1:
cb:a9:3f:59:d7:36:67:ab:af:b3:97:7c:2d:35:5d:1f:74:c1:
07:c8:f7:b2:d0:8f:12:5d:c8:53:52:7a:d6:d4:ab:21:16:fa:
fc:80:39:dd:5b:dd:de:b4:64:9b:f7:a4:81:c6:53:13:34:f6:
96:9d:3a:cb:6c:64:aa:de:4d:46:9c:06:a9:43:d8:9e:ed:6f:
78:5f:a0:94:5d:c2:15:3e:b4:f7:40:81:e7:fc:db:1d:21:55:
84:ee:1c:a1:a9:5a:6d:7f:3e:f7:d9:03:ca:82:27:27:96:77:
f8:d5:9c:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:53 2023 by rpki-client on console-ams.rpki-client.org