Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/L2wZJHnofA-wyO4Ec8EdgizwlxE.roa
File: L2wZJHnofA-wyO4Ec8EdgizwlxE.roa (raw, json)
Hash identifier: 5kAQ9YC9agH0BWr7uvIqK285pPVA75NiF0D9aAVG0H4=
Subject key identifier: 2F:6C:19:24:79:E8:7C:0F:B0:C8:EE:04:73:C1:1D:82:2C:F0:97:11
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0AD4
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/L2wZJHnofA-wyO4Ec8EdgizwlxE.roa
Signing time: Thu 16 Dec 2021 02:20:24 +0000
ROA not before: Thu 16 Dec 2021 02:20:24 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17809
IP address blocks: 27.96.232.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2772 (0xad4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Dec 16 02:20:24 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2F6C192479E87C0FB0C8EE0473C11D822CF09711
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:59:56:07:1b:20:67:0d:83:7a:f0:b4:da:7b:
83:47:f4:35:f8:b2:b5:d8:ca:45:76:8f:bd:5a:37:
3e:9c:e3:c3:84:89:76:ed:b3:0c:8f:a2:db:28:2f:
c1:e2:e8:fb:8a:71:18:09:b6:5f:f0:ba:fb:d1:03:
5f:40:f2:2c:30:a9:9e:a0:de:92:d6:ed:16:34:da:
5c:a1:0d:94:8f:33:46:63:4e:3e:1c:f2:ac:34:e9:
56:c3:d2:5b:f0:c0:13:4b:7b:ee:e6:34:64:8f:58:
20:6f:ea:76:d9:c7:a1:da:88:6a:2d:57:90:21:8d:
c0:4e:46:21:e5:28:fa:d4:ef:73:90:50:52:a9:25:
f2:64:e5:dd:65:fb:c9:9b:cc:fb:5c:1b:7c:ac:d2:
15:81:a9:18:7c:8d:27:ac:88:73:30:53:f2:ae:77:
3c:77:fa:82:a5:e3:91:77:df:f3:ec:f7:34:cd:e5:
74:9d:81:c7:de:7a:05:3d:ab:bd:c0:7e:f4:f4:6b:
76:d5:7c:5e:d8:f4:08:f7:29:84:13:ea:17:7b:20:
33:41:e8:cb:05:fc:4b:be:75:de:90:a1:d6:9b:29:
2b:9f:55:b8:7a:59:30:2c:d4:38:d5:a7:ab:08:e1:
aa:45:46:8d:ff:60:ca:ca:ca:3a:95:c5:25:8b:80:
16:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:6C:19:24:79:E8:7C:0F:B0:C8:EE:04:73:C1:1D:82:2C:F0:97:11
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/L2wZJHnofA-wyO4Ec8EdgizwlxE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.232.0/21
Signature Algorithm: sha256WithRSAEncryption
48:3b:d1:c9:b8:d4:a3:bf:26:1d:82:29:b6:9a:ad:68:70:d5:
23:00:0e:ae:75:0b:33:26:65:ef:5c:81:f1:7d:89:9b:22:4b:
74:72:ed:99:a5:2d:f3:e6:44:e7:14:cb:fd:25:48:fb:95:40:
93:f6:58:bd:1c:a3:ff:d1:ea:28:d8:af:ae:18:80:ed:8c:6a:
4a:18:96:f0:54:93:2f:bd:dd:9e:da:ad:cd:60:c2:46:30:33:
0f:3f:50:b3:fe:18:2a:d0:dc:4c:c2:f8:96:c9:0c:55:de:9c:
7b:91:60:eb:c0:c6:2a:54:d7:ab:3a:9a:57:77:fb:67:dc:ce:
fa:ba:cc:e6:f6:eb:f6:be:78:76:08:7b:46:56:75:a0:4a:ea:
1f:a4:24:43:fb:3c:16:84:a3:23:04:25:39:d5:da:71:f4:db:
49:58:a6:5f:1d:34:a9:f1:3a:33:c3:e6:db:8c:37:d4:c2:10:
b9:fd:34:dc:ed:21:cf:90:aa:44:7b:84:c9:1a:47:bb:15:dc:
b3:7d:28:83:7c:36:01:5d:48:37:86:d2:de:95:db:91:0b:69:
3e:33:73:25:96:bc:fe:c9:9e:f4:df:d1:58:d9:3a:a6:32:d9:
69:06:5a:af:68:c2:bb:0a:17:bf:83:62:dc:33:a0:3a:42:fa:
2c:fe:4c:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org