Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/Ldszfq29AHBdc8vRqS5ll78zPgU.roa
File: Ldszfq29AHBdc8vRqS5ll78zPgU.roa (raw, json)
Hash identifier: OD3WSSjDF5dyeB5C3g4HVeVOIvM81jb4vutM4pQLGa0=
Subject key identifier: 2D:DB:33:7E:AD:BD:00:70:5D:73:CB:D1:A9:2E:65:97:BF:33:3E:05
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0900
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Ldszfq29AHBdc8vRqS5ll78zPgU.roa
Signing time: Tue 24 Nov 2020 03:13:41 +0000
ROA not before: Tue 24 Nov 2020 03:13:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17809
IP address blocks: 121.254.64.0/18 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2304 (0x900)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Nov 24 03:13:41 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2DDB337EADBD00705D73CBD1A92E6597BF333E05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:bc:81:95:78:a8:04:3e:c7:03:b6:ff:63:eb:
e6:4c:1a:b9:6e:3a:d4:b8:5e:be:e9:b5:e6:49:49:
e1:6c:3b:a5:34:b0:06:4a:31:0b:20:ed:7d:29:ed:
f8:2e:62:ef:bc:e9:e1:5d:8a:af:2a:79:35:6c:66:
dc:ce:dd:32:75:1b:be:e6:85:d8:28:e5:5f:04:4b:
d2:01:34:3a:13:a7:c8:5c:3d:c7:5f:47:66:2d:58:
b5:fd:03:d1:ca:d1:1f:3b:b7:ce:f5:df:73:63:45:
7d:6d:01:a1:10:e0:91:b6:59:e8:88:48:91:28:f8:
79:64:20:51:84:3f:60:71:6f:a6:30:38:1b:39:38:
05:ec:87:96:5d:9a:2a:5b:a5:ce:10:6e:01:dc:66:
a1:ac:3a:f3:f9:a1:72:e2:d2:94:b9:04:dc:c1:eb:
cd:70:46:ac:db:16:34:d4:a7:db:b6:ef:6a:04:cc:
e8:55:1d:28:9e:b6:6b:ef:34:6a:36:bc:aa:a7:04:
48:12:91:d5:bb:f5:48:0a:48:9c:9c:30:b8:b6:f8:
c0:b0:7d:c3:99:68:ac:bd:d7:9c:d6:23:85:b0:80:
1d:4e:d8:73:da:f7:4c:49:9b:ce:ca:d8:5e:72:9f:
b7:ba:e6:2e:42:2a:9d:81:31:eb:c3:85:57:12:95:
7d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:DB:33:7E:AD:BD:00:70:5D:73:CB:D1:A9:2E:65:97:BF:33:3E:05
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Ldszfq29AHBdc8vRqS5ll78zPgU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.254.64.0/18
Signature Algorithm: sha256WithRSAEncryption
18:20:f8:b5:e0:a8:7c:16:82:18:7f:0e:7e:61:3d:33:39:81:
d3:cc:41:51:38:fd:a9:65:5a:46:d3:93:ec:12:79:2e:aa:1e:
29:51:b6:26:2f:c8:48:74:b8:c1:75:2f:5d:96:e3:89:3b:ad:
4c:2a:02:cd:1a:aa:fa:09:71:c4:80:d5:8c:a7:e0:3d:34:66:
ec:fa:f6:88:af:89:05:53:84:f0:47:c9:c5:d6:06:b7:77:53:
2f:64:e4:bf:20:9e:31:15:e9:53:54:44:b8:f1:d0:bf:80:9d:
46:f6:92:38:33:ed:3a:50:9d:56:05:e9:71:6b:4d:d2:f9:de:
87:03:ec:98:53:a4:da:1b:4e:80:9c:84:b5:f9:b7:82:89:8a:
93:cc:c0:45:6c:4b:91:a1:8e:22:b8:56:dd:2e:ab:5e:a7:fc:
a9:b7:16:7f:f2:cf:0d:c2:7e:12:85:86:0e:ea:9d:c1:dd:b7:
5f:90:e6:a5:88:ce:60:23:db:85:84:78:62:0b:31:2e:59:52:
92:9a:51:d2:23:e9:fa:07:16:52:3b:c4:db:e1:eb:69:6d:02:
df:4d:4a:b1:ea:57:b7:df:79:d0:af:21:67:80:24:d0:ca:6c:
67:d9:a1:94:4c:03:df:09:6b:ab:a3:3a:d6:63:49:ae:6b:12:
1f:a6:67:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:01 2023 by rpki-client on console-fra.rpki-client.org