Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/LrFGN8l3i_jGNoa9n2-0nYLJTpo.roa
File: LrFGN8l3i_jGNoa9n2-0nYLJTpo.roa (raw, json)
Hash identifier: an2HJUvZrLuVdXXqN2fFUxR8yhnAMqjjcWrMwzizT1Y=
Subject key identifier: 2E:B1:46:37:C9:77:8B:F8:C6:36:86:BD:9F:6F:B4:9D:82:C9:4E:9A
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E6D
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/LrFGN8l3i_jGNoa9n2-0nYLJTpo.roa
Signing time: Fri 01 Sep 2023 08:49:41 +0000
ROA not before: Fri 01 Sep 2023 08:49:41 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 203.222.0.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3693 (0xe6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:41 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2EB14637C9778BF8C63686BD9F6FB49D82C94E9A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f5:27:28:dd:fc:cf:2e:86:d3:a5:c6:a7:e8:
d8:98:3a:c6:f1:ce:59:7e:37:82:9a:39:15:39:bf:
3f:82:08:72:c6:bb:51:b8:06:38:e9:94:60:1d:d2:
2c:39:fd:1b:63:88:07:c4:26:35:b2:99:67:9c:b7:
bc:b9:5b:1c:00:9e:8d:60:b6:58:ed:06:ad:73:66:
7f:72:ab:ab:a2:81:b9:f2:b5:f5:21:94:c6:95:87:
be:1f:d0:35:25:6e:3b:53:e4:5b:c9:f4:47:a7:13:
bc:2c:a0:fe:75:e1:74:d4:f6:24:18:00:a4:74:2a:
d9:a6:34:06:71:88:55:3b:dd:d4:6d:24:35:09:36:
15:12:92:d1:f5:bc:31:db:ad:f3:c2:4b:88:69:dd:
81:52:22:bb:15:1f:49:10:c0:ca:de:b7:86:2d:d2:
b6:71:7a:24:52:03:7e:d7:aa:13:92:4e:26:bc:02:
35:31:d6:77:28:62:9b:b0:fd:dd:df:44:a8:ba:73:
5d:e2:c3:fd:a0:d4:cf:75:64:77:d9:79:93:83:68:
61:41:ee:35:8a:dd:a7:aa:a9:e3:56:68:aa:ae:6e:
ce:8b:39:da:37:d3:d9:6a:ea:9a:87:d6:7e:c0:91:
fd:db:3c:e8:13:fc:f1:2d:5e:1e:0f:98:42:ae:38:
7c:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:B1:46:37:C9:77:8B:F8:C6:36:86:BD:9F:6F:B4:9D:82:C9:4E:9A
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/LrFGN8l3i_jGNoa9n2-0nYLJTpo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.222.0.0/22
Signature Algorithm: sha256WithRSAEncryption
b6:a1:e2:f2:40:26:47:fe:a1:a4:54:a6:d3:8e:f0:26:c2:f2:
60:d9:50:19:c2:ea:b3:9d:1f:c4:37:50:8e:13:47:d2:82:23:
9d:2f:33:0f:86:68:fe:c4:9e:97:4f:8c:e7:5c:87:02:59:66:
4b:6f:39:ee:81:1b:1b:dc:ca:04:9a:38:66:01:dc:85:57:39:
dc:df:96:a6:8d:69:d0:6a:50:18:98:d6:ce:de:cc:d1:c5:c3:
6c:2a:0c:25:2c:d9:7b:20:3c:40:6e:7e:0d:9d:85:20:77:71:
f5:2a:84:0c:6e:f9:38:2e:ba:7a:e3:e8:14:31:68:25:fe:3f:
5c:c1:cd:47:d9:c1:b4:d5:97:33:77:d7:63:a4:13:20:48:8c:
62:ec:a4:d8:14:70:b4:23:a5:f2:08:4b:1e:f4:11:5b:27:65:
e5:9c:68:45:91:b6:d2:7c:d1:4e:8a:d5:46:4a:4a:79:f2:6e:
f9:44:87:05:31:f5:a6:c9:83:18:82:1c:95:94:f9:9d:43:c2:
ae:88:97:be:91:fe:5e:bd:5c:5f:f6:aa:9a:c2:f4:50:d2:27:
8b:74:2c:17:d3:57:d7:24:02:4a:12:57:9f:98:4f:18:2f:5d:
41:58:f9:a8:d9:1d:74:d7:b5:1c:59:a3:f8:2a:83:b9:d4:f6:
9a:a9:ee:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:06 2025 by rpki-client