Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/MZXYJzFiQDXNu6QsIs5I7SLbdJ4.roa
File: MZXYJzFiQDXNu6QsIs5I7SLbdJ4.roa (raw, json)
Hash identifier: ptSxX/Jq2khmoYTejjkzKMeLIEkLqUTSZRQiQMN7Vdk=
Subject key identifier: 31:95:D8:27:31:62:40:35:CD:BB:A4:2C:22:CE:48:ED:22:DB:74:9E
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E19
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/MZXYJzFiQDXNu6QsIs5I7SLbdJ4.roa
Signing time: Fri 01 Sep 2023 08:49:18 +0000
ROA not before: Fri 01 Sep 2023 08:49:18 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 113.61.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3609 (0xe19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:18 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=3195D82731624035CDBBA42C22CE48ED22DB749E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b4:69:e6:e3:aa:9f:c3:f9:62:c3:3b:10:e4:
54:29:a3:18:6c:c8:f9:61:11:62:e9:03:8c:3a:cd:
31:8e:b4:56:68:7e:8f:2c:e2:fa:f8:a3:a9:3f:6d:
19:69:50:5c:74:d6:aa:67:1d:6d:89:82:9d:e6:c4:
10:67:64:78:1f:41:e1:f3:6f:c4:08:a5:23:0a:cc:
26:e1:6f:a2:e8:f3:e8:17:c8:fc:b6:43:27:24:90:
6f:1b:97:72:6a:34:e6:cc:98:b2:25:c0:82:97:3b:
3f:33:c0:5e:67:2d:ac:52:1b:10:33:30:80:3b:ec:
d5:17:e3:63:b6:ab:cc:b6:8a:38:c5:49:34:81:29:
4f:e5:32:e8:77:4b:f9:c2:15:ca:70:0f:95:d2:fd:
d6:5b:c1:26:94:d1:21:95:c0:79:c7:48:70:67:2b:
45:a9:3e:03:df:83:e5:1b:ed:80:1c:7d:9e:b7:11:
bc:36:e1:53:09:10:21:e9:04:83:10:72:86:5d:4e:
ed:b1:17:cc:85:70:6f:3a:ad:7f:44:51:00:d7:f9:
96:42:a1:26:bc:20:65:32:98:ea:03:87:cc:10:54:
ad:de:88:58:06:e5:49:54:e2:7c:29:9b:2c:e0:a1:
c6:25:9b:af:f8:b7:78:ea:4c:d3:cb:d7:2d:38:16:
04:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:95:D8:27:31:62:40:35:CD:BB:A4:2C:22:CE:48:ED:22:DB:74:9E
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/MZXYJzFiQDXNu6QsIs5I7SLbdJ4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.168.0/24
Signature Algorithm: sha256WithRSAEncryption
19:4d:93:52:2e:26:99:e2:f4:27:31:4d:6f:a3:6f:a4:59:4c:
1d:33:fe:0c:8a:24:a2:b1:db:01:e2:08:f6:50:7d:16:f7:60:
0f:bd:91:1a:e7:3c:b1:51:ff:4e:d4:a3:e7:e2:9e:2f:84:5b:
94:6a:ab:5f:81:a0:8b:19:d8:a3:44:21:27:e6:4c:e5:19:3e:
f5:99:38:cd:38:6e:7d:39:fa:fa:8c:f1:b3:4e:f0:a4:68:ca:
98:19:df:ca:9a:5d:35:6a:2e:5c:90:bc:a6:2f:a7:6f:72:fd:
43:52:2a:84:99:51:68:7f:e6:4c:8d:88:4c:a1:3b:7c:2d:e8:
ae:71:a3:d1:03:c7:d1:9c:87:62:35:9e:b3:33:89:fe:a1:c1:
5f:c6:da:08:55:59:21:0d:fb:90:53:26:34:5b:97:b4:50:e6:
cb:c5:aa:f0:f9:e8:54:51:96:3a:50:d4:bc:03:1e:11:67:e6:
f3:16:af:36:f2:fe:35:54:a2:29:a0:18:bb:28:fa:2e:20:f3:
d6:3b:74:bf:c7:dc:c2:69:c2:72:ca:de:59:e2:77:dc:94:3a:
f8:7d:ae:3b:d4:68:2a:ea:b3:fe:ac:da:41:cb:ea:a8:bb:c6:
c0:de:ab:55:6c:92:3e:02:b1:1b:69:75:08:42:c0:65:06:4b:
9c:89:50:0c
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDhkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA5MDEw
ODQ5MThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDMxOTVEODI3MzE2MjQw
MzVDREJCQTQyQzIyQ0U0OEVEMjJEQjc0OUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDFtGnm46qfw/liwzsQ5FQpoxhsyPlhEWLpA4w6zTGOtFZofo8s
4vr4o6k/bRlpUFx01qpnHW2Jgp3mxBBnZHgfQeHzb8QIpSMKzCbhb6Lo8+gXyPy2
QyckkG8bl3JqNObMmLIlwIKXOz8zwF5nLaxSGxAzMIA77NUX42O2q8y2ijjFSTSB
KU/lMuh3S/nCFcpwD5XS/dZbwSaU0SGVwHnHSHBnK0WpPgPfg+Ub7YAcfZ63Ebw2
4VMJECHpBIMQcoZdTu2xF8yFcG86rX9EUQDX+ZZCoSa8IGUymOoDh8wQVK3eiFgG
5UlU4nwpmyzgocYlm6/4t3jqTNPL1y04FgSXAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUMZXYJzFiQDXNu6QsIs5I7SLbdJ4wHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvTVpYWUp6RmlRRFhOdTZRc0lzNUk3
U0xiZEo0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHE9qDAN
BgkqhkiG9w0BAQsFAAOCAQEAGU2TUi4mmeL0JzFNb6NvpFlMHTP+DIokorHbAeII
9lB9FvdgD72RGuc8sVH/TtSj5+KeL4RblGqrX4GgixnYo0QhJ+ZM5Rk+9Zk4zThu
fTn6+ozxs07wpGjKmBnfyppdNWouXJC8pi+nb3L9Q1IqhJlRaH/mTI2ITKE7fC3o
rnGj0QPH0ZyHYjWeszOJ/qHBX8baCFVZIQ37kFMmNFuXtFDmy8Wq8PnoVFGWOlDU
vAMeEWfm8xavNvL+NVSiKaAYuyj6LiDz1jt0v8fcwmnCcsreWeJ33JQ6+H2uO9Ro
Kuqz/qzaQcvqqLvGwN6rVWySPgKxG2l1CELAZQZLnIlQDA==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:44 2025 by rpki-client