Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/NflXL9_drSODqTPVovlVSJOjSOw.roa
File: NflXL9_drSODqTPVovlVSJOjSOw.roa (raw, json)
Hash identifier: ZBkAESzCOzzZsh7yj6pNfCOb2d1Qn27o9PH3tfOamRY=
Subject key identifier: 35:F9:57:2F:DF:DD:AD:23:83:A9:33:D5:A2:F9:55:48:93:A3:48:EC
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 090C
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/NflXL9_drSODqTPVovlVSJOjSOw.roa
Signing time: Tue 24 Nov 2020 03:23:16 +0000
ROA not before: Tue 24 Nov 2020 03:23:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17809
IP address blocks: 111.67.56.0/22 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2316 (0x90c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Nov 24 03:23:16 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=35F9572FDFDDAD2383A933D5A2F9554893A348EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:44:cf:38:f5:66:32:91:12:f0:4f:76:3b:90:
83:90:da:19:d3:56:20:96:aa:43:45:d0:35:80:7b:
50:43:f7:ac:76:a4:95:68:8f:cc:cc:91:c4:bb:84:
4a:99:36:27:e9:c0:2a:8c:b9:f0:b5:f1:dd:8c:7c:
c1:a6:b4:22:fd:2e:b4:8f:e4:79:1c:a8:9c:21:cb:
e4:c5:a8:c0:aa:43:2e:b8:2d:a9:ed:a6:a0:e2:a6:
a2:a5:63:73:a6:07:17:0e:79:b7:fa:21:fa:68:68:
c9:5c:1a:c3:92:69:d4:99:86:51:36:c1:71:89:3f:
79:de:1c:8f:52:b9:25:f2:00:a8:63:a8:55:1f:15:
17:f4:92:fe:f8:e2:36:e7:c9:24:f2:9c:99:4a:7c:
40:80:14:8d:c4:a2:d1:c5:76:87:d2:ef:9a:7e:c2:
20:fe:b7:00:b2:cd:d2:d3:06:6b:23:1b:11:10:0a:
5e:1e:a2:f4:5d:62:b4:19:e6:ff:ef:51:c9:8b:7a:
da:58:68:c3:57:c2:3a:7b:af:89:c8:14:25:c8:0a:
be:ad:8a:a5:97:41:65:c5:54:93:5a:0f:9a:58:b9:
16:38:af:a8:87:82:5c:27:14:9c:a9:8d:12:f4:ad:
41:18:32:bd:c3:39:95:ac:b9:20:dd:91:17:d5:50:
c8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:F9:57:2F:DF:DD:AD:23:83:A9:33:D5:A2:F9:55:48:93:A3:48:EC
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/NflXL9_drSODqTPVovlVSJOjSOw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
111.67.56.0/22
Signature Algorithm: sha256WithRSAEncryption
19:69:74:de:99:8d:60:a1:a1:ce:ad:73:12:8d:20:54:f0:a8:
48:be:bf:6f:c7:28:3b:0f:d0:73:c7:98:3c:8e:f0:0a:03:91:
f7:e5:a9:e3:5e:85:ee:5e:06:38:a6:92:7c:aa:25:55:44:61:
83:7c:8c:90:c6:3d:90:e8:11:cf:d0:d4:31:46:87:e1:3f:82:
18:9e:4c:28:ef:6c:a3:ff:79:ee:5e:bc:6c:ca:d0:eb:98:73:
c6:4c:32:67:4c:60:d6:77:6e:c1:8a:90:27:de:55:fb:80:b0:
d0:de:33:c3:f9:97:47:81:da:de:d8:d3:8f:ce:fe:7b:c8:48:
15:e2:33:89:2d:09:9c:69:a6:d8:01:b8:d6:db:1d:04:bc:80:
97:96:bb:b6:fc:68:af:fa:1e:fb:54:45:1e:65:74:e9:28:49:
fc:9f:0e:c3:34:bd:20:32:63:f3:95:a3:17:d6:be:6b:05:3f:
db:53:f9:6d:de:ec:4f:b9:92:c9:bb:dc:68:52:db:a2:56:b3:
22:ce:c1:df:9c:4e:f3:3f:80:95:3c:e3:87:1d:52:64:8a:e8:
67:00:15:74:4a:66:bc:37:12:88:5d:89:b2:19:fe:d8:33:23:
eb:b9:85:5c:14:cb:50:21:e8:91:1a:82:5d:39:05:fd:78:9c:
70:b5:8b:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org