Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/OMJBaE8Uv5RfI34BuCy7ITmBVcc.roa
File: OMJBaE8Uv5RfI34BuCy7ITmBVcc.roa (raw, json)
Hash identifier: OkRbrCrfMC33Hl1Rc0mqXtEJcqFSyQsQoUb1xbZZvVI=
Subject key identifier: 38:C2:41:68:4F:14:BF:94:5F:23:7E:01:B8:2C:BB:21:39:81:55:C7
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D10
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/OMJBaE8Uv5RfI34BuCy7ITmBVcc.roa
Signing time: Wed 26 Apr 2023 10:31:30 +0000
ROA not before: Wed 26 Apr 2023 10:31:30 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 113.61.128.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3344 (0xd10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:30 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=38C241684F14BF945F237E01B82CBB21398155C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e2:49:48:1f:ab:aa:5b:f2:3b:6b:79:12:9e:
66:20:07:d0:ea:ac:66:37:f3:f0:3a:95:47:b4:20:
e5:0a:0c:93:18:3b:fd:b3:44:ad:6a:4a:b3:45:59:
8b:3a:52:28:e4:65:90:66:47:2b:1d:d8:e0:ba:ee:
eb:82:87:61:c5:62:df:ae:0c:b6:3d:38:d3:bc:a4:
ce:6d:5e:cd:59:af:c5:b8:82:98:01:38:fa:3d:f9:
ef:17:10:c1:c2:c5:ad:45:62:b1:20:f3:37:ac:3a:
22:fa:2f:98:1b:50:ef:4b:c2:eb:ed:89:e0:e3:71:
17:6e:97:12:86:1e:1e:ea:3a:d3:3e:10:06:04:a3:
b0:76:3a:97:1d:42:43:7a:89:37:94:6f:72:37:92:
49:49:04:67:5a:c2:3e:bf:e0:77:6a:da:e1:5f:97:
b0:8b:5d:6d:82:9c:0b:f9:52:97:bf:59:99:ce:e1:
82:fd:0e:f6:97:66:a5:93:eb:b3:de:59:30:cb:cb:
c0:aa:59:5c:1d:76:2b:f0:eb:a1:4f:52:f6:d6:e4:
72:70:a0:ed:14:34:e2:a2:b5:8b:86:bc:d6:cb:66:
1a:cd:21:1b:3f:5b:29:a5:ef:0a:ac:f6:12:0c:ba:
32:e5:f0:50:55:38:07:9c:1c:02:e6:63:b3:95:f4:
af:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:C2:41:68:4F:14:BF:94:5F:23:7E:01:B8:2C:BB:21:39:81:55:C7
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/OMJBaE8Uv5RfI34BuCy7ITmBVcc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.128.0/20
Signature Algorithm: sha256WithRSAEncryption
92:50:b5:57:b5:52:28:80:0c:f6:be:52:70:38:30:60:5d:06:
db:5d:f1:d2:54:c7:56:7f:66:19:77:72:ab:7d:d1:0f:cb:be:
00:a0:96:e1:48:48:c3:d2:68:07:77:fd:da:9f:bb:00:46:c5:
cc:3b:a9:b1:14:13:1c:28:58:bc:ef:f0:8d:6d:43:e8:03:59:
df:ee:ea:e8:b3:a1:2d:79:6a:09:d1:9a:48:aa:3c:a1:2d:14:
05:f4:54:71:99:79:df:90:f7:71:93:0c:d4:23:18:ca:0d:38:
36:59:1c:f9:a8:ec:57:0a:6e:f4:df:f6:ab:fe:07:00:2b:1d:
29:8f:77:6e:57:6e:6b:c5:59:a9:cd:93:f9:81:25:90:1b:55:
fb:78:91:0d:71:ed:13:05:1c:68:bd:1f:f6:26:50:43:1c:4f:
ca:cd:13:62:63:7f:1c:f9:e1:cf:73:9a:62:57:27:4c:33:22:
b2:71:b4:71:69:b9:dc:b0:d3:1b:0f:77:3a:30:ea:1e:56:fe:
a0:f1:21:0b:54:f6:d6:eb:f4:cf:af:3c:d0:05:5d:c6:c0:0b:
73:de:a6:9f:c4:e9:d7:84:cc:5a:2e:f8:d8:0b:ea:ed:33:9f:
47:4a:1a:58:10:1c:d2:f0:cf:b5:83:cd:16:e9:97:f3:82:f7:
ca:35:ad:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org