Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/OrQUqVUXgG_v0E-yxRFr-Uu0UJ8.roa
File: OrQUqVUXgG_v0E-yxRFr-Uu0UJ8.roa (raw, json)
Hash identifier: Sv1Wr8ogiTlZHPL/gmNS5dTLAUOkKLWaCjrCRXo5NB8=
Subject key identifier: 3A:B4:14:A9:55:17:80:6F:EF:D0:4F:B2:C5:11:6B:F9:4B:B4:50:9F
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 08CC
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/OrQUqVUXgG_v0E-yxRFr-Uu0UJ8.roa
Signing time: Wed 18 Nov 2020 07:50:56 +0000
ROA not before: Wed 18 Nov 2020 07:50:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17809
IP address blocks: 210.209.128.0/17 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2252 (0x8cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Nov 18 07:50:56 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3AB414A95517806FEFD04FB2C5116BF94BB4509F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:bf:74:94:1d:57:7d:55:8b:0e:c8:99:42:b0:
7f:e5:66:b2:01:e1:11:4b:6f:89:f1:ce:74:aa:84:
a4:5a:bc:51:13:db:ae:69:c6:82:73:ee:5f:cd:8f:
0e:6f:a6:13:20:df:1a:f7:ef:98:a5:98:7f:e8:76:
dc:20:a3:20:33:ed:bc:33:02:a0:9c:57:f1:d1:29:
14:5e:8e:4b:15:de:3a:9b:c2:3e:bc:af:25:42:80:
e0:7a:92:ba:b4:72:e7:9d:7d:81:81:ca:b0:e0:ec:
18:22:e9:3a:12:f8:c6:54:83:08:85:4c:1d:db:ab:
88:bd:28:7a:a6:49:2b:d0:40:7c:28:0b:41:5d:1a:
4c:0d:d1:68:8a:a0:68:9c:4e:99:2b:a2:51:39:f8:
35:c4:c0:03:ff:10:ca:eb:46:74:87:59:09:a5:52:
ef:8c:bb:0f:24:aa:98:a2:5b:85:c3:bb:73:b7:27:
7f:10:6a:12:6f:c7:4f:68:0b:a2:64:fd:70:a5:8c:
dd:1e:42:e7:94:8e:12:60:d4:23:32:3a:79:a4:50:
38:00:20:fb:15:a1:4d:2b:59:7f:35:9b:95:72:1a:
15:5a:ef:50:3f:ee:23:dd:80:6a:81:cd:54:49:9c:
39:97:d0:6b:b5:40:51:06:be:a3:2f:9e:88:44:b0:
26:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:B4:14:A9:55:17:80:6F:EF:D0:4F:B2:C5:11:6B:F9:4B:B4:50:9F
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/OrQUqVUXgG_v0E-yxRFr-Uu0UJ8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.209.128.0/17
Signature Algorithm: sha256WithRSAEncryption
79:ea:49:be:e2:14:54:95:13:df:59:6d:b2:f3:2b:8c:c7:62:
fc:fb:8e:ad:28:5e:c3:26:89:9e:2c:f9:d7:14:33:0c:a6:6c:
40:8f:90:e3:7b:ee:1d:e5:b7:f9:65:8c:48:67:b8:86:0f:b8:
c6:05:5d:ab:c3:cb:61:2c:f8:dc:65:28:f1:a1:16:93:9d:e4:
a3:e9:8d:95:74:d3:8e:a6:4e:2e:45:64:6d:49:7b:54:de:17:
c1:2f:36:83:99:d3:08:5f:15:39:18:57:52:c2:db:3a:16:dc:
9c:0e:1c:7f:ae:7c:16:fa:9d:80:b0:55:b8:36:45:2f:66:1c:
88:65:9a:4c:cb:4e:af:54:5d:24:af:1e:55:c1:2f:0b:45:8f:
17:af:d8:69:b1:0f:5c:6a:b6:33:17:07:48:d1:cc:e3:d7:98:
6f:28:22:7d:dd:46:20:c9:83:fa:6e:a4:c5:79:6a:a3:27:77:
76:15:4e:56:89:98:ac:39:9e:e1:18:9a:ed:0f:fa:45:08:32:
b3:4f:a6:b6:e1:aa:52:b8:29:bf:87:59:ff:e7:07:9d:6d:c5:
35:6b:0d:e3:fb:44:5b:a1:ed:28:76:92:06:81:56:2e:b1:9a:
e4:24:c2:99:67:4c:4b:d9:c6:22:67:2f:5b:61:37:10:3d:3d:
b9:62:c8:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org