Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/PGxP6c1VGYkOqOilpXqHwxbF3D4.roa
File: PGxP6c1VGYkOqOilpXqHwxbF3D4.roa (raw, json)
Hash identifier: UsimSL+4SItCmbk3fY6VJYQB9b0X/kCc4snLIZMogN8=
Subject key identifier: 3C:6C:4F:E9:CD:55:19:89:0E:A8:E8:A5:A5:7A:87:C3:16:C5:DC:3E
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0995
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/PGxP6c1VGYkOqOilpXqHwxbF3D4.roa
Signing time: Sun 07 Feb 2021 13:15:18 +0000
ROA not before: Sun 07 Feb 2021 13:15:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38851
IP address blocks: 119.15.200.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2453 (0x995)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Feb 7 13:15:18 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3C6C4FE9CD5519890EA8E8A5A57A87C316C5DC3E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c2:9a:d4:f1:f4:24:45:1c:52:ad:8e:2c:df:
1e:24:0a:4e:4d:99:bb:1d:dc:ed:b6:42:6c:9b:d5:
1e:00:6e:6b:30:48:8d:b9:a0:f8:67:04:1c:6c:5b:
94:8d:14:2f:65:8d:b9:50:b8:90:ec:50:80:5c:17:
c6:a4:c9:20:90:e0:35:68:d0:e5:ce:da:ad:3b:72:
83:db:96:aa:b4:ab:84:6b:b9:99:ce:f9:41:05:37:
5a:3f:9a:51:92:2e:24:50:9c:57:67:dc:11:87:dc:
a8:4e:a0:1d:c3:12:b3:9f:d3:ac:2b:69:3e:fc:d8:
bf:39:d0:38:41:6d:b1:1e:aa:5f:fe:9f:8d:04:59:
cb:5f:45:2b:cd:9a:de:fb:4c:c2:fe:34:29:a5:90:
13:fe:63:dd:23:72:d7:2f:ec:34:61:64:7e:83:ec:
55:40:16:3f:fe:12:2e:0b:2f:00:d3:de:e6:37:25:
d7:a6:65:f9:bc:31:d7:43:5a:01:09:67:a3:49:b5:
49:25:5d:cf:39:38:d1:6c:3e:0b:a4:18:fa:c0:fe:
d3:db:c7:71:52:a1:12:02:65:b2:e1:9b:07:92:5b:
85:ce:10:27:f4:80:5f:36:25:0a:44:f3:d8:a8:26:
cf:a8:50:44:38:f8:f9:9a:2f:7a:21:34:4b:31:0a:
87:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:6C:4F:E9:CD:55:19:89:0E:A8:E8:A5:A5:7A:87:C3:16:C5:DC:3E
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/PGxP6c1VGYkOqOilpXqHwxbF3D4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.15.200.0/21
Signature Algorithm: sha256WithRSAEncryption
53:25:52:b9:a1:f0:8d:80:2b:60:3e:9e:af:22:3f:41:9c:04:
e9:77:7f:ac:0a:6b:c2:fb:18:1a:d4:36:59:71:03:de:e7:ad:
96:dc:8c:9b:af:71:44:15:af:f8:01:4c:9b:99:39:6b:f9:e1:
98:81:63:cc:c5:8f:12:ab:81:9b:74:c3:a3:87:2d:ec:da:06:
28:8d:fa:fe:13:e7:7e:62:5c:85:f8:78:70:5e:51:0d:28:13:
9f:06:fa:3a:60:f8:f7:24:ee:9e:7c:41:27:9e:6d:3b:9d:0c:
f2:be:9e:92:bd:bb:47:c8:64:91:51:6f:6b:0b:46:27:b0:57:
84:28:cd:00:c2:97:5a:8e:94:02:de:87:e0:67:5d:21:b6:d5:
d0:ac:b4:39:86:3c:fc:86:7c:7f:53:31:94:de:0c:74:98:fc:
b9:f6:aa:c6:03:78:50:3d:ba:f6:5a:3d:2f:67:df:e0:d0:f1:
10:f9:42:67:14:14:ea:ce:15:f7:ca:86:f3:ec:df:5d:68:2f:
db:90:dd:05:4f:c8:3d:b4:fd:2c:75:71:b1:2c:c6:12:af:cb:
51:40:cb:0f:64:47:f4:a5:9f:19:52:b9:80:fe:8b:01:88:38:
2f:d8:23:b9:a2:13:1f:ba:d2:13:08:6b:d6:37:59:70:99:53:
31:e6:c5:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:53 2023 by rpki-client on console-ams.rpki-client.org