Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/QC6LD8Cy86dadv7JjUiYLiKsdaw.roa
File: QC6LD8Cy86dadv7JjUiYLiKsdaw.roa (raw, json)
Hash identifier: 01CuJT4p3OfTodDtoTRAn0frn0c8XMlKNp75X0c87DY=
Subject key identifier: 40:2E:8B:0F:C0:B2:F3:A7:5A:76:FE:C9:8D:48:98:2E:22:AC:75:AC
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0AD8
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/QC6LD8Cy86dadv7JjUiYLiKsdaw.roa
Signing time: Thu 16 Dec 2021 06:30:02 +0000
ROA not before: Thu 16 Dec 2021 06:30:02 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17809
IP address blocks: 27.96.240.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2776 (0xad8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Dec 16 06:30:02 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=402E8B0FC0B2F3A75A76FEC98D48982E22AC75AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a0:f9:31:79:77:7a:59:7a:88:b2:96:b4:fe:
04:f2:9a:26:59:39:70:90:83:1b:84:d2:fe:d8:1e:
56:86:e6:99:6c:fe:05:5d:38:fe:6e:ce:6c:d5:36:
0d:b5:28:82:b9:a1:dd:12:7e:53:32:be:d8:b0:be:
bc:94:56:00:a7:cc:f6:8b:58:ae:6a:0a:15:ed:d1:
bd:c3:4d:01:4e:f9:73:af:e6:91:d2:36:0e:88:b4:
1b:18:2d:cf:49:a0:9b:fa:9c:8b:a1:41:5c:6b:a6:
1e:70:ec:93:46:bc:6a:a7:b6:4d:4e:70:54:3f:cf:
6f:38:3f:46:b7:fb:e8:2c:cf:3b:67:16:78:4f:f3:
75:ad:fb:81:00:2d:f1:a9:49:b4:cb:d0:5f:66:2a:
a8:21:db:f5:d3:a5:f2:b2:aa:c1:4c:57:24:71:fe:
7b:a0:80:1a:20:e7:38:a2:b3:e5:c8:56:f2:4b:2e:
5b:71:3c:11:cd:3a:a7:30:bf:a1:20:3a:f8:6d:f3:
66:36:34:af:6d:ab:45:70:c2:97:a4:66:c1:4c:b6:
85:88:47:9a:f0:cc:77:d5:4f:16:4f:63:0f:05:8c:
30:34:f1:31:81:56:cf:c0:2a:4b:a4:ad:53:36:7d:
01:e9:01:f4:51:54:cd:db:22:ff:84:ce:46:9d:ee:
dd:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:2E:8B:0F:C0:B2:F3:A7:5A:76:FE:C9:8D:48:98:2E:22:AC:75:AC
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/QC6LD8Cy86dadv7JjUiYLiKsdaw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.240.0/22
Signature Algorithm: sha256WithRSAEncryption
03:2b:67:16:7c:40:2b:65:83:77:76:61:4d:80:1e:e9:ca:6e:
a1:ad:f2:fc:71:e2:3f:20:cf:ec:f9:ad:c8:a1:71:7e:2e:6e:
d0:d8:cd:32:d6:48:37:f0:b2:1d:25:db:ee:73:46:62:11:2e:
81:26:18:1e:db:1b:37:04:5f:58:7a:e2:cd:f5:de:07:9e:f6:
be:9d:32:7b:67:33:a2:bc:f7:4e:1b:0a:9d:0a:63:59:e7:6f:
f7:61:d2:a8:36:18:28:18:c6:e8:4b:b9:cf:e2:a5:96:ef:4b:
b7:63:00:bd:01:2c:47:e4:22:dd:67:da:65:ef:63:7d:86:10:
7e:2a:f5:75:65:3d:dd:12:25:41:fe:99:e4:25:fb:9b:6a:28:
2f:2f:19:e7:4f:95:72:55:ac:f4:0b:5e:d6:52:ca:4e:ab:36:
d8:47:fd:41:c9:da:b7:a6:c7:d5:94:b0:1d:7c:35:20:0f:c4:
5d:b7:ea:bd:57:c3:43:55:dd:95:64:b3:24:e1:1d:9a:56:a0:
28:f3:39:97:19:72:a1:ae:e2:4c:ee:f9:24:e1:8a:92:52:e5:
4c:53:48:20:3e:2a:52:e4:83:aa:fd:1a:14:00:07:87:23:96:
b8:c7:d8:ad:a4:0b:24:61:0e:33:a8:b6:04:b9:c6:10:9f:40:
dd:d7:30:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org