Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/QiOVatEmf2S2e_k973JdDF4lH0U.roa
File: QiOVatEmf2S2e_k973JdDF4lH0U.roa (raw, json)
Hash identifier: XPHkgotPCdHOBVtqes2Tl8W5fDREsemAOs2p2IK7izE=
Subject key identifier: 42:23:95:6A:D1:26:7F:64:B6:7B:F9:3D:EF:72:5D:0C:5E:25:1F:45
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D24
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/QiOVatEmf2S2e_k973JdDF4lH0U.roa
Signing time: Wed 26 Apr 2023 10:31:35 +0000
ROA not before: Wed 26 Apr 2023 10:31:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 113.61.128.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3364 (0xd24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:35 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4223956AD1267F64B67BF93DEF725D0C5E251F45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e6:c8:2a:76:cd:17:58:41:66:0a:d7:a2:80:
6b:7f:73:e9:9e:40:b0:e4:b3:4a:00:74:81:50:54:
d7:9a:be:23:a9:09:59:a3:f4:e0:c6:8f:c1:af:33:
55:2e:c9:15:9d:49:3d:31:f8:58:e2:6e:86:ed:6e:
45:15:42:71:a3:02:48:6d:b1:05:79:fc:f1:9d:0d:
74:49:90:c1:3a:6f:47:a4:b6:67:23:ea:76:06:ea:
83:a3:58:4f:a6:7c:a3:1c:4a:ef:9c:b7:21:07:8d:
8c:7b:0b:db:1d:c3:73:d7:3e:89:b7:77:11:3d:38:
bd:9a:84:c6:c1:cf:a0:8a:d9:f7:5d:8a:c3:86:67:
66:6f:b5:3a:0a:ef:21:c4:16:f9:89:f7:95:c3:7f:
69:3a:a2:57:8c:8a:dd:9b:ab:d8:7d:e3:54:b7:bb:
73:7a:6a:18:1b:7b:f6:5f:fa:48:fd:96:06:89:00:
32:e1:b5:b5:a3:74:db:af:5d:1b:30:cc:54:dd:c4:
d0:89:8f:0c:cf:23:a0:b9:19:d4:25:dd:6b:a8:be:
06:79:9e:85:ff:f9:e0:4f:91:78:4b:b7:24:cc:ba:
71:a2:6a:38:1c:0a:22:d4:eb:c4:38:c8:38:b9:ad:
f1:56:1a:b5:77:ee:50:84:c8:9d:6f:b6:9d:4a:3f:
d0:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:23:95:6A:D1:26:7F:64:B6:7B:F9:3D:EF:72:5D:0C:5E:25:1F:45
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/QiOVatEmf2S2e_k973JdDF4lH0U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.128.0/18
Signature Algorithm: sha256WithRSAEncryption
a9:06:42:b5:6b:22:90:e8:1a:09:2d:bf:3f:51:c3:1a:e6:85:
bd:53:a9:c5:7f:6c:25:07:04:a9:1f:87:70:75:69:e4:78:31:
d9:5a:58:88:fa:e1:d5:d0:02:ef:a6:bf:53:2d:96:c3:ca:06:
e3:54:2a:86:0f:6c:5e:7f:d4:c5:be:de:54:03:2e:e3:c0:70:
ab:69:69:33:d7:c7:10:45:9a:e0:94:05:6f:ae:28:4e:b7:41:
3d:26:0a:f4:3e:b7:e9:2c:1f:c4:90:5b:76:da:01:ea:91:7e:
9e:37:84:6e:d0:41:29:b7:f8:32:3a:a8:6e:7d:d9:5d:f0:f6:
93:28:87:16:eb:a7:5b:ee:cf:95:48:ce:ed:79:77:b5:f3:c6:
01:3e:8f:b3:fd:58:66:6b:75:ac:93:1a:7f:09:19:ac:1c:a7:
a0:20:03:09:c3:cc:ca:f9:72:48:3d:0b:20:0f:db:12:a4:30:
36:a1:46:1c:fc:39:bb:3b:61:9b:b0:56:4c:d3:51:41:b1:83:
65:62:6a:92:14:9a:60:aa:3c:06:16:b5:57:c5:d1:02:97:6d:
ad:1d:03:83:49:b9:f5:25:48:c3:58:c0:ab:5c:18:c9:7d:aa:
db:f4:1d:5d:50:81:e1:fd:f3:ad:16:e9:1d:9f:48:aa:e6:62:
8d:d9:89:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org