Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/RPUSRHeqej0yGD1uEC807ly7ZRo.roa
File: RPUSRHeqej0yGD1uEC807ly7ZRo.roa (raw, json)
Hash identifier: FS9f8x2wbOuDFA9UtcjOUZQwgwGavzIK6ElrMdZVHT0=
Subject key identifier: 44:F5:12:44:77:AA:7A:3D:32:18:3D:6E:10:2F:34:EE:5C:BB:65:1A
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D3C
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/RPUSRHeqej0yGD1uEC807ly7ZRo.roa
Signing time: Wed 26 Apr 2023 10:31:42 +0000
ROA not before: Wed 26 Apr 2023 10:31:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 27.96.228.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3388 (0xd3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:42 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=44F5124477AA7A3D32183D6E102F34EE5CBB651A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:77:ce:1b:b6:58:3e:df:ee:6f:1a:17:a8:c6:
aa:1d:5d:32:38:43:b1:15:40:4b:cb:58:58:84:f7:
be:04:31:4c:17:cc:db:59:b1:29:37:06:0a:6f:a9:
57:22:df:2c:ad:13:83:d3:79:0b:88:1c:fa:a8:72:
31:b3:29:d9:b8:d0:32:3f:12:60:79:2f:f0:ef:25:
2b:46:d6:01:b6:c8:de:21:b1:42:8d:9d:09:53:9c:
98:09:a2:9b:40:e3:49:dd:41:c0:ef:48:fe:f4:1e:
6d:65:2c:30:7d:d9:bf:5f:2e:4c:d4:b0:5d:69:06:
14:0b:a3:9d:cb:3c:9c:5d:49:97:fe:7f:4c:c7:7b:
9a:5d:c2:87:bc:a2:83:99:4b:64:de:c2:be:9d:5c:
16:c5:f8:fd:4c:93:6e:b9:e7:18:bf:3a:15:f4:3c:
83:71:1d:7b:2b:8c:d8:95:fc:22:fe:8a:b0:e4:f8:
79:d5:13:97:85:b9:67:94:ed:78:2f:da:82:a4:b4:
b9:81:5d:2f:44:32:ad:24:b9:ff:0f:16:ca:5e:d2:
5a:cf:cd:f9:7b:e8:8a:5a:bd:90:ab:f5:63:95:80:
90:e9:47:62:87:48:90:fb:d2:01:a0:67:75:9b:0c:
6b:3f:12:a2:4c:be:68:99:74:aa:39:70:82:67:3a:
48:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:F5:12:44:77:AA:7A:3D:32:18:3D:6E:10:2F:34:EE:5C:BB:65:1A
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/RPUSRHeqej0yGD1uEC807ly7ZRo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.228.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:d2:ff:6d:65:be:fe:7f:81:d0:c3:ca:ab:30:2c:0d:72:ad:
05:cf:22:e4:6e:21:62:0f:bf:88:00:39:fc:26:05:a1:43:52:
97:07:f5:43:f9:d9:19:5a:5f:a3:a4:3e:6a:98:6e:eb:8d:3e:
a9:7f:87:28:f7:54:a3:4e:0f:b2:cd:3d:c0:9b:ed:a1:db:2c:
1f:26:dd:a0:13:20:b3:f7:a2:8e:3f:4f:1f:61:da:54:68:90:
e1:f7:f6:96:4d:1b:b0:aa:3d:f2:77:c5:a7:03:a0:af:34:8b:
05:63:7e:1b:5d:ea:5c:f2:47:54:72:39:f6:f9:17:9c:71:09:
94:92:26:28:5f:ba:36:22:5e:08:c0:f5:b8:39:ca:f6:e6:71:
ab:6a:a5:16:31:99:9e:c1:1c:4f:e6:c8:b4:27:ad:9d:9e:14:
1b:c6:f7:f1:03:27:c1:c2:2c:61:c9:c5:56:d1:4d:d0:32:83:
17:84:6d:17:12:7d:15:07:96:bc:4d:4a:e2:ce:56:64:26:f3:
f2:e4:a9:f4:2c:16:b8:d4:3b:1c:0b:cf:4b:2a:08:9a:49:4c:
6a:c8:f3:eb:8d:85:31:19:2b:17:cb:1b:a7:0c:fc:49:61:49:
ce:90:13:f8:d7:35:76:82:7c:ed:0c:33:6c:87:32:dd:25:d1:
ae:dc:34:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org