Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/RxQ01lN9_vCL5_D1zAPedj3WKNg.roa
File: RxQ01lN9_vCL5_D1zAPedj3WKNg.roa (raw, json)
Hash identifier: M7rPWCT8Udiukzwa+hw6oiy4S6XhcI6oVLx16Eo28bE=
Subject key identifier: 47:14:34:D6:53:7D:FE:F0:8B:E7:F0:F5:CC:03:DE:76:3D:D6:28:D8
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 08FC
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/RxQ01lN9_vCL5_D1zAPedj3WKNg.roa
Signing time: Tue 24 Nov 2020 03:10:23 +0000
ROA not before: Tue 24 Nov 2020 03:10:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17809
IP address blocks: 210.209.128.0/17 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2300 (0x8fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Nov 24 03:10:23 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=471434D6537DFEF08BE7F0F5CC03DE763DD628D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:1e:c1:52:0a:13:4b:3e:30:e7:14:e2:86:f7:
98:fd:77:44:2d:11:81:1f:6a:82:e5:9d:de:77:ff:
5e:53:2c:01:db:1f:75:a6:62:92:00:d2:56:10:9e:
84:6d:f5:70:7d:8f:71:26:71:12:c9:45:65:9c:1a:
cb:30:53:9d:2b:0c:83:49:8b:36:db:32:12:05:24:
ef:9a:ee:f3:47:da:e5:0f:4b:cf:3d:48:1a:c9:86:
f2:20:6d:42:5b:e8:ae:96:11:d1:0c:5e:90:53:ab:
81:25:f7:b1:3b:5e:e6:2d:59:15:ca:76:f3:8f:9f:
b5:2e:9b:8d:b1:f8:cb:6d:94:b7:b3:06:14:e9:ac:
58:65:35:df:e5:7c:34:63:44:de:95:97:df:61:1a:
03:72:f2:2d:35:c5:65:d8:76:27:95:c3:f4:a0:df:
90:53:a5:7d:13:ad:3b:0b:57:a9:fa:33:25:1e:5a:
85:0c:18:ca:81:ed:7a:46:7a:cb:2a:03:d9:0e:f4:
98:83:28:93:7a:5f:f7:ae:5c:93:6d:ff:a8:d4:b9:
9c:18:5d:ec:5b:d4:19:ff:3a:81:f5:8d:d5:09:5e:
9a:46:9d:ec:75:ac:ef:04:cc:bb:35:e2:f8:9d:13:
6a:27:78:62:2e:de:d0:b7:6b:ec:07:61:66:12:52:
65:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:14:34:D6:53:7D:FE:F0:8B:E7:F0:F5:CC:03:DE:76:3D:D6:28:D8
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/RxQ01lN9_vCL5_D1zAPedj3WKNg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.209.128.0/17
Signature Algorithm: sha256WithRSAEncryption
6c:3f:9e:9f:3a:f6:77:d5:c5:dd:c3:ce:86:8d:39:5a:20:d9:
bd:9f:4a:fe:bf:0b:3b:eb:96:3a:3e:28:37:31:9e:a6:bd:4d:
a2:cc:89:0b:39:04:a8:35:bc:75:dc:e2:89:fe:83:62:06:7d:
a7:1c:ec:1b:59:3e:5e:cb:e5:aa:e1:cb:cb:92:81:da:33:b1:
fc:30:45:fa:7b:0d:5a:ee:dd:5f:05:a2:5a:d1:54:74:0c:11:
3d:cb:3a:a7:a8:c6:e5:77:fe:14:7e:d1:3b:3d:9f:93:43:03:
0a:a6:f5:bd:55:f9:a3:aa:80:82:21:20:8a:e3:2d:be:3e:25:
35:b3:dc:3c:92:45:8a:69:e5:7a:a8:7a:b6:14:15:b4:ca:73:
55:e6:60:b2:ba:da:1a:f8:85:4f:9b:c2:ae:d2:4e:a2:92:d5:
bc:eb:29:7b:e0:7f:13:28:1f:4c:c7:6a:ce:4d:79:0f:7b:1b:
5c:63:e7:e8:3e:b0:cd:8f:13:16:08:13:49:ed:a1:25:1d:1d:
4b:f2:83:26:ac:26:22:d7:c2:a4:ac:f5:48:28:c1:98:e2:cb:
f8:c4:3a:6b:03:62:12:66:dd:57:91:bb:0f:de:93:1c:ee:0a:
bb:5d:1e:70:2c:20:69:78:76:fe:74:a4:06:6c:3a:2f:53:ae:
1d:66:bd:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org