Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/SLSTlWicU8YqZ-6pOmZRNCBQ5Dc.roa
File: SLSTlWicU8YqZ-6pOmZRNCBQ5Dc.roa (raw, json)
Hash identifier: jELIVPdL5yW2hr8FwVK+jtg8zmH/Cvlv29OAWAXhFIk=
Subject key identifier: 48:B4:93:95:68:9C:53:C6:2A:67:EE:A9:3A:66:51:34:20:50:E4:37
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D21
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/SLSTlWicU8YqZ-6pOmZRNCBQ5Dc.roa
Signing time: Wed 26 Apr 2023 10:31:34 +0000
ROA not before: Wed 26 Apr 2023 10:31:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 113.61.240.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3361 (0xd21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:34 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=48B49395689C53C62A67EEA93A6651342050E437
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ad:70:b3:06:f8:b9:11:35:4b:47:bd:da:12:
a0:30:1c:2d:6d:44:85:2f:bd:98:2d:41:ed:35:ca:
a3:be:59:ee:be:18:1a:03:57:a3:4c:69:c8:e3:2a:
89:dd:06:ed:d5:89:f8:da:10:7e:0c:e5:20:50:00:
a3:e2:4d:73:e5:7a:0f:aa:01:40:19:71:25:52:7a:
be:ba:db:50:11:34:5e:3c:e1:8a:86:61:d1:24:ce:
2b:42:01:1c:0f:33:5f:8a:64:14:fb:0a:e9:9d:6a:
4b:de:66:95:c5:e0:8a:70:bc:fc:87:a1:0c:6c:e1:
2a:82:e8:71:77:a5:89:7a:b3:60:c8:5c:08:61:49:
05:b8:76:ef:8f:54:03:97:87:ff:7a:25:25:20:dd:
b8:e2:3d:3e:83:62:2b:65:42:7e:43:82:9e:f3:5f:
3b:75:cd:79:1f:89:d2:59:f1:8a:3d:b1:5f:8e:03:
de:fb:ab:32:8e:46:bd:90:d2:93:ef:d7:ff:d2:fe:
e1:96:40:47:67:a1:f8:d1:de:82:d8:f7:54:de:ab:
3c:f8:a8:3c:6b:9e:dd:19:a0:f8:53:bf:19:dd:6f:
3d:85:68:2f:0d:c4:5b:63:4d:6b:d8:3d:bf:ca:41:
16:23:c3:91:40:61:a0:ba:f5:b4:d7:54:bb:29:cb:
86:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:B4:93:95:68:9C:53:C6:2A:67:EE:A9:3A:66:51:34:20:50:E4:37
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/SLSTlWicU8YqZ-6pOmZRNCBQ5Dc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.240.0/20
Signature Algorithm: sha256WithRSAEncryption
29:3f:40:dc:d6:58:6d:f3:82:f8:1e:d1:90:23:77:d1:79:e5:
5b:95:84:7d:69:6f:b5:a4:30:95:e4:81:7b:1a:d0:0e:48:ac:
8e:da:1f:ba:6e:8a:95:db:e3:80:49:c7:7e:3f:43:9b:24:80:
73:13:ea:b9:2b:25:28:02:b2:16:31:f9:3d:b4:6d:16:a1:79:
5f:b0:7f:24:27:5f:b8:08:1e:0a:da:3f:b9:5f:53:98:4f:03:
dd:75:11:4a:01:ed:90:27:83:17:62:47:73:c7:7d:32:3f:a8:
ae:c5:41:88:14:5d:35:84:d2:30:74:42:18:09:fd:ef:0e:cf:
dc:b3:84:69:e4:1e:7d:da:2d:1b:3c:60:ce:1e:8c:62:3d:ad:
19:5c:81:9c:91:14:ba:a9:4b:45:f4:4d:11:b8:63:45:f7:8d:
47:04:dd:12:63:57:1a:d2:69:ec:5a:dc:fe:72:10:d1:85:71:
79:ad:63:1b:2a:8e:69:9c:4e:8b:c2:4c:8d:08:98:9f:a0:d2:
be:e7:21:17:0f:6f:0d:c3:3f:a8:d2:4d:10:9f:f2:01:21:cc:
a9:a7:19:f7:e1:a6:07:a3:74:9e:56:00:bb:20:38:30:16:20:
e7:88:89:5f:da:d3:d9:36:e8:04:67:9d:53:33:51:ce:58:4b:
d3:06:98:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org