Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/Sy-Ak3tpwcS1gbnAnwSSKjGzGFw.roa
File: Sy-Ak3tpwcS1gbnAnwSSKjGzGFw.roa (raw, json)
Hash identifier: 7vUr5eOa5O9n5qXuhEliHmaQrx2mf0PYJ80biGWxv0M=
Subject key identifier: 4B:2F:80:93:7B:69:C1:C4:B5:81:B9:C0:9F:04:92:2A:31:B3:18:5C
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D41
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Sy-Ak3tpwcS1gbnAnwSSKjGzGFw.roa
Signing time: Wed 26 Apr 2023 10:31:43 +0000
ROA not before: Wed 26 Apr 2023 10:31:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 27.96.248.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3393 (0xd41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:43 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4B2F80937B69C1C4B581B9C09F04922A31B3185C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:bf:ca:0c:73:16:f0:9f:5e:99:64:26:65:7a:
03:5b:2d:a2:36:b4:3e:24:04:fe:10:1e:a6:a4:d6:
fd:81:51:3f:e5:c2:7f:a6:9d:78:3e:16:24:b2:82:
50:49:26:c9:66:cf:87:1e:07:fa:23:a6:d8:96:84:
f6:0a:f5:a8:b0:86:59:3e:5a:e9:e8:a7:41:87:c9:
24:07:49:10:6f:f9:ea:c1:e1:14:5c:74:b5:68:f5:
4b:21:8f:94:2b:24:14:13:54:39:1d:0b:5f:e3:e8:
51:4a:87:4e:56:30:ad:0c:73:c5:2f:8d:34:19:22:
f1:42:2a:3c:89:52:7d:3c:b8:5d:82:b1:3a:f4:6b:
5b:ef:3a:22:f7:d8:c5:9b:42:f1:1a:1e:de:34:28:
ce:9a:ab:23:fd:40:16:62:ea:d4:c1:09:c1:a7:f5:
af:bc:57:20:4a:7d:4f:d2:02:5a:a0:1d:95:fc:c4:
ee:bc:78:5b:50:7e:c2:0b:c2:6f:2d:e5:b8:eb:de:
a5:b3:fe:2e:3f:5d:ee:7d:ef:d5:c8:98:e6:4e:8b:
91:00:cb:f3:ec:cd:8e:34:a7:7a:5a:43:b5:b6:7a:
74:f3:23:16:f6:cd:c3:18:bf:89:50:d5:cd:64:b2:
f9:06:c0:ee:a7:82:64:f2:09:9a:20:dd:87:4f:d7:
8b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:2F:80:93:7B:69:C1:C4:B5:81:B9:C0:9F:04:92:2A:31:B3:18:5C
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Sy-Ak3tpwcS1gbnAnwSSKjGzGFw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.248.0/21
Signature Algorithm: sha256WithRSAEncryption
48:4b:0b:01:ec:15:39:e7:54:9e:87:86:81:62:f6:ec:de:1a:
b3:a0:96:c6:d5:62:5f:0d:51:fa:db:30:05:d2:9a:b4:f7:92:
66:c6:75:35:9b:95:87:2c:6e:db:34:85:41:6c:a5:b3:ed:1b:
b0:ca:0f:50:b6:4c:a8:c1:29:69:8d:5b:a5:6a:48:b9:7a:88:
98:72:11:34:eb:ea:80:ba:47:6b:80:d4:44:70:75:21:60:3b:
85:fa:b5:d2:38:f6:d2:b4:5d:e2:13:9d:e3:dc:0e:90:e1:11:
ef:d8:b2:e7:9c:31:c1:b2:a3:4d:a1:2d:d1:70:29:fd:52:5c:
73:d6:f6:96:69:a3:d0:4a:ff:9e:a6:4d:27:66:90:fd:71:6f:
b0:e7:4f:28:10:ba:ed:58:f7:08:95:7d:96:9d:48:58:68:8b:
56:0e:5a:d7:10:75:e0:9b:df:36:01:c9:f9:a5:0d:c1:9d:6a:
f2:9a:12:67:9a:fc:35:81:e7:00:de:ff:80:7c:33:85:9b:10:
0f:8d:19:5c:c6:c0:d3:5e:82:b0:fe:63:c1:87:93:e9:c7:72:
60:53:13:e9:ed:23:da:22:4b:66:6e:e6:5e:b8:7e:b6:e9:c8:
8b:7f:42:40:0f:e1:59:90:05:13:43:6d:3c:48:f7:73:b5:e1:
3c:0e:1d:36
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDUEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA0MjYx
MDMxNDNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDRCMkY4MDkzN0I2OUMx
QzRCNTgxQjlDMDlGMDQ5MjJBMzFCMzE4NUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDbv8oMcxbwn16ZZCZlegNbLaI2tD4kBP4QHqak1v2BUT/lwn+m
nXg+FiSyglBJJslmz4ceB/ojptiWhPYK9aiwhlk+Wunop0GHySQHSRBv+erB4RRc
dLVo9Ushj5QrJBQTVDkdC1/j6FFKh05WMK0Mc8UvjTQZIvFCKjyJUn08uF2CsTr0
a1vvOiL32MWbQvEaHt40KM6aqyP9QBZi6tTBCcGn9a+8VyBKfU/SAlqgHZX8xO68
eFtQfsILwm8t5bjr3qWz/i4/Xe5979XImOZOi5EAy/PszY40p3paQ7W2enTzIxb2
zcMYv4lQ1c1ksvkGwO6ngmTyCZog3YdP14v/AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUSy+Ak3tpwcS1gbnAnwSSKjGzGFwwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvU3ktQWszdHB3Y1MxZ2JuQW53U1NL
akd6R0Z3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAxtg+DAN
BgkqhkiG9w0BAQsFAAOCAQEASEsLAewVOedUnoeGgWL27N4as6CWxtViXw1R+tsw
BdKatPeSZsZ1NZuVhyxu2zSFQWyls+0bsMoPULZMqMEpaY1bpWpIuXqImHIRNOvq
gLpHa4DURHB1IWA7hfq10jj20rRd4hOd49wOkOER79iy55wxwbKjTaEt0XAp/VJc
c9b2lmmj0Er/nqZNJ2aQ/XFvsOdPKBC67Vj3CJV9lp1IWGiLVg5a1xB14JvfNgHJ
+aUNwZ1q8poSZ5r8NYHnAN7/gHwzhZsQD40ZXMbA016CsP5jwYeT6cdyYFMT6e0j
2iJLZm7mXrh+tunIi39CQA/hWZAFE0NtPEj3c7XhPA4dNg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org