Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/TmPZXV5gapbnTcZSi7e_xERy5uw.roa
File: TmPZXV5gapbnTcZSi7e_xERy5uw.roa (raw, json)
Hash identifier: fHhgfqmKNQojZoqlgcuQp3EZeYgtdPNUQMW0DPjCv+A=
Subject key identifier: 4E:63:D9:5D:5E:60:6A:96:E7:4D:C6:52:8B:B7:BF:C4:44:72:E6:EC
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D30
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/TmPZXV5gapbnTcZSi7e_xERy5uw.roa
Signing time: Wed 26 Apr 2023 10:31:39 +0000
ROA not before: Wed 26 Apr 2023 10:31:39 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 210.209.128.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3376 (0xd30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:39 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4E63D95D5E606A96E74DC6528BB7BFC44472E6EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e5:a1:a2:97:b7:ea:12:c7:6e:cb:80:7e:03:
bd:81:32:07:3e:fc:2f:bb:52:c9:8f:55:2d:cd:14:
41:ba:fe:1c:cf:b4:6a:b0:44:8a:21:2c:45:3f:f7:
84:9c:71:0e:7e:70:ba:36:ee:ce:a0:78:43:28:9d:
a3:e5:ca:d6:d1:4f:36:07:31:ec:37:37:4d:ad:3b:
bb:af:78:73:f2:77:9a:71:6f:f4:6a:1c:e2:94:a5:
4d:b3:09:28:b5:d7:2c:c0:e5:8a:b4:f1:0d:cb:42:
e8:81:d4:3f:1d:d5:e6:31:e8:db:40:52:34:98:02:
0d:13:85:09:63:6f:35:1c:66:26:bf:fd:71:f5:96:
70:66:07:ff:44:f9:09:9d:6b:ff:45:5b:56:4f:b7:
6f:7b:4a:18:0b:2d:64:e8:8a:ab:2f:24:73:7f:8a:
29:d3:7f:d8:a2:a2:ba:84:f3:29:47:bc:a8:ea:5b:
9e:20:cc:9d:79:3d:0a:b8:e2:66:a5:9c:43:ec:3d:
f7:33:fd:fa:c2:84:66:47:e0:f7:ea:b4:fd:c0:18:
74:a1:20:50:b9:02:ce:9a:6f:14:c6:c0:c1:d1:43:
e5:51:1f:4d:c9:4d:aa:7c:7d:5d:b0:9b:22:6d:8b:
6c:d7:d6:25:09:3c:4d:7d:d5:a8:02:69:3e:1f:25:
45:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:63:D9:5D:5E:60:6A:96:E7:4D:C6:52:8B:B7:BF:C4:44:72:E6:EC
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/TmPZXV5gapbnTcZSi7e_xERy5uw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.209.128.0/19
Signature Algorithm: sha256WithRSAEncryption
b5:40:20:4b:28:ef:ba:44:d7:fa:75:7b:8f:dc:af:b0:86:3b:
14:97:b4:18:f8:48:35:57:d9:a0:6f:03:54:56:bb:be:83:aa:
90:df:a2:3e:66:b5:36:f0:65:c0:35:07:0c:04:da:f0:0c:78:
39:67:4e:22:42:d6:96:88:00:2c:8a:33:96:25:e1:83:07:54:
30:50:44:51:f6:c1:c4:c2:62:9f:ef:1a:ed:80:db:e9:20:12:
e7:72:9d:4e:65:88:fd:50:18:1f:9d:80:eb:3b:9d:f9:0a:ab:
80:35:43:93:78:73:65:54:61:03:c3:8f:b1:19:77:45:55:5a:
3b:c1:ef:ad:ff:af:5b:30:ba:ab:d3:1c:5b:c2:d7:a1:53:14:
41:ca:b0:2b:d9:ae:98:b3:d3:87:28:72:5c:b7:80:c2:c7:5f:
fb:e1:94:ce:39:0e:7d:32:29:49:5e:c2:8f:0c:9c:f3:00:49:
50:09:15:3f:9c:20:34:8b:df:e3:7b:d2:82:d4:f1:fa:e9:3d:
8d:77:4a:64:4a:49:93:24:fe:1d:e8:e8:d8:b8:ce:c2:39:c8:
d5:f7:1b:58:c0:8b:5a:98:ac:1a:b0:bc:54:21:9a:21:5a:c3:
7b:46:f1:41:1e:f4:7f:57:83:17:42:61:f2:4e:b0:82:20:b0:
63:3d:a5:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org