Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/V78jShag8RW4PWQQsNyyLtyWeZw.roa
File: V78jShag8RW4PWQQsNyyLtyWeZw.roa (raw, json)
Hash identifier: Kd9SqBEr0dX6IH7GcGuNes9X7OppckWr7VjTerjc0no=
Subject key identifier: 57:BF:23:4A:16:A0:F1:15:B8:3D:64:10:B0:DC:B2:2E:DC:96:79:9C
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0AD2
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/V78jShag8RW4PWQQsNyyLtyWeZw.roa
Signing time: Thu 16 Dec 2021 02:19:13 +0000
ROA not before: Thu 16 Dec 2021 02:19:13 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17809
IP address blocks: 27.96.224.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2770 (0xad2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Dec 16 02:19:13 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=57BF234A16A0F115B83D6410B0DCB22EDC96799C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:5f:b9:0f:93:c6:5f:12:a4:b3:63:cc:57:ac:
f9:09:26:f3:bc:f3:ba:18:c9:e6:02:4b:f1:36:cf:
30:3c:1c:99:1f:97:77:5f:40:19:f3:1e:b0:ea:06:
55:66:60:48:02:fe:16:b1:03:6e:2a:f0:5d:62:72:
38:c0:8e:aa:23:5e:5f:89:5c:68:f2:a3:9e:6a:c4:
7d:30:ac:b3:b1:50:88:a8:f2:d3:e7:ec:ab:5d:e4:
54:12:a3:ca:9d:41:e5:af:78:14:49:4b:d3:ae:dd:
4c:c1:64:b2:47:d1:41:4a:61:a2:49:ce:da:ec:d6:
5a:7d:5e:6c:1a:ae:51:a3:ca:9c:ef:f6:a7:df:42:
b1:d8:f3:3a:e2:3e:ea:9c:6f:61:83:4d:0a:18:22:
8d:f6:1c:a3:ce:41:e5:62:f5:fb:fb:f1:a6:30:a9:
9d:7c:fd:d9:fb:84:a9:fe:9b:fa:7f:c7:81:f5:39:
a0:14:ce:59:e8:53:95:49:66:ef:19:98:48:5f:23:
35:95:04:dc:db:1f:ae:d8:2f:d8:7b:54:6d:58:ce:
52:c5:7f:a7:fe:c2:8e:af:65:8d:f4:91:be:a9:40:
13:24:6c:72:03:3a:6f:f4:62:bc:2f:0b:24:20:b8:
20:8d:38:ee:52:26:40:76:e7:1e:9b:b8:61:78:66:
4e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:BF:23:4A:16:A0:F1:15:B8:3D:64:10:B0:DC:B2:2E:DC:96:79:9C
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/V78jShag8RW4PWQQsNyyLtyWeZw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.224.0/21
Signature Algorithm: sha256WithRSAEncryption
56:2a:7f:23:ba:88:34:46:bc:51:71:fe:f2:49:4b:56:ca:42:
20:20:bd:dd:33:24:2f:0c:38:48:40:ee:be:88:cd:6d:86:c1:
7c:96:ea:90:33:52:2c:da:74:a7:12:27:49:fd:fa:04:cb:f3:
96:6c:4b:2c:67:23:b2:fe:ae:4a:0d:6e:91:03:12:4a:62:90:
41:bf:3b:35:9e:5f:b8:62:a0:ed:ef:6d:5c:9a:12:40:fb:6f:
b1:c1:5e:6b:d1:eb:49:fd:9b:de:6a:5f:89:fd:01:0e:c7:54:
36:09:2e:72:bb:42:5d:48:bf:bf:0b:4e:d9:1e:e8:c2:c9:e7:
fd:80:dd:64:20:73:1a:95:38:4b:dc:9d:95:e2:a9:b2:bc:10:
8b:4b:97:68:65:2d:83:03:ee:2d:de:d2:42:62:31:f1:3f:bb:
d4:bd:57:9e:be:04:50:58:be:b7:32:18:84:48:5e:d5:4f:f5:
c2:57:82:aa:11:87:7c:90:ee:11:bc:f2:cb:43:4c:c3:3a:b3:
bb:99:72:34:a6:32:58:4f:65:64:80:11:d8:7e:6a:92:60:33:
2a:78:c8:b8:8b:c6:3a:1c:d6:16:35:06:72:10:6d:9f:aa:ed:
df:c5:52:e0:1f:c0:66:fe:f0:ae:32:a2:63:dd:15:92:5a:b6:
2c:e7:42:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org