Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/VJ13li3hvo6MKyQ2Bf41Lk885IM.roa
File: VJ13li3hvo6MKyQ2Bf41Lk885IM.roa (raw, json)
Hash identifier: ehcBRo1GHapAIbaIyuaozyAl6c6D44GUvSfy9ADRopE=
Subject key identifier: 54:9D:77:96:2D:E1:BE:8E:8C:2B:24:36:05:FE:35:2E:4F:3C:E4:83
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0A8A
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/VJ13li3hvo6MKyQ2Bf41Lk885IM.roa
Signing time: Wed 29 Sep 2021 02:56:13 +0000
ROA not before: Wed 29 Sep 2021 02:56:13 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17809
IP address blocks: 111.67.48.0/20 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2698 (0xa8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 29 02:56:13 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=549D77962DE1BE8E8C2B243605FE352E4F3CE483
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f8:77:bb:0e:04:19:1d:a0:d0:fd:d3:6b:52:
c2:d3:a8:f5:77:a4:d9:a2:4a:13:4b:d3:55:33:10:
81:53:46:8e:59:fa:46:24:f4:a4:cc:cb:81:c6:e4:
38:4c:0e:84:32:89:86:a6:6a:21:4b:8f:65:d9:7e:
c9:59:d4:46:38:e9:b9:3a:75:6d:42:16:49:ac:54:
fa:39:11:a7:93:64:11:35:e7:9b:97:41:23:30:b4:
5f:dc:0e:89:ae:de:74:d0:b6:0f:c4:68:3f:2f:42:
0c:cc:1c:f8:b2:09:c6:53:d1:1f:25:57:6c:26:24:
df:2d:b8:26:aa:9a:ab:ab:23:9d:b3:83:bb:bb:cc:
7b:89:bc:2f:59:b3:83:82:0c:d5:4e:b4:54:d2:ac:
b5:13:2b:04:18:4b:20:35:5a:59:78:99:0a:4c:3d:
86:d1:5f:9c:1f:ed:2d:ac:d4:e7:da:6d:dc:38:eb:
43:31:d4:5e:90:df:1b:3a:94:37:3c:a0:72:77:f8:
31:78:b9:ff:02:57:4f:49:68:74:81:49:97:8b:d1:
b1:94:a9:5c:0a:48:98:ae:05:c1:cc:cb:46:15:c2:
09:76:cc:15:6b:06:59:48:3b:0b:e6:17:34:2b:b7:
0e:5a:f5:14:ce:3c:e6:a7:c7:9e:e8:e5:13:19:60:
69:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:9D:77:96:2D:E1:BE:8E:8C:2B:24:36:05:FE:35:2E:4F:3C:E4:83
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/VJ13li3hvo6MKyQ2Bf41Lk885IM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
111.67.48.0/20
Signature Algorithm: sha256WithRSAEncryption
00:aa:c2:60:ed:40:76:9f:a7:db:3c:3c:54:d7:b8:d5:bc:44:
8f:47:08:65:d3:10:79:fc:e6:b3:23:e0:88:e9:35:ad:7a:68:
0e:f8:d3:33:15:6f:4b:4d:a9:c3:f8:24:f5:43:06:09:7b:71:
01:2a:e8:ae:0d:76:6c:12:62:7c:47:5a:15:4e:5e:6f:b6:ee:
06:e3:7f:d0:32:7d:e1:21:84:7e:be:24:c4:97:eb:8d:9d:55:
8d:75:20:60:8a:43:fd:17:fe:3c:b6:01:41:da:25:ef:26:48:
21:53:ea:4f:50:e0:a8:4f:6d:7c:78:f3:6d:5b:bd:84:0e:c0:
97:e2:b5:b1:04:25:31:2b:5e:a0:5d:25:f3:0a:af:53:ef:0e:
c5:a2:e4:5c:e4:ce:bf:87:64:e0:99:df:76:d6:ae:c2:9f:9c:
84:55:6b:10:0e:1d:b4:91:ad:81:18:a1:f4:84:8a:0c:33:37:
4e:19:2a:c9:9a:7b:9d:d6:a6:06:6d:11:af:3e:bd:95:86:42:
39:2c:c5:c0:33:23:41:54:19:e8:c0:cc:91:35:8b:a6:4a:ab:
dd:78:0c:91:7b:fd:c1:32:1c:70:1d:37:78:aa:8f:51:e0:60:
6d:f4:00:26:ed:05:29:2b:54:42:17:59:4f:ac:0c:1a:62:66:
aa:db:eb:ac
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCoowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMTA5Mjkw
MjU2MTNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDU0OUQ3Nzk2MkRFMUJF
OEU4QzJCMjQzNjA1RkUzNTJFNEYzQ0U0ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDF+He7DgQZHaDQ/dNrUsLTqPV3pNmiShNL01UzEIFTRo5Z+kYk
9KTMy4HG5DhMDoQyiYamaiFLj2XZfslZ1EY46bk6dW1CFkmsVPo5EaeTZBE155uX
QSMwtF/cDomu3nTQtg/EaD8vQgzMHPiyCcZT0R8lV2wmJN8tuCaqmqurI52zg7u7
zHuJvC9Zs4OCDNVOtFTSrLUTKwQYSyA1Wll4mQpMPYbRX5wf7S2s1Ofabdw460Mx
1F6Q3xs6lDc8oHJ3+DF4uf8CV09JaHSBSZeL0bGUqVwKSJiuBcHMy0YVwgl2zBVr
BllIOwvmFzQrtw5a9RTOPOanx57o5RMZYGmBAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUVJ13li3hvo6MKyQ2Bf41Lk885IMwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvVkoxM2xpM2h2bzZNS3lRMkJmNDFM
azg4NUlNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBG9DMDAN
BgkqhkiG9w0BAQsFAAOCAQEAAKrCYO1Adp+n2zw8VNe41bxEj0cIZdMQefzmsyPg
iOk1rXpoDvjTMxVvS02pw/gk9UMGCXtxASrorg12bBJifEdaFU5eb7buBuN/0DJ9
4SGEfr4kxJfrjZ1VjXUgYIpD/Rf+PLYBQdol7yZIIVPqT1DgqE9tfHjzbVu9hA7A
l+K1sQQlMSteoF0l8wqvU+8OxaLkXOTOv4dk4Jnfdtauwp+chFVrEA4dtJGtgRih
9ISKDDM3ThkqyZp7ndamBm0Rrz69lYZCOSzFwDMjQVQZ6MDMkTWLpkqr3XgMkXv9
wTIccB03eKqPUeBgbfQAJu0FKStUQhdZT6wMGmJmqtvrrA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org