Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/Vw1zRgJydmtNJvxkxMK8pIAKJ1s.roa
File: Vw1zRgJydmtNJvxkxMK8pIAKJ1s.roa (raw, json)
Hash identifier: yXMeHAzDeJElZlUrDvf29PLjsYhBh5X6kyuukAaK8Oo=
Subject key identifier: 57:0D:73:46:02:72:76:6B:4D:26:FC:64:C4:C2:BC:A4:80:0A:27:5B
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E4E
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Vw1zRgJydmtNJvxkxMK8pIAKJ1s.roa
Signing time: Fri 01 Sep 2023 08:49:32 +0000
ROA not before: Fri 01 Sep 2023 08:49:32 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 113.61.144.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3662 (0xe4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:32 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=570D73460272766B4D26FC64C4C2BCA4800A275B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f0:09:c0:ec:5f:45:c3:bf:a8:c2:23:63:0f:
ae:01:0c:41:57:22:59:08:c7:d3:c2:be:c9:c5:ce:
ee:6c:79:a2:1c:42:be:89:ba:5a:17:a9:5b:52:ba:
81:6b:68:a7:e7:27:d4:56:55:b1:12:0a:b0:d7:c9:
d9:97:b2:1b:28:ee:4e:6a:f6:e8:02:45:a1:c2:5e:
13:b1:8d:69:44:c6:b1:e9:41:50:4d:de:80:4e:5b:
39:58:37:30:d1:3c:ef:50:37:23:e5:4b:51:1b:49:
eb:37:f9:99:d0:19:66:01:65:3f:10:25:1b:b7:a0:
bc:97:a1:23:81:f6:f1:79:64:75:5b:67:20:d9:19:
39:2e:e7:0a:c7:9f:ac:4c:b0:c5:80:11:08:6b:68:
76:6d:32:cf:65:a6:56:eb:22:f9:95:7b:eb:0d:c2:
5a:12:84:40:64:c3:25:69:00:71:c4:2e:f8:6c:46:
b9:b9:09:60:f0:19:eb:37:6c:ed:19:95:4e:9c:f8:
e7:97:86:78:ac:f3:87:6b:cf:7f:f0:4a:da:cf:21:
8a:96:71:3b:77:91:17:4e:50:75:5c:7a:90:ab:2c:
16:c8:62:06:d3:c8:a7:67:a5:24:22:f4:6c:30:31:
bc:8f:83:fb:e8:30:0a:4e:81:52:7b:e0:92:87:a1:
f1:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:0D:73:46:02:72:76:6B:4D:26:FC:64:C4:C2:BC:A4:80:0A:27:5B
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Vw1zRgJydmtNJvxkxMK8pIAKJ1s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.144.0/20
Signature Algorithm: sha256WithRSAEncryption
3a:bf:bf:81:ae:54:a8:10:79:6d:41:84:60:89:73:4f:00:24:
22:76:eb:12:7a:c1:40:cc:9b:80:7c:95:24:48:ad:48:8b:0e:
e3:00:10:24:34:03:29:0b:02:5b:2a:ad:dd:b5:a8:ae:e4:0e:
24:08:59:b4:ff:69:bb:e0:fe:c1:ef:26:45:ae:6d:f3:98:3a:
78:39:7b:10:d5:0a:e8:bf:e3:e6:5f:8b:18:2e:1d:2c:b5:27:
3e:7b:0d:39:ce:4e:fc:50:d4:34:06:2f:2f:e7:35:a8:9a:c1:
b8:1b:0a:47:9d:b1:07:72:55:bd:f6:0d:25:6d:63:f5:b1:96:
0f:4a:33:a1:62:19:57:cf:4e:14:9d:f9:23:9b:4c:c1:8c:a4:
3f:29:d2:43:5b:b3:c8:a3:f1:fc:2f:bd:d0:9c:3b:4c:46:d2:
eb:10:aa:62:29:5e:1d:ba:77:f1:77:73:a4:9c:77:50:ab:7a:
77:4b:6b:25:42:3b:13:e1:f2:7a:8d:4d:48:80:5b:9f:c8:53:
79:40:d0:a2:f5:97:85:8f:9c:0c:4f:d9:89:7e:7c:b7:ca:1a:
dc:c7:ff:7f:ad:66:c4:2b:a6:dd:46:eb:92:db:a9:25:12:0f:
bd:61:dd:f8:c4:56:b0:16:60:3f:68:37:52:c8:bf:70:c5:08:
59:4c:61:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:40 2025 by rpki-client