Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/W3QOGxD_1MlubANuvuWPnUhtjeU.roa
File: W3QOGxD_1MlubANuvuWPnUhtjeU.roa (raw, json)
Hash identifier: 81uadqc7aanoJTw5bUq+Sd3TCR+XCHVvZwtyl1focJk=
Subject key identifier: 5B:74:0E:1B:10:FF:D4:C9:6E:6C:03:6E:BE:E5:8F:9D:48:6D:8D:E5
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 08FA
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/W3QOGxD_1MlubANuvuWPnUhtjeU.roa
Signing time: Tue 24 Nov 2020 03:08:22 +0000
ROA not before: Tue 24 Nov 2020 03:08:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17809
IP address blocks: 203.222.0.0/19 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2298 (0x8fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Nov 24 03:08:22 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5B740E1B10FFD4C96E6C036EBEE58F9D486D8DE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ae:46:ef:cc:40:86:e0:9c:bd:1a:c2:89:64:
3f:25:da:12:1b:e5:65:31:27:f5:86:ef:c9:32:7d:
3a:1c:86:aa:9f:3d:09:78:7f:96:51:a0:d3:32:c9:
17:fe:6d:71:95:86:2d:6b:51:91:9a:07:c0:2c:09:
6a:17:e0:cc:39:4c:2f:6c:2c:cd:cd:70:a0:54:56:
6b:35:f9:5c:a5:83:e8:e9:a3:0f:d0:4d:37:de:15:
bd:d9:61:2e:97:75:82:1a:51:3f:36:92:cf:58:23:
1e:c6:91:d4:dd:07:0c:23:44:96:ff:7a:04:cd:97:
a6:a8:57:83:4d:d5:66:70:d6:e0:92:c7:30:a0:8b:
89:7e:a8:df:8a:f0:9f:26:62:ae:2e:4a:d9:3c:74:
a9:bb:20:5d:7d:ea:73:0e:c6:7f:72:15:93:fb:d4:
35:fd:15:d7:80:94:d9:6d:0e:bc:5e:10:80:98:46:
88:f5:f3:6c:44:08:6a:5c:a7:53:fa:e3:cf:92:cc:
26:96:73:27:1c:ed:5d:c5:5f:02:31:7d:90:eb:d3:
94:49:67:fa:06:4a:03:af:e8:53:a9:65:67:a8:e9:
ca:cb:9f:9b:70:f2:26:c9:a8:be:8b:b2:27:8f:fe:
9c:b5:3c:70:8c:a2:07:3d:f3:67:2f:ba:12:68:66:
ca:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:74:0E:1B:10:FF:D4:C9:6E:6C:03:6E:BE:E5:8F:9D:48:6D:8D:E5
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/W3QOGxD_1MlubANuvuWPnUhtjeU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.222.0.0/19
Signature Algorithm: sha256WithRSAEncryption
8e:4d:81:dc:a2:59:50:ca:88:28:d5:21:55:23:ab:08:c9:f8:
81:e1:eb:7b:79:50:0a:27:d1:8f:ee:26:50:77:f6:cb:fa:d4:
61:90:22:60:9a:f6:4e:49:3e:a2:fa:01:63:2d:fb:73:1b:64:
a8:5d:47:8d:bd:b6:94:c0:5d:28:0d:07:72:8f:94:86:9e:d6:
13:b4:43:14:7e:b3:e3:9b:11:4c:8f:52:49:92:63:5e:02:24:
b9:23:36:72:4d:68:82:7e:d4:7c:ec:bf:10:00:a1:40:d5:cb:
d4:13:86:20:4c:58:b6:31:e3:56:31:5c:14:f4:5b:79:94:07:
11:bc:b2:12:9f:d5:0f:dc:05:85:52:ea:b6:54:13:74:40:fb:
b1:c3:92:9c:e9:83:fa:e5:b7:69:11:3f:37:bf:2b:4e:6f:07:
85:85:39:ff:b7:6a:49:8a:45:7e:87:34:b6:de:ba:6b:73:2d:
db:68:60:03:6a:5c:ab:d9:37:15:23:95:52:3a:3d:86:43:9f:
c6:19:40:09:f5:18:2f:d9:78:21:9e:cd:3e:66:c5:1a:0b:cf:
9e:cb:5f:98:cd:58:05:60:5f:15:fd:a8:ed:f4:96:87:a4:72:
0d:9c:84:f9:53:7f:9c:40:ef:2a:b8:c3:31:61:28:a5:14:c1:
04:52:dd:b0
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCPowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMDExMjQw
MzA4MjJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDVCNzQwRTFCMTBGRkQ0
Qzk2RTZDMDM2RUJFRTU4RjlENDg2RDhERTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCbrkbvzECG4Jy9GsKJZD8l2hIb5WUxJ/WG78kyfTochqqfPQl4
f5ZRoNMyyRf+bXGVhi1rUZGaB8AsCWoX4Mw5TC9sLM3NcKBUVms1+Vylg+jpow/Q
TTfeFb3ZYS6XdYIaUT82ks9YIx7GkdTdBwwjRJb/egTNl6aoV4NN1WZw1uCSxzCg
i4l+qN+K8J8mYq4uStk8dKm7IF196nMOxn9yFZP71DX9FdeAlNltDrxeEICYRoj1
82xECGpcp1P648+SzCaWcycc7V3FXwIxfZDr05RJZ/oGSgOv6FOpZWeo6crLn5tw
8ibJqL6LsieP/py1PHCMogc982cvuhJoZsqpAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUW3QOGxD/1MlubANuvuWPnUhtjeUwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvVzNRT0d4RF8xTWx1YkFOdXZ1V1Bu
VWh0amVVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcveADAN
BgkqhkiG9w0BAQsFAAOCAQEAjk2B3KJZUMqIKNUhVSOrCMn4geHre3lQCifRj+4m
UHf2y/rUYZAiYJr2Tkk+ovoBYy37cxtkqF1Hjb22lMBdKA0Hco+Uhp7WE7RDFH6z
45sRTI9SSZJjXgIkuSM2ck1ogn7UfOy/EAChQNXL1BOGIExYtjHjVjFcFPRbeZQH
EbyyEp/VD9wFhVLqtlQTdED7scOSnOmD+uW3aRE/N78rTm8HhYU5/7dqSYpFfoc0
tt66a3Mt22hgA2pcq9k3FSOVUjo9hkOfxhlACfUYL9l4IZ7NPmbFGgvPnstfmM1Y
BWBfFf2o7fSWh6RyDZyE+VN/nEDvKrjDMWEopRTBBFLdsA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org