Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/W5RMoeC1oHXV_iZEMP1sv8XCN20.roa
File: W5RMoeC1oHXV_iZEMP1sv8XCN20.roa (raw, json)
Hash identifier: 9TabCeOFtWoZRxz99Pk8IJmL6RCIwf3IFMQvh3Xq3BY=
Subject key identifier: 5B:94:4C:A1:E0:B5:A0:75:D5:FE:26:44:30:FD:6C:BF:C5:C2:37:6D
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E73
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/W5RMoeC1oHXV_iZEMP1sv8XCN20.roa
Signing time: Fri 01 Sep 2023 08:49:42 +0000
ROA not before: Fri 01 Sep 2023 08:49:42 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 113.61.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3699 (0xe73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:42 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5B944CA1E0B5A075D5FE264430FD6CBFC5C2376D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ee:5c:3f:22:e2:0b:09:33:53:7f:8b:ee:aa:
ed:87:ad:91:a4:df:f4:f3:61:e7:ca:4b:c2:14:ce:
3c:9e:78:df:be:ad:e0:e6:59:56:2a:65:36:35:4c:
07:de:5f:be:80:e7:bc:53:1d:ad:40:43:9e:f8:e7:
da:6c:fc:1c:29:53:27:05:c4:cb:80:ea:8e:ea:f2:
5e:e4:e8:e9:ee:a3:39:68:48:30:81:e6:ee:fb:ba:
55:a4:6c:48:5f:6c:c2:c3:71:70:08:44:e7:51:7d:
d6:9a:28:56:5c:8f:d6:1b:b0:4c:98:b2:50:40:8c:
c9:38:57:1c:fc:a6:5f:68:01:a4:8f:61:c1:47:14:
51:65:c3:7c:b9:da:29:b3:9d:14:2c:b7:c1:4d:dd:
ee:0d:f5:78:d1:f4:a2:f6:56:9f:5d:c0:b3:06:90:
cc:b7:d5:41:5d:ff:13:f6:ea:4b:b4:96:a7:88:3d:
6c:50:45:d7:51:c0:e4:a6:93:65:33:f7:80:dd:b0:
9a:50:58:df:ae:0d:83:21:ac:ff:10:5e:eb:88:ed:
b2:57:0d:44:c1:d6:2d:24:7c:08:42:7a:a9:0d:f9:
b0:a3:77:8d:2b:7e:b6:39:c7:43:3e:06:42:fb:8a:
2d:18:ed:83:74:28:f2:f8:bb:bd:90:0c:4c:fb:ed:
47:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:94:4C:A1:E0:B5:A0:75:D5:FE:26:44:30:FD:6C:BF:C5:C2:37:6D
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/W5RMoeC1oHXV_iZEMP1sv8XCN20.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.174.0/24
Signature Algorithm: sha256WithRSAEncryption
47:90:53:d5:f2:5a:41:7b:77:53:3e:86:0a:7c:3f:e0:dd:64:
0f:c3:03:bd:a7:c0:11:0d:02:31:58:ae:ec:89:ec:a8:ab:c1:
05:71:31:64:8f:01:53:bf:57:3e:80:f3:c5:b8:ff:5b:ff:b0:
89:03:ea:d9:80:9b:14:29:0a:53:61:56:d1:f7:19:8c:1f:49:
e0:5d:50:a1:de:0e:d3:f5:1d:92:a8:fe:ee:14:9f:a0:af:a4:
e2:bd:2b:8b:e7:30:1a:3b:20:30:fd:00:c2:ea:e8:ed:b1:c6:
b1:cd:f8:37:75:5d:97:a5:72:a3:90:62:dd:1b:85:ff:99:da:
1b:f8:75:53:8a:cc:59:4c:40:33:0e:e4:d1:8c:bf:9d:05:29:
72:92:a9:ff:43:81:5f:2e:73:2f:db:ba:4f:3a:2b:37:8b:21:
5f:43:e4:7e:17:83:20:f1:3e:ec:c8:fe:28:ef:1b:95:ba:14:
4a:0e:77:23:51:f4:83:7b:22:db:00:b2:b5:a0:af:b6:bb:93:
f5:64:9d:40:f7:fd:e7:ec:4b:f7:94:80:03:7b:6c:e6:d2:91:
2c:e1:d7:1f:ab:3b:24:77:1d:d0:6f:d5:7a:ed:e5:01:05:63:
49:45:fa:23:c6:cd:77:83:20:bb:3b:e9:b3:ba:e7:91:d4:d5:
d2:d0:07:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:42:22 2025 by rpki-client