Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/WPODAo_kClMtwe0JjAFIyNWkQg4.roa
File: WPODAo_kClMtwe0JjAFIyNWkQg4.roa (raw, json)
Hash identifier: olsnGmKUNRdguXMa09uOT74EQk1j9dafqdoyjY197Ow=
Subject key identifier: 58:F3:83:02:8F:E4:0A:53:2D:C1:ED:09:8C:01:48:C8:D5:A4:42:0E
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0BFC
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/WPODAo_kClMtwe0JjAFIyNWkQg4.roa
Signing time: Thu 15 Sep 2022 02:37:23 +0000
ROA not before: Thu 15 Sep 2022 02:37:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 203.222.8.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3068 (0xbfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 15 02:37:23 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=58F383028FE40A532DC1ED098C0148C8D5A4420E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:f4:12:27:34:3f:fa:9b:05:3d:81:92:f6:f4:
38:ac:cf:10:02:b5:ee:a0:fe:57:a3:47:1f:fa:ad:
e6:62:ad:30:52:1a:16:4e:22:7b:5f:01:3a:c3:70:
33:62:cb:3c:b9:a1:5c:6c:84:d5:51:84:cb:d4:e5:
08:fa:6a:63:a7:46:8c:ec:82:bc:4c:12:4b:c4:1b:
55:8e:f4:de:f0:32:fd:e5:dd:86:be:61:ba:89:8e:
cb:65:42:3a:4b:13:19:71:be:ba:b8:e9:45:86:44:
3c:d7:07:b7:3d:3e:58:86:d1:7e:00:3f:b1:cf:1e:
8f:d8:c4:97:75:4b:af:52:c1:2f:29:85:d6:8d:4e:
4e:87:84:7f:51:d7:a2:11:c1:a1:86:ac:bd:71:16:
22:39:59:c3:e2:2b:6a:45:b7:d6:82:81:c2:f3:4a:
ea:e2:ca:74:69:f2:32:88:4d:6b:8c:b5:6e:8a:bb:
9b:23:f3:ae:1d:a9:d2:41:1a:74:a0:aa:98:5b:97:
18:14:ec:a1:65:dc:35:e1:3a:58:3d:6c:cb:27:06:
33:84:82:22:f9:40:5a:61:0d:27:e5:0b:18:bc:be:
3d:24:d7:e2:31:30:55:3a:a2:8c:99:75:7c:e9:1c:
ba:d6:de:01:7f:e9:83:7f:71:c0:3d:40:7b:61:18:
22:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:F3:83:02:8F:E4:0A:53:2D:C1:ED:09:8C:01:48:C8:D5:A4:42:0E
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/WPODAo_kClMtwe0JjAFIyNWkQg4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.222.8.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:c0:ce:32:53:d2:a8:12:af:24:b3:75:ae:da:8c:61:89:cb:
9f:5b:45:9c:34:61:70:49:13:f1:bb:15:d8:a4:0b:e1:53:57:
0d:45:30:98:26:f7:67:1b:38:22:fb:f4:f8:a2:dc:0a:5d:f1:
7d:3a:6c:95:cd:57:35:a3:16:be:5d:7f:8a:a8:6f:3f:0a:6b:
3d:91:f8:dc:b0:ed:fa:d0:fc:38:49:0e:c7:74:6a:8c:3e:b1:
7b:05:41:d2:4e:9c:ec:c3:e5:be:19:c8:a9:13:b9:79:2b:22:
6d:97:ec:e7:95:96:42:a9:dc:8e:33:70:61:02:c5:c7:a3:59:
cc:0b:c4:9b:00:76:c1:bf:ca:1c:22:51:0f:d0:b0:7e:c0:9c:
81:04:d6:c9:91:c6:fc:51:e1:a1:48:3c:44:b2:92:11:b5:18:
25:04:43:d3:77:d9:c8:b2:48:61:a5:40:b1:45:35:42:aa:e0:
39:01:fd:87:6e:98:45:43:41:5d:00:0d:3a:bf:39:16:c8:f7:
9a:00:d5:1c:1a:94:3c:58:be:18:2e:00:94:b2:74:63:a3:db:
40:a7:1d:6e:dd:82:63:0b:81:a4:78:d5:c1:76:f5:c7:6e:ed:
a1:cf:1a:fd:03:2d:a1:ff:52:b5:80:ef:ea:18:d7:77:fb:87:
88:5c:43:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org