Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/WnYda2Vud5pLvqG_TgsiYhyEmrk.roa
File: WnYda2Vud5pLvqG_TgsiYhyEmrk.roa (raw, json)
Hash identifier: IexsBe7T0d8qOKjxlYaSk/d7Py5oSaWreNxghYsvuYc=
Subject key identifier: 5A:76:1D:6B:65:6E:77:9A:4B:BE:A1:BF:4E:0B:22:62:1C:84:9A:B9
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D42
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/WnYda2Vud5pLvqG_TgsiYhyEmrk.roa
Signing time: Wed 26 Apr 2023 10:31:43 +0000
ROA not before: Wed 26 Apr 2023 10:31:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 121.254.64.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3394 (0xd42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:43 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5A761D6B656E779A4BBEA1BF4E0B22621C849AB9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c4:8c:37:4e:71:9f:7d:bf:10:a7:33:7a:ff:
90:b4:9c:50:5f:06:b8:a3:d6:e9:1b:c7:0e:1c:9e:
23:50:b2:43:13:51:b1:fa:c4:67:5c:3f:e7:06:bd:
1c:84:b1:eb:cc:20:ec:ef:5b:4b:95:7f:84:05:62:
7a:4d:40:53:e9:b7:fc:e8:21:cb:a5:28:7d:43:17:
1b:22:aa:8e:b6:90:5c:7e:09:ec:6c:36:39:d3:17:
5d:66:ae:a8:77:31:38:34:85:40:99:24:e5:6a:59:
f1:a6:80:8e:06:e7:68:9d:3d:42:e7:4a:41:e1:42:
7b:02:2c:7e:cf:92:7d:91:3d:b6:3e:8d:bc:4c:74:
dd:41:f1:08:83:4a:b4:a3:a4:ab:6a:cb:e6:48:f6:
b8:69:14:01:45:f1:2d:27:cf:05:47:0f:f6:2f:d7:
ab:69:61:57:ce:57:f2:5f:69:d6:91:a5:e8:5e:b3:
95:df:1c:3a:bc:58:a9:b5:f8:0e:07:aa:c3:68:65:
90:1a:2d:19:b2:a3:df:3b:8a:1a:a7:4a:9c:b0:d0:
43:ed:07:9b:10:4d:d8:70:00:a3:05:62:2d:c4:dc:
22:7b:23:9d:2f:a4:45:a6:6f:26:31:7a:97:34:38:
02:d3:0c:43:9b:df:0c:44:a7:17:e8:b0:88:b1:e9:
a5:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:76:1D:6B:65:6E:77:9A:4B:BE:A1:BF:4E:0B:22:62:1C:84:9A:B9
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/WnYda2Vud5pLvqG_TgsiYhyEmrk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.254.64.0/21
Signature Algorithm: sha256WithRSAEncryption
41:34:a3:ae:23:cd:99:05:4b:d7:49:6c:ce:2e:1a:2e:0f:bc:
73:ec:6f:de:e8:a9:a0:90:f2:41:85:5e:ca:39:57:2f:4f:3a:
f5:a8:fc:d3:89:b8:c4:78:9a:c2:00:d9:a4:0b:19:73:da:bc:
ea:1f:1b:0d:51:3c:a3:8c:63:69:a0:1e:45:ff:4d:15:d7:2e:
67:4e:6c:90:e7:c2:dd:8b:b6:96:50:bf:0d:2d:e9:36:42:0a:
58:54:70:14:46:98:13:8f:14:49:13:0d:96:d3:6c:1f:95:04:
b5:a5:c8:37:5f:a4:7a:fe:41:d7:7d:9d:71:e1:1c:f9:26:26:
bc:74:17:3c:3a:37:76:bc:b6:22:a8:c6:78:ff:cc:a8:94:df:
66:2c:8f:1c:10:7d:3d:a4:ab:12:64:fc:e6:c2:aa:1d:0a:a2:
2a:a1:27:c2:c6:86:22:9e:2f:e5:aa:5d:f3:95:b1:a6:65:88:
1b:54:cd:3b:f7:51:f3:a8:76:a6:5e:cb:26:84:d1:77:f8:2c:
94:60:cb:9c:e1:a7:39:43:9f:24:9d:ab:10:8a:f9:a9:44:58:
84:ee:86:10:97:ec:35:12:18:e3:bb:c4:9d:42:87:e2:4f:ce:
00:19:72:15:1e:38:4e:bd:52:21:bd:a1:53:40:c1:f5:47:c3:
38:f2:8d:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org