Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/X4munLONVUQTKBQcg47UJACx5qM.roa
File: X4munLONVUQTKBQcg47UJACx5qM.roa (raw, json)
Hash identifier: xZkkZYZ/nK6sKe8NSPDscBd4NeFQ60084g93dSyY0Rs=
Subject key identifier: 5F:89:AE:9C:B3:8D:55:44:13:28:14:1C:83:8E:D4:24:00:B1:E6:A3
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0CCD
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/X4munLONVUQTKBQcg47UJACx5qM.roa
Signing time: Wed 26 Apr 2023 06:35:36 +0000
ROA not before: Wed 26 Apr 2023 06:35:36 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 210.209.192.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3277 (0xccd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 06:35:36 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5F89AE9CB38D55441328141C838ED42400B1E6A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ee:86:c8:a8:4c:a3:b8:2d:17:88:c9:2a:33:
6b:86:84:3a:a0:d2:45:8c:5a:e7:28:cd:f9:0f:90:
49:a4:52:f2:60:78:b1:b3:fa:ad:a8:c0:55:4f:6d:
e8:25:9c:48:89:1c:b1:ea:4d:50:d5:79:a3:7c:63:
99:95:78:2a:ab:ca:f9:62:d0:4c:bf:3f:ff:c1:06:
b9:50:0a:3c:18:8f:68:11:c2:b0:c7:31:f2:26:18:
24:25:e4:92:02:a4:4d:e0:1d:be:0b:11:ba:8d:d1:
b3:16:fd:3b:69:28:38:01:fe:90:4f:f1:5d:b0:44:
56:8d:d8:0d:3b:95:aa:59:17:d5:52:32:e1:10:cd:
ed:60:72:39:79:8d:fe:c7:ac:6e:a1:a8:d8:e6:22:
34:e1:1b:9c:4b:db:80:1e:83:7f:2e:27:d3:7f:83:
8a:fe:59:2e:ad:a4:3d:e7:bd:0b:3a:de:0e:05:fc:
f8:ec:70:c8:63:7d:83:8b:89:2f:b0:5a:a8:04:58:
63:ba:05:23:86:2a:f6:ea:60:de:ac:59:8a:b6:56:
f4:71:08:48:29:08:11:6b:20:b1:83:36:66:5c:2a:
84:fa:55:32:c7:a0:43:70:33:3b:b8:35:00:c3:72:
47:b3:ab:c9:3f:ce:15:c8:10:c0:84:16:e8:23:d8:
a1:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:89:AE:9C:B3:8D:55:44:13:28:14:1C:83:8E:D4:24:00:B1:E6:A3
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/X4munLONVUQTKBQcg47UJACx5qM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.209.192.0/18
Signature Algorithm: sha256WithRSAEncryption
ad:af:03:46:70:44:53:6e:ce:67:32:38:25:99:b5:02:ac:9e:
52:c2:ac:54:4e:38:bc:80:18:01:47:f7:d3:37:17:50:2e:a0:
61:53:87:9e:27:e6:86:47:75:5d:04:99:e2:c7:9c:28:b9:58:
bb:ab:60:e7:39:15:52:44:ae:40:92:3d:d4:3c:f4:c4:28:01:
35:c2:bb:10:26:ac:fe:d4:15:8d:70:55:c7:cb:b7:62:b0:51:
ec:fc:84:8f:0d:22:61:9b:35:4b:ea:10:4f:bd:39:50:15:24:
5f:32:c2:78:49:84:f3:3d:60:6e:92:85:62:aa:a2:cf:5e:3d:
4b:f4:c8:6f:e3:80:a9:ae:0f:ac:92:de:09:31:7b:d0:97:d3:
37:71:30:cd:2a:73:d8:4b:98:39:fb:3c:a8:9d:f0:98:a5:8e:
cb:52:23:dd:52:ba:1f:67:a4:c8:30:35:a9:02:5f:a8:53:ed:
35:a3:94:51:be:33:e0:d6:63:29:85:43:f5:8c:21:64:b9:2d:
da:ce:b3:0f:55:73:65:24:2a:1c:d9:cc:c6:0c:24:20:5e:b1:
44:57:57:81:d2:f2:db:cd:0e:45:64:c3:52:e1:eb:f8:bf:2b:
2a:73:4b:a0:e1:d0:00:5b:1e:80:8c:82:18:f4:d1:14:9f:45:
64:e8:ac:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org