Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/XPVgvdiwtRUoUi47GJjOz_o65YU.roa
File: XPVgvdiwtRUoUi47GJjOz_o65YU.roa (raw, json)
Hash identifier: VnswQrvSowHzHzSWbzxtSefDTe/w/S94OjrAcb1ZeU4=
Subject key identifier: 5C:F5:60:BD:D8:B0:B5:15:28:52:2E:3B:18:98:CE:CF:FA:3A:E5:85
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D29
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/XPVgvdiwtRUoUi47GJjOz_o65YU.roa
Signing time: Wed 26 Apr 2023 10:31:37 +0000
ROA not before: Wed 26 Apr 2023 10:31:37 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 203.222.24.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3369 (0xd29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:37 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5CF560BDD8B0B51528522E3B1898CECFFA3AE585
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:55:b1:e5:ab:73:9b:3e:45:99:28:2e:8c:ea:
94:81:4d:9b:c7:93:ca:dc:d7:9a:ca:3e:3f:14:9b:
09:99:57:3f:74:bc:64:33:3a:e8:3d:77:32:fc:0e:
13:97:56:ec:8d:9d:bd:f6:4a:9b:9d:c5:b3:95:cf:
30:2d:2c:22:19:c2:71:7d:d9:38:6f:c1:8c:59:98:
9c:ef:1a:8f:49:0e:c7:3f:5b:99:66:48:2c:04:ec:
07:73:09:56:d0:fc:48:28:05:a4:c3:c6:fb:88:53:
14:a4:be:9a:a9:5d:c9:d3:0f:a1:71:44:8e:10:fc:
45:85:9e:99:5c:56:84:a7:d1:ff:76:b9:16:9d:c4:
e7:ad:2f:e3:e8:1b:29:0c:b5:95:9a:a6:33:bc:51:
95:a7:d3:9b:ba:73:cd:b9:04:83:5c:62:66:e1:3b:
d6:03:84:e5:21:82:4e:00:c1:fe:d4:73:2f:3e:3d:
8c:8e:4e:97:30:48:0d:c5:5d:36:12:8e:03:33:e3:
08:ee:e0:7f:fd:57:96:4f:9e:63:26:b6:f8:38:70:
a3:ca:fb:a0:87:e6:99:c9:66:33:ff:ee:31:a0:f7:
e5:3b:21:c1:60:6e:04:b1:b2:f1:2a:92:0d:98:a7:
9b:ed:68:c3:09:be:42:7a:da:95:cd:64:0c:d2:45:
30:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:F5:60:BD:D8:B0:B5:15:28:52:2E:3B:18:98:CE:CF:FA:3A:E5:85
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/XPVgvdiwtRUoUi47GJjOz_o65YU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.222.24.0/21
Signature Algorithm: sha256WithRSAEncryption
3a:86:7d:a5:d8:48:4d:82:03:48:92:16:fd:cc:ac:f2:81:fd:
b6:1c:b8:46:e5:e6:4a:4b:71:93:5f:50:f0:ba:30:06:4f:bc:
ef:06:0f:f2:ec:19:65:e0:0a:1e:bf:1a:fe:59:ee:6e:96:cf:
80:9e:f1:87:62:9b:82:89:b2:4f:11:e1:0d:9f:96:b1:97:5c:
6b:ea:5c:5c:09:49:c4:9f:bd:97:cc:11:3f:ca:b4:90:bd:52:
26:40:b2:28:68:9e:28:99:26:27:18:6d:8f:90:dd:bf:f7:06:
de:8d:80:8e:6d:74:8c:0e:2c:f2:e7:2f:8e:3e:f2:d2:cd:e8:
93:8a:34:8b:8b:b8:14:b4:05:fd:07:91:42:a1:ce:be:23:78:
18:45:6c:c1:4b:af:47:3c:e1:e4:d3:89:67:60:eb:32:20:24:
82:c6:c6:53:27:9f:65:1d:a3:8a:22:df:a9:06:05:29:d6:6e:
63:fa:3e:2d:5b:87:14:3b:01:03:e3:3d:c4:d4:cf:5f:f9:15:
70:67:f1:9a:48:c9:24:a3:23:8c:8f:c1:88:03:44:58:d6:7b:
30:e9:d4:b9:23:64:81:04:c2:3e:9d:e7:9b:d4:32:c0:39:bb:
3f:31:ef:93:70:30:bb:01:b8:0c:76:f6:71:a9:72:9d:96:42:
bd:89:e2:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org