Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/YIYkrnGbmBHH8ksTquTQkEW-e6g.roa
File: YIYkrnGbmBHH8ksTquTQkEW-e6g.roa (raw, json)
Hash identifier: xZy8CGBOhgHG8I/5B1By/g66yf2lta6DTeOPFq1tv0Q=
Subject key identifier: 60:86:24:AE:71:9B:98:11:C7:F2:4B:13:AA:E4:D0:90:45:BE:7B:A8
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0BFC
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/YIYkrnGbmBHH8ksTquTQkEW-e6g.roa
Signing time: Thu 15 Sep 2022 02:37:26 +0000
ROA not before: Thu 15 Sep 2022 02:37:26 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 211.79.112.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3068 (0xbfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 15 02:37:26 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=608624AE719B9811C7F24B13AAE4D09045BE7BA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c9:ce:1d:68:4c:7d:a1:75:fa:4f:96:d8:77:
ec:21:c1:cc:11:65:9e:ca:1e:2f:3e:9a:cd:4a:c0:
2d:cf:c2:e7:cc:72:6a:b7:30:c3:dc:21:c2:5f:22:
2c:98:ee:32:b5:f9:e5:fb:e7:63:8d:08:43:ec:a3:
04:fe:6d:0f:c6:90:07:9d:6a:6c:96:13:c2:4c:67:
cc:a2:72:62:e0:44:7e:cf:12:8a:8a:9b:77:39:1c:
a7:51:6f:2f:ac:2f:4c:05:87:b8:8e:cb:50:b8:95:
9b:4a:cc:b7:6e:08:5a:af:4b:13:16:69:b2:7c:57:
78:42:74:0d:50:b7:75:8c:27:00:f0:7c:fd:21:87:
55:ed:5d:a7:28:db:1e:f0:e1:5f:0f:ea:6e:4d:cb:
02:79:9f:92:2c:31:95:5b:24:28:cc:2e:0e:73:2d:
fc:47:35:e4:a5:bd:ee:04:c4:e6:61:23:ca:ad:76:
8c:9d:43:dc:27:ed:7c:ae:ca:42:f5:a5:25:17:94:
01:ed:5e:23:c0:07:23:53:be:c6:53:9f:60:1d:3c:
de:8d:49:01:16:b3:73:0d:b2:b4:af:e0:70:fe:eb:
1b:50:99:12:f3:f6:e8:02:8a:7f:f8:91:b8:a0:7a:
88:53:eb:5f:2e:9a:7e:70:94:18:03:22:28:ca:64:
fb:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:86:24:AE:71:9B:98:11:C7:F2:4B:13:AA:E4:D0:90:45:BE:7B:A8
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/YIYkrnGbmBHH8ksTquTQkEW-e6g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.79.112.0/21
Signature Algorithm: sha256WithRSAEncryption
a1:3d:14:f3:de:5d:4f:63:24:03:7f:b9:6b:a8:39:7c:d2:f3:
6a:ae:d7:72:fa:5e:2b:14:92:4f:74:af:e3:2b:8b:64:3b:6e:
34:1e:7d:79:75:4e:8d:0a:e4:e3:c3:09:75:fc:ee:5c:45:38:
23:a1:cb:31:ba:cf:3d:cb:75:63:f8:90:9f:17:42:5f:a9:c1:
91:14:96:2d:d8:45:03:80:90:d9:13:75:03:f0:a1:4f:41:46:
76:3c:bb:07:4b:a7:98:46:62:8e:0b:69:92:10:3e:d2:eb:fd:
d0:2f:bc:ca:7f:9d:9e:5e:20:16:3b:96:33:54:06:f6:fc:01:
fb:3d:dc:ea:4d:b3:7e:b8:0b:53:de:63:d1:89:d0:86:93:4d:
6b:23:34:13:17:b1:74:b4:6e:b1:1c:92:38:c9:04:be:80:06:
6c:fc:21:bc:0d:60:99:3c:f2:64:16:e1:49:70:39:89:a3:b7:
8f:4e:47:b3:38:dd:be:9a:bb:4f:10:f1:f8:a9:f7:05:98:66:
56:0f:7f:d4:1f:3b:06:7f:0b:fc:54:8a:3d:a8:42:4f:f3:15:
9b:60:70:f5:15:55:03:f2:ac:32:3a:14:ab:33:56:f2:55:46:
55:19:6c:c5:2d:92:a2:53:73:bb:2b:73:c8:24:aa:36:20:97:
c7:28:cd:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org