Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/Ym_tASz3sdIjn-31hyiZkWIQuv4.roa
File: Ym_tASz3sdIjn-31hyiZkWIQuv4.roa (raw, json)
Hash identifier: Fp2DgX1dLdiDeIWKIr/Jj8kJRorL3TBkcBFkW8XPZ/4=
Subject key identifier: 62:6F:ED:01:2C:F7:B1:D2:23:9F:ED:F5:87:28:99:91:62:10:BA:FE
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0B32
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Ym_tASz3sdIjn-31hyiZkWIQuv4.roa
Signing time: Thu 16 Dec 2021 06:54:37 +0000
ROA not before: Thu 16 Dec 2021 06:54:37 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17809
IP address blocks: 203.222.24.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2866 (0xb32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Dec 16 06:54:37 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=626FED012CF7B1D2239FEDF5872899916210BAFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:2c:e3:20:ba:20:73:b2:22:1c:72:88:80:2b:
36:1e:6b:99:24:b3:9e:65:e1:76:84:4c:ea:81:2f:
91:b5:24:1a:86:60:c4:4a:5b:27:9d:cd:d6:d7:2e:
e9:2f:c5:60:4b:a1:6e:6c:13:68:f1:23:42:83:cd:
27:4e:a2:cb:f0:59:13:cc:b8:45:1e:66:1a:31:ee:
e5:9d:69:08:08:94:e1:c4:42:d6:ca:54:ec:67:50:
eb:ec:9f:24:bd:ba:50:54:5b:19:75:81:44:aa:64:
3d:9c:ea:ea:5d:92:4b:44:d6:79:0c:71:98:48:f1:
63:81:ce:36:06:2d:2a:47:db:65:3b:47:ab:6e:2d:
91:d8:27:54:f0:60:66:c9:d1:81:06:9f:5f:d9:17:
ab:15:b9:5c:e0:0b:73:f9:03:08:c8:20:c0:c0:de:
9c:22:c4:cc:c5:34:e9:68:f2:00:3d:95:fd:0e:73:
f7:07:18:6a:60:3b:f8:a6:db:ce:c9:b8:58:fa:97:
8e:85:60:ef:b1:bc:34:6e:65:8f:b3:6e:01:ca:03:
ad:b6:c2:4c:11:26:2f:67:1b:8b:72:0b:78:03:68:
11:88:84:03:cf:3e:99:48:43:fd:2f:e4:1e:73:c0:
5d:d1:f9:ad:aa:3c:05:cf:27:06:63:04:59:2c:c8:
38:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:6F:ED:01:2C:F7:B1:D2:23:9F:ED:F5:87:28:99:91:62:10:BA:FE
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Ym_tASz3sdIjn-31hyiZkWIQuv4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.222.24.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:0b:69:e8:d2:43:2a:36:71:5f:e1:fa:a6:ac:b4:71:f7:98:
65:f2:00:61:69:4e:c4:9a:7b:b7:24:10:16:d5:98:95:12:1e:
c6:96:5e:52:79:56:ac:0a:e7:c0:d4:fe:93:3d:2f:2e:17:3d:
0b:6c:09:29:c9:c1:cd:c4:45:41:35:9e:74:dd:20:ab:b5:e6:
81:08:fe:53:3b:ab:5a:80:68:fb:56:ee:96:37:c3:c1:e7:14:
6e:cd:b6:e7:cc:02:ee:04:d9:58:c3:d3:c6:e7:1b:5c:22:ab:
af:27:eb:01:6f:d6:00:13:e0:1a:40:fe:60:b5:d2:08:e5:08:
34:d0:d4:59:f1:21:0f:ad:58:6c:4d:04:7f:a8:3f:bf:9b:f3:
a4:0f:da:d2:1c:35:85:d9:05:d0:fc:10:22:f3:61:fc:9f:3a:
1b:f8:b7:e7:30:4d:b0:3c:8f:da:76:6c:72:7f:1b:35:96:52:
4a:b9:98:37:2e:ec:04:78:d5:be:b4:f3:f3:91:b5:4d:81:a1:
87:a9:77:11:c9:5e:18:0b:6c:12:68:fc:2b:f9:34:7d:18:b4:
c7:33:1d:65:88:c3:a2:0c:9c:ff:2b:21:f1:4b:70:68:dc:ce:
b2:5c:8a:f5:e1:e3:02:f5:28:1b:fe:d7:55:1e:47:bb:c9:92:
68:a9:97:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org