Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/YnpQ6lb8g_VLCaaDqdXfV2vWe90.roa
File: YnpQ6lb8g_VLCaaDqdXfV2vWe90.roa (raw, json)
Hash identifier: eShAnHPM6th0i6zf8Sn4N/OLOOYlgYSkD5mfAQ45UE0=
Subject key identifier: 62:7A:50:EA:56:FC:83:F5:4B:09:A6:83:A9:D5:DF:57:6B:D6:7B:DD
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0970
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/YnpQ6lb8g_VLCaaDqdXfV2vWe90.roa
Signing time: Thu 21 Jan 2021 10:27:36 +0000
ROA not before: Thu 21 Jan 2021 10:27:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17809
IP address blocks: 211.79.112.0/20 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2416 (0x970)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Jan 21 10:27:36 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=627A50EA56FC83F54B09A683A9D5DF576BD67BDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:5f:22:06:6b:68:b9:98:df:f9:09:f0:55:f8:
3c:e5:b0:68:73:18:65:c2:bc:df:80:95:87:a2:61:
fb:c0:6a:6e:c1:56:9d:35:60:b0:38:40:8b:e1:86:
2f:c2:cf:c0:7d:b0:ff:b8:cf:96:6e:6d:56:f8:66:
1c:f6:d8:fd:22:ff:56:3b:66:28:7f:3b:c1:18:6c:
15:84:fe:c8:62:18:93:d4:d6:08:d7:e0:5e:6c:93:
08:f1:63:c0:5b:d9:4d:05:60:96:30:60:cb:31:62:
86:ab:8f:c1:82:d3:b8:44:2d:bb:de:cc:27:b0:62:
8b:0a:e9:4a:a6:33:99:55:20:97:3b:0f:96:9e:26:
5c:5d:e4:2b:a4:fe:ea:c9:f8:06:81:9a:b9:2b:f0:
25:d0:9a:87:78:a1:7b:68:7e:eb:21:40:0f:92:3a:
0f:94:95:f6:1c:7b:e7:9f:ba:6f:2b:80:25:c7:2d:
1c:35:0c:2d:4a:7b:ae:66:c9:be:1c:42:0d:c8:ec:
95:a8:87:38:56:56:fe:13:0b:c6:fa:fe:e2:fd:dc:
ae:62:c3:db:af:79:d3:b5:d9:fe:3e:24:df:8d:eb:
bb:20:6e:6d:30:1e:5b:80:0b:ef:55:8b:83:d2:47:
c2:8f:cf:8b:86:61:f4:23:c1:49:be:b2:7d:fd:f7:
5c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:7A:50:EA:56:FC:83:F5:4B:09:A6:83:A9:D5:DF:57:6B:D6:7B:DD
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/YnpQ6lb8g_VLCaaDqdXfV2vWe90.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.79.112.0/20
Signature Algorithm: sha256WithRSAEncryption
3e:d1:41:d6:f5:c3:92:27:f6:4d:01:50:35:0e:4c:8f:7c:7a:
7a:cd:69:4e:25:a8:bd:92:ba:8b:28:52:c4:ad:3f:74:38:c9:
94:15:ff:73:51:94:a1:cd:a1:e6:5c:73:2c:89:1a:ba:3c:b7:
f4:cd:b3:18:c1:4b:7a:94:c0:bb:a4:f1:cc:20:11:f0:ca:80:
8c:37:26:a4:00:44:8b:6a:3e:0a:f2:f9:2e:33:85:dd:63:9c:
34:aa:17:0a:4e:1c:6c:9c:7c:cd:f2:c2:33:61:f7:af:73:21:
06:e2:e9:cb:b0:3f:1b:1a:f6:8b:90:18:1d:85:98:04:5e:3b:
f8:cf:2f:7f:d9:1a:a9:ae:e1:77:ef:a5:fc:a6:14:fe:59:33:
9f:e9:67:5b:e2:dd:04:83:f8:f6:c0:ee:d3:85:77:fe:f3:eb:
7c:59:da:c0:02:c7:df:88:e5:98:ca:fe:a4:d6:78:5c:71:55:
50:4d:bd:4e:49:55:28:d8:de:e2:b7:3e:aa:1a:f4:91:8f:01:
cb:68:db:c0:17:1f:c9:0c:d9:a2:0a:a8:57:9d:40:29:56:b4:
f8:f0:78:1a:f0:e7:05:4b:46:fb:2e:80:e8:86:7a:42:55:5f:
45:40:e9:58:25:a9:c0:ce:bf:4d:9c:a9:c0:8c:3b:a1:a9:fc:
66:5a:ba:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org