Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/ZHOzaAVWlpZ-WlgifOrHlu2hRj0.roa
File: ZHOzaAVWlpZ-WlgifOrHlu2hRj0.roa (raw, json)
Hash identifier: vDZyGbuDQpFOYv5CRyMPuMgQ3KJj0cPsY4s77iy5MB0=
Subject key identifier: 64:73:B3:68:05:56:96:96:7E:5A:58:22:7C:EA:C7:96:ED:A1:46:3D
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0BFC
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/ZHOzaAVWlpZ-WlgifOrHlu2hRj0.roa
Signing time: Thu 15 Sep 2022 02:37:31 +0000
ROA not before: Thu 15 Sep 2022 02:37:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 27.96.248.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3068 (0xbfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 15 02:37:31 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6473B368055696967E5A58227CEAC796EDA1463D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a5:6d:05:fc:37:34:09:1f:27:3a:db:99:7a:
b1:ae:d3:04:d8:f1:57:3f:aa:75:58:ba:0f:16:a2:
50:7f:d0:b2:83:77:25:d1:48:19:a8:be:b9:d9:8b:
1a:96:df:7a:4c:39:7a:31:68:23:6d:01:64:2d:c8:
ad:6a:6e:6d:2a:ff:46:92:4e:5f:ca:1b:ab:a7:e6:
88:de:a5:40:4a:13:c9:d7:8c:d5:0b:f0:75:d4:19:
b5:d3:49:3e:52:6e:4c:6e:1f:35:ae:fd:5e:64:76:
c6:6d:d9:b5:93:2c:bb:3d:68:3c:88:a6:d2:4c:36:
dd:4e:b8:39:b2:11:de:ac:57:c7:85:dd:e5:4b:47:
99:46:30:57:97:b3:a3:56:27:48:e1:6a:a3:4b:de:
b1:bf:f9:4b:12:df:b8:cb:3f:2a:04:d1:a3:0e:55:
38:64:eb:0c:7c:97:11:0d:92:d1:56:c9:dc:1c:39:
bb:2f:90:e2:0f:8a:27:82:7e:36:c8:a6:99:fd:88:
1d:53:d2:ad:27:5e:3d:54:34:59:31:6b:7f:cc:ec:
39:60:28:c0:d2:70:90:6e:d1:19:fc:bc:f2:d8:34:
72:f0:17:8e:50:b5:6b:d5:0a:01:42:3d:63:33:8e:
23:ff:77:27:e3:fc:dd:e8:38:be:55:81:10:bb:99:
bc:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:73:B3:68:05:56:96:96:7E:5A:58:22:7C:EA:C7:96:ED:A1:46:3D
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/ZHOzaAVWlpZ-WlgifOrHlu2hRj0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.248.0/21
Signature Algorithm: sha256WithRSAEncryption
34:b8:53:52:89:b4:03:69:bb:f0:d5:5b:14:67:08:2d:ec:68:
21:14:2a:de:dc:10:e6:fb:68:1f:f3:1a:5c:d5:6e:7f:4d:55:
eb:7a:60:c9:23:8e:4f:87:fc:1d:10:7b:d3:3b:4d:ce:eb:65:
ae:d3:43:35:0f:2d:72:9d:46:a9:4f:2c:ea:6f:52:2e:c6:75:
86:85:6c:e4:c8:10:ba:69:ec:c3:9c:01:23:d2:56:7c:ed:fb:
3b:10:c3:47:33:38:88:33:91:72:95:f5:4d:ee:cf:ab:e8:eb:
34:10:f9:64:53:47:e2:ab:63:e8:2e:c2:11:9c:9d:80:1e:81:
9e:2a:e1:73:0b:96:f8:ed:dd:fd:4e:bd:24:22:ad:28:ef:b0:
aa:d4:97:1e:11:8a:e4:27:24:19:28:b8:e9:24:06:a7:10:88:
03:d6:b6:05:0c:ac:62:29:49:48:5a:7a:3c:3b:70:3e:51:dc:
3d:5f:ff:6d:e0:4d:7a:35:1d:36:e0:84:30:cc:ba:80:b9:92:
02:1c:3a:8f:ee:01:10:e2:6b:e8:b0:c6:e6:0e:7d:d1:44:c9:
d1:3b:6e:83:0a:1b:58:df:fa:5d:e9:35:e2:fb:f5:12:5c:d8:
dc:86:54:1e:8a:5b:60:d7:cf:92:5f:7c:da:ee:73:67:a8:3e:
d1:fb:ff:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org