Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/ZUclwd65zG8649q3Rwxp3U5TlrI.roa
File: ZUclwd65zG8649q3Rwxp3U5TlrI.roa (raw, json)
Hash identifier: Te1giVissyIuB6fMKBBt46CeXN5wMHyGfE2n/yV9Aq4=
Subject key identifier: 65:47:25:C1:DE:B9:CC:6F:3A:E3:DA:B7:47:0C:69:DD:4E:53:96:B2
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0CEE
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/ZUclwd65zG8649q3Rwxp3U5TlrI.roa
Signing time: Wed 26 Apr 2023 10:31:21 +0000
ROA not before: Wed 26 Apr 2023 10:31:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 203.217.104.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3310 (0xcee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:21 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=654725C1DEB9CC6F3AE3DAB7470C69DD4E5396B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:01:f5:aa:ad:2a:10:46:63:84:73:70:1e:75:
a6:d6:45:83:ef:54:b9:1e:46:99:83:bd:4a:da:13:
3d:e6:d4:ce:9d:e5:07:ca:16:1f:cb:3e:cc:ee:02:
3c:73:ef:ec:60:54:3e:36:b4:54:3a:10:f4:7e:e1:
da:a0:3c:58:1e:79:ba:5e:a8:6a:5d:8c:bd:df:f4:
ea:81:e0:23:1e:82:95:92:9d:9d:56:b6:b7:8b:9a:
94:e4:83:ac:7a:b8:72:90:85:f3:e1:e2:78:b9:1b:
02:f5:56:e5:3f:ca:de:1a:b6:88:0b:36:43:75:46:
e8:98:60:29:dd:8b:dd:18:d5:6b:41:5a:dc:df:2d:
80:57:ec:31:11:a6:f4:64:22:9c:fa:6e:13:8e:14:
41:8f:c4:35:66:08:6c:97:13:4b:13:40:11:87:e0:
c3:e7:8f:84:e2:04:48:90:5f:e2:9e:71:2d:ee:f5:
28:e7:e3:ab:b4:b3:30:cd:74:9f:01:85:8c:8f:e9:
ba:ab:44:eb:7b:2d:84:cf:1e:23:9e:68:8e:d4:63:
0e:c1:e9:88:77:90:fb:ef:48:61:88:61:8f:d3:84:
ee:2c:dc:f3:c5:08:be:9a:73:fe:bb:a4:90:45:c6:
11:78:3f:cf:f5:08:fd:c2:72:c5:46:a6:19:3c:74:
06:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:47:25:C1:DE:B9:CC:6F:3A:E3:DA:B7:47:0C:69:DD:4E:53:96:B2
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/ZUclwd65zG8649q3Rwxp3U5TlrI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.217.104.0/21
Signature Algorithm: sha256WithRSAEncryption
25:7c:cc:f2:1e:e3:88:6b:da:63:25:bd:3a:7a:a9:f8:10:74:
11:5a:88:8d:03:35:5e:1b:39:0c:85:5c:c5:22:2b:dc:d7:38:
c5:28:fc:3e:b7:82:48:09:99:9e:e7:9e:fb:05:53:f0:27:0c:
e1:ff:93:94:cf:67:a2:d4:a8:d7:d9:62:ab:86:75:ca:c4:9f:
52:bf:54:8f:c8:90:15:6a:8a:e4:35:65:ed:80:86:a0:04:ae:
59:08:6f:79:73:73:57:ce:b3:e4:31:39:34:ed:78:98:3c:60:
64:55:ac:12:27:15:e0:0a:9f:a0:09:90:5a:d3:9c:de:c6:ed:
d3:d8:11:b0:3c:c8:0d:a3:2c:8a:83:9b:ea:fd:65:94:51:6b:
28:9f:fe:90:fe:b4:26:5c:71:24:22:19:27:bc:52:07:cd:10:
ca:02:bc:6a:08:16:b1:6b:9b:8c:53:a9:5f:77:56:1d:13:f9:
32:91:16:75:09:9b:06:e0:0b:9e:90:83:2c:70:62:a8:00:66:
3f:66:21:32:5e:f7:80:5c:39:04:40:be:81:47:ba:8f:0f:f7:
75:3b:81:7d:ff:09:7d:ab:a8:75:bc:be:36:c7:5a:34:6c:33:
4d:1d:19:e4:fb:59:f7:fc:03:d2:a5:dc:cc:cc:3a:a0:f3:71:
b9:34:4c:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org