Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/Z_xVmcm0A9FYQI47R08Y_pwAsdQ.roa
File: Z_xVmcm0A9FYQI47R08Y_pwAsdQ.roa (raw, json)
Hash identifier: MTyw+zH6HN1DVHA7IJlOu9EHvHB1jqokWSSvK/W4F5g=
Subject key identifier: 67:FC:55:99:C9:B4:03:D1:58:40:8E:3B:47:4F:18:FE:9C:00:B1:D4
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0AEA
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Z_xVmcm0A9FYQI47R08Y_pwAsdQ.roa
Signing time: Thu 16 Dec 2021 06:34:19 +0000
ROA not before: Thu 16 Dec 2021 06:34:19 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17809
IP address blocks: 113.61.176.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2794 (0xaea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Dec 16 06:34:19 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=67FC5599C9B403D158408E3B474F18FE9C00B1D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b4:0e:ac:d0:95:4a:2c:50:a0:7d:c5:47:1f:
2b:85:29:3a:f3:50:b5:31:16:1d:83:0a:ec:2f:92:
14:fc:f8:c8:57:87:22:36:af:f5:5c:fa:dc:08:37:
ab:a6:4e:9d:6d:d8:cc:db:a4:b1:79:bb:02:74:95:
1d:a7:01:48:89:83:94:98:2c:ae:35:ce:ae:16:e4:
43:1b:a5:e9:22:cc:7b:5a:c6:0f:24:e3:0f:9c:6b:
8a:db:0b:9b:10:d6:30:88:d8:aa:77:16:41:13:58:
4c:2d:43:f7:d6:08:9b:fa:be:01:6d:b3:a4:b1:e3:
2a:fa:8c:60:22:25:51:1e:a1:54:dd:b9:b1:a5:81:
f2:53:74:9d:9b:2f:95:1f:18:31:dd:a3:56:b7:e0:
6f:5c:77:45:77:12:7b:cd:5e:4b:13:6b:ca:bc:a9:
f4:98:b6:c2:3b:fd:08:82:d5:a3:50:89:dc:92:3d:
dd:15:41:fd:75:cc:0c:76:18:89:92:42:be:15:5c:
35:d8:c0:10:2a:b6:f0:4e:50:5c:b6:4d:89:e4:9b:
d1:19:c1:96:c4:cc:48:9c:e0:17:74:e9:72:e8:c2:
d4:c0:b6:06:4f:cc:08:60:37:5e:d9:19:86:35:e7:
cd:08:b1:d2:31:49:92:43:2d:3c:6b:ab:5a:1d:09:
cd:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:FC:55:99:C9:B4:03:D1:58:40:8E:3B:47:4F:18:FE:9C:00:B1:D4
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Z_xVmcm0A9FYQI47R08Y_pwAsdQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.176.0/20
Signature Algorithm: sha256WithRSAEncryption
22:3b:5a:8d:d6:27:22:f9:3e:47:3b:ba:2d:c0:81:3a:72:20:
c7:14:35:48:e9:ec:31:8c:b0:04:75:ac:1f:f2:9e:77:eb:e1:
c3:ba:77:6c:2c:63:a9:52:e8:7f:63:b4:c0:2e:29:af:6b:80:
c9:df:31:08:e2:73:76:e7:e7:96:b6:aa:65:b4:ef:e2:54:6e:
86:1d:bd:27:ba:cb:5f:eb:bb:48:7a:48:ef:a8:9f:15:a4:46:
ab:9e:2b:78:b8:69:28:8d:44:f1:ce:63:ba:90:82:62:38:2e:
3f:28:af:a7:8a:8a:df:7a:7d:d2:2b:38:5b:78:6d:ef:ba:68:
48:a8:f7:e9:6f:c7:81:31:f9:e6:7f:ef:2a:43:a9:86:e3:29:
52:5a:4c:2b:cb:e0:56:e3:87:46:7b:d3:a8:bd:7c:95:fe:10:
74:ce:a9:5e:75:6f:83:5d:52:76:2f:a8:40:de:ea:5f:6b:55:
03:75:56:a9:54:9b:99:60:b8:46:24:bf:65:09:6e:55:58:85:
b8:41:d7:83:51:14:e3:d5:a8:d0:77:11:2f:fa:59:0a:9f:66:
5c:a6:d3:9d:b3:52:ce:35:f6:1f:dc:a4:91:c2:ff:31:37:99:
ab:e3:97:2e:ba:2c:95:57:89:8e:b7:c9:be:61:22:ee:58:1d:
3d:94:13:59
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCuowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMTEyMTYw
NjM0MTlaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDY3RkM1NTk5QzlCNDAz
RDE1ODQwOEUzQjQ3NEYxOEZFOUMwMEIxRDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCntA6s0JVKLFCgfcVHHyuFKTrzULUxFh2DCuwvkhT8+MhXhyI2
r/Vc+twIN6umTp1t2MzbpLF5uwJ0lR2nAUiJg5SYLK41zq4W5EMbpekizHtaxg8k
4w+ca4rbC5sQ1jCI2Kp3FkETWEwtQ/fWCJv6vgFts6Sx4yr6jGAiJVEeoVTdubGl
gfJTdJ2bL5UfGDHdo1a34G9cd0V3EnvNXksTa8q8qfSYtsI7/QiC1aNQidySPd0V
Qf11zAx2GImSQr4VXDXYwBAqtvBOUFy2TYnkm9EZwZbEzEic4Bd06XLowtTAtgZP
zAhgN17ZGYY1580IsdIxSZJDLTxrq1odCc01AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUZ/xVmcm0A9FYQI47R08Y/pwAsdQwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvWl94Vm1jbTBBOUZZUUk0N1IwOFlf
cHdBc2RRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBHE9sDAN
BgkqhkiG9w0BAQsFAAOCAQEAIjtajdYnIvk+Rzu6LcCBOnIgxxQ1SOnsMYywBHWs
H/Ked+vhw7p3bCxjqVLof2O0wC4pr2uAyd8xCOJzdufnlraqZbTv4lRuhh29J7rL
X+u7SHpI76ifFaRGq54reLhpKI1E8c5jupCCYjguPyivp4qK33p90is4W3ht77po
SKj36W/HgTH55n/vKkOphuMpUlpMK8vgVuOHRnvTqL18lf4QdM6pXnVvg11Sdi+o
QN7qX2tVA3VWqVSbmWC4RiS/ZQluVViFuEHXg1EU49Wo0HcRL/pZCp9mXKbTnbNS
zjX2H9ykkcL/MTeZq+OXLroslVeJjrfJvmEi7lgdPZQTWQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:01 2023 by rpki-client on console-fra.rpki-client.org