Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/Zo1HG5zStR8A7_rObZDaGFJq7Oo.roa
File: Zo1HG5zStR8A7_rObZDaGFJq7Oo.roa (raw, json)
Hash identifier: jdoCfo/yZUUDBSFr1KMpvTydiRRGYoducgnqBFYOL1I=
Subject key identifier: 66:8D:47:1B:9C:D2:B5:1F:00:EF:FA:CE:6D:90:DA:18:52:6A:EC:EA
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0972
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Zo1HG5zStR8A7_rObZDaGFJq7Oo.roa
Signing time: Fri 22 Jan 2021 03:59:34 +0000
ROA not before: Fri 22 Jan 2021 03:59:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17809
IP address blocks: 2401:ab00::/32 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2418 (0x972)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Jan 22 03:59:34 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=668D471B9CD2B51F00EFFACE6D90DA18526AECEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8c:b9:f5:26:d6:14:ef:3d:ef:af:b9:57:81:
9b:4e:1c:37:e0:24:fd:27:e2:4f:69:e1:b3:a1:3d:
f6:24:04:da:fc:b7:c1:55:f9:d1:b9:1f:3e:cb:01:
b4:ea:f4:40:b7:a1:6d:f5:e9:73:aa:e3:73:0a:6f:
7c:03:53:f6:4b:da:85:60:16:8f:02:fc:56:ab:90:
eb:22:9a:8d:54:26:5d:95:69:e2:42:b5:e4:6f:10:
0f:4a:5d:99:6e:9a:e7:b4:fc:37:f1:cc:6c:b5:f0:
81:c5:d5:66:40:f3:19:eb:4f:93:ac:0c:f4:41:a2:
3b:02:f3:07:f3:c6:68:10:2c:f4:2f:73:ee:fd:bf:
c8:41:bf:6e:f8:62:af:3e:1d:64:3a:a8:b8:dc:a5:
d4:e9:5b:5c:0f:b9:14:f3:c1:e7:0e:1d:6f:be:65:
65:86:9d:c9:40:72:a2:52:72:17:b0:df:6a:e3:f7:
ad:4b:40:60:fa:bc:06:42:3f:3b:02:f9:5f:80:69:
8a:47:2c:a5:a0:85:52:89:55:f1:5d:b0:38:b2:65:
3e:1b:52:39:85:c0:6c:72:02:9d:03:2c:49:cb:f3:
7f:89:0b:ef:ca:35:8e:30:1c:95:e2:b1:9f:5d:70:
3e:4f:70:94:a3:f2:fd:80:73:9b:2c:6d:30:17:12:
6e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:8D:47:1B:9C:D2:B5:1F:00:EF:FA:CE:6D:90:DA:18:52:6A:EC:EA
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Zo1HG5zStR8A7_rObZDaGFJq7Oo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:ab00::/32
Signature Algorithm: sha256WithRSAEncryption
8f:4d:67:3d:f5:24:fa:51:ca:ec:e4:5e:92:67:dc:1e:7b:47:
ce:2b:71:09:b3:78:24:ff:a3:3a:b5:65:6c:5c:92:2e:c5:7d:
d9:38:2f:96:6c:0d:00:7c:7f:ca:7e:0f:0b:c2:7c:fb:5b:cd:
a6:33:99:2e:1e:87:5e:ce:24:bc:c2:a2:94:db:97:d4:0c:a0:
d7:86:45:00:43:b2:f2:8b:f9:19:8f:7c:26:77:62:fb:1e:08:
cb:56:c0:cd:1d:b2:06:14:31:ae:92:38:c6:f8:de:9d:cb:5c:
91:12:b7:76:86:3a:66:e8:61:6a:f2:e6:d7:66:1e:14:ae:36:
7e:b5:26:d9:74:ac:8c:a8:6a:33:f0:39:96:8d:46:20:0b:93:
2d:4a:59:85:77:35:f6:1a:5f:42:4c:fb:83:a9:6f:4a:f9:96:
2f:09:a9:39:a4:00:d8:41:a4:a0:8c:70:fe:39:01:a5:a9:49:
f4:44:ca:49:53:67:5c:ba:f5:e0:68:ee:09:31:0b:49:fa:92:
17:86:3b:8b:bd:ad:ce:d4:c4:b6:a6:3f:b0:da:61:03:cc:cd:
05:cb:d7:91:b7:fb:ad:b7:bf:e0:03:7e:db:8e:a6:8d:b6:07:
7d:fb:16:14:3c:50:02:72:fd:5d:28:ef:19:2f:1a:4e:a2:54:
3a:33:15:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org