Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/_7pVRFjq3LkJy29-zcnSWs9X9Us.roa
File: _7pVRFjq3LkJy29-zcnSWs9X9Us.roa (raw, json)
Hash identifier: rdndc+kQWNoRVO5Q+bdpJyYpnGwq/U/XZWIu9Jtm6oU=
Subject key identifier: FF:BA:55:44:58:EA:DC:B9:09:CB:6F:7E:CD:C9:D2:5A:CF:57:F5:4B
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0BFC
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/_7pVRFjq3LkJy29-zcnSWs9X9Us.roa
Signing time: Thu 15 Sep 2022 02:37:22 +0000
ROA not before: Thu 15 Sep 2022 02:37:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 203.222.24.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3068 (0xbfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 15 02:37:22 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FFBA554458EADCB909CB6F7ECDC9D25ACF57F54B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:51:12:67:74:48:51:f1:9d:df:94:e7:d6:ac:
38:fe:d8:dd:35:3f:f3:c1:90:6b:02:68:ae:01:d4:
21:5e:4c:7a:ab:77:10:84:23:1c:f5:4e:5e:27:91:
dc:0b:2d:75:5e:36:b6:cf:5c:d8:06:21:fc:38:1f:
08:68:b9:e6:3f:c2:b0:ba:90:80:8a:e7:5a:75:e4:
34:f2:65:da:2c:40:0e:e5:92:86:64:fa:d8:ef:3a:
51:59:ac:bb:bb:6f:46:5a:4c:08:ef:ca:04:2c:4e:
81:fd:bc:28:7b:a4:1d:b7:47:fc:dd:44:a4:8d:1b:
49:d7:33:ac:c1:5f:74:52:00:ec:ba:de:20:ee:1b:
36:c0:f0:5f:d0:07:e8:e1:50:13:8f:1b:0c:83:b7:
80:72:81:4a:2c:b4:8f:18:13:7c:17:d3:0d:7b:02:
52:ff:38:51:d9:74:6d:60:a8:63:62:95:e8:04:04:
94:15:91:56:74:a6:35:5a:25:23:62:58:14:3b:4e:
0b:4c:4d:28:51:cc:c4:f3:71:76:d0:a0:bc:d7:93:
7b:c3:42:55:34:1a:9f:d6:67:fe:91:08:91:eb:d7:
32:ac:2f:e8:de:28:84:df:29:9f:8a:2e:ff:b7:86:
3f:ab:0e:e1:df:3d:89:ad:5c:b8:ab:51:b9:86:10:
48:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:BA:55:44:58:EA:DC:B9:09:CB:6F:7E:CD:C9:D2:5A:CF:57:F5:4B
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/_7pVRFjq3LkJy29-zcnSWs9X9Us.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.222.24.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:64:0d:8f:ce:ba:8e:83:fe:89:5a:89:9c:35:e4:89:6f:04:
78:78:85:ef:51:ca:c0:4b:07:a7:b1:30:f4:87:87:33:77:0e:
e2:5c:54:e2:d1:d0:e4:dc:b2:92:2b:b6:e3:fc:c4:c3:d1:a5:
a8:6b:0f:df:59:6f:d0:d2:c8:1f:66:54:3f:28:5b:d4:5c:5f:
62:f5:12:19:0d:7e:59:f5:ed:70:55:96:e3:eb:68:e7:27:86:
4d:8b:63:9b:e3:e8:8b:9c:81:c3:6d:a7:19:7e:e9:e3:9c:f4:
80:09:04:fe:cf:0a:e6:e0:2a:bc:9f:c0:5c:c9:3b:74:e0:d6:
3e:d3:5c:f4:99:6f:c4:94:b4:3b:14:fd:52:92:46:2d:25:81:
dd:75:3d:84:ed:9e:eb:a5:b5:d8:9c:aa:49:d2:db:a3:60:89:
97:ea:ea:f0:ff:73:2f:fa:59:eb:b0:0a:5d:f0:b4:95:5f:e4:
1a:97:3e:6a:1f:41:0e:4b:12:94:f0:c1:41:8c:62:49:97:87:
10:03:a0:5d:53:49:95:7f:9b:90:96:5f:34:80:14:18:22:c7:
db:3a:45:16:45:cd:66:d8:de:f2:31:69:63:83:54:3c:57:d3:
13:f9:91:db:1c:73:32:e5:ba:7d:5d:76:f7:fe:5a:0b:e4:3d:
21:82:92:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org