Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/_hgGT9ZsCdT8XoaO-gv1kHEISmM.roa
File: _hgGT9ZsCdT8XoaO-gv1kHEISmM.roa (raw, json)
Hash identifier: RinVfWjImgMkDo/zZh8Z56ntNyyVeIwIyaharXlNIZ8=
Subject key identifier: FE:18:06:4F:D6:6C:09:D4:FC:5E:86:8E:FA:0B:F5:90:71:08:4A:63
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 090E
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/_hgGT9ZsCdT8XoaO-gv1kHEISmM.roa
Signing time: Tue 24 Nov 2020 03:23:38 +0000
ROA not before: Tue 24 Nov 2020 03:23:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17809
IP address blocks: 111.67.60.0/22 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2318 (0x90e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Nov 24 03:23:38 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FE18064FD66C09D4FC5E868EFA0BF59071084A63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9c:04:ae:2c:27:ed:ca:31:cd:d0:d1:00:0e:
4b:41:80:70:50:9f:ec:d6:f5:f7:ec:70:58:b2:ab:
72:9b:f5:f3:e0:ee:78:ee:54:e3:f9:22:43:86:04:
21:2e:eb:ac:91:ea:50:45:57:88:7c:24:2c:6d:88:
bc:61:d4:71:90:48:4a:57:5a:01:ae:79:44:67:75:
d8:81:ca:08:f1:01:6b:60:41:76:98:94:bc:07:71:
9a:f7:2d:db:c1:ff:20:98:cb:09:cb:29:3b:f0:2b:
5e:51:7a:ba:54:8a:5c:38:56:9f:c1:02:33:bc:3e:
00:25:78:37:4e:41:47:2f:29:b3:67:3a:71:4b:85:
1f:86:59:58:e8:fc:0d:ef:3f:ca:f5:79:fb:e4:c2:
3e:05:63:d1:a8:f2:59:d0:3d:3e:5d:7a:b1:24:69:
76:71:ba:52:30:61:44:e4:4e:d7:88:9e:21:b1:74:
05:da:7f:17:72:52:14:7a:87:c5:28:bb:7e:47:3b:
62:36:99:5c:54:47:3d:54:8e:45:80:01:32:24:2d:
ff:c0:47:13:ba:30:ab:6e:1a:23:b1:57:77:32:6a:
e3:a9:03:45:39:98:72:15:69:00:39:ef:9e:a6:2c:
62:73:82:79:fe:03:97:99:e6:9c:4d:e6:62:41:04:
5c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:18:06:4F:D6:6C:09:D4:FC:5E:86:8E:FA:0B:F5:90:71:08:4A:63
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/_hgGT9ZsCdT8XoaO-gv1kHEISmM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
111.67.60.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:a1:83:1d:b7:0a:0f:c6:e1:c4:6b:9f:9c:9c:9c:29:5d:05:
9e:de:cc:12:42:0f:c9:36:33:47:93:b5:cf:5a:5d:08:1e:ff:
f3:37:21:18:94:6e:3d:44:21:14:07:a7:7a:5f:68:f6:72:1b:
38:dd:bc:9a:e9:e2:b3:86:dc:17:74:38:16:3e:cc:21:3f:41:
a5:fe:47:83:11:d2:ec:50:6b:66:60:63:43:a2:74:14:3e:87:
e9:09:c9:80:05:e0:66:8e:46:50:a3:87:aa:18:5f:29:f2:84:
56:a8:98:0d:fe:a8:3f:ac:d4:f6:00:39:ec:66:1e:42:41:f2:
f6:db:b3:26:e6:2e:26:df:64:75:aa:a9:bf:47:74:b9:de:39:
f7:d7:bb:a8:7d:37:8f:8f:9b:b8:49:d6:2f:62:c1:aa:21:4f:
d3:33:b9:f5:a5:c1:5d:41:c4:80:73:2b:26:fe:11:72:6c:e1:
ad:58:fb:b8:2e:b6:75:9d:9d:99:a3:3b:f1:d1:a3:d2:de:5a:
70:de:1e:f1:6a:b2:67:e1:3d:0f:98:ce:6b:e9:90:52:4b:57:
fd:4a:98:49:e1:0a:72:69:ab:fd:70:34:7d:87:90:22:b9:c5:
59:0d:2c:c2:60:13:48:c3:4c:2c:38:8c:79:7a:80:9f:af:54:
14:fb:18:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org