Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/_ntcZpYR-hK6wU97vQfMl_GTz-A.roa
File: _ntcZpYR-hK6wU97vQfMl_GTz-A.roa (raw, json)
Hash identifier: 9LFLGkiHqOiMomJBpQvJRwQU67fAOVrK6xmpueKYIoo=
Subject key identifier: FE:7B:5C:66:96:11:FA:12:BA:C1:4F:7B:BD:07:CC:97:F1:93:CF:E0
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0F2D
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/_ntcZpYR-hK6wU97vQfMl_GTz-A.roa
Signing time: Tue 28 May 2024 00:54:10 +0000
ROA not before: Tue 28 May 2024 00:54:10 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 113.61.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3885 (0xf2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: May 28 00:54:10 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=FE7B5C669611FA12BAC14F7BBD07CC97F193CFE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:09:fe:5a:cf:f1:a9:d9:04:f5:7e:bc:a9:ed:
91:80:7d:06:14:35:4a:31:d9:6c:6c:71:6f:4d:2f:
6a:83:ab:45:45:3a:86:7c:29:39:76:5b:b8:71:32:
2f:ec:1a:5a:f4:78:72:03:d2:76:29:00:6d:ed:bf:
eb:94:ab:1d:92:28:4a:10:6e:24:4a:67:69:42:43:
3d:4a:2f:52:dd:13:b2:1f:32:e0:7a:b9:b0:a6:80:
7a:b1:46:8d:d8:e5:f6:37:f0:74:63:27:54:00:36:
a9:46:84:df:28:0a:5b:86:62:cd:b5:e6:a9:32:4e:
e9:b8:67:e5:0f:99:79:5b:7a:41:a1:4c:ae:b6:9f:
1f:3e:21:70:ff:53:bc:f6:13:7e:cd:4a:44:8d:c8:
0f:84:81:ce:fe:32:20:9a:0b:68:33:0e:39:ac:cb:
64:60:0a:a8:80:48:68:1b:20:cd:52:c4:42:9c:50:
e9:dc:73:b2:6d:98:4e:22:f9:45:de:ad:94:04:38:
33:1a:5e:09:27:55:ba:a1:81:90:f3:c2:5d:5d:c9:
3d:ea:8c:8b:33:6f:26:20:44:64:ee:96:ec:18:92:
10:9b:2b:3e:1e:be:b0:5b:86:2e:2f:ab:b1:1d:54:
6f:34:43:cd:ff:96:76:4b:d5:23:33:b0:91:34:42:
b9:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:7B:5C:66:96:11:FA:12:BA:C1:4F:7B:BD:07:CC:97:F1:93:CF:E0
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/_ntcZpYR-hK6wU97vQfMl_GTz-A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.171.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:d3:86:fc:a7:b7:53:2e:10:51:91:ae:b9:fa:97:ae:b3:4b:
7a:82:91:4b:63:d6:e6:d9:7e:71:3f:38:83:30:48:f0:56:34:
14:44:55:74:9d:6b:c5:81:c3:16:ee:47:9f:83:ad:05:d9:fc:
bd:5f:35:03:e0:a9:52:6c:76:d0:2c:0b:49:b6:24:26:08:17:
a5:de:e8:7e:a9:bc:33:7c:b4:7e:fc:cd:94:93:6e:8c:03:64:
de:5f:b3:aa:eb:82:bb:44:94:fb:ff:e2:78:5d:12:30:ea:ba:
90:eb:9a:85:e1:b1:16:bd:25:12:b9:c4:1f:91:57:aa:f1:af:
b8:90:56:39:1e:7c:50:a8:8a:47:cf:f6:72:ad:51:db:93:cb:
90:1b:bd:c9:5e:ed:71:ac:a7:33:ab:24:08:30:a4:1c:ad:8e:
5a:63:7a:5b:45:28:1b:8f:5f:e1:bb:4c:56:55:bc:a2:36:ab:
02:eb:bb:49:53:be:10:b2:4e:78:68:fc:eb:66:3f:e8:bc:62:
fb:0b:73:91:f7:c9:0e:48:eb:db:b2:b5:a1:5a:68:63:88:87:
25:7f:30:3a:ef:ff:3a:ca:70:6a:a8:e3:a1:62:00:ac:29:29:
17:cd:51:77:d9:17:7f:2c:b6:dd:6c:da:bc:1d:ec:2e:43:32:
4a:47:09:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:12:21 2025 by rpki-client