Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/cCopHBcLn1iPZZEIn8etuxhArYQ.roa
File: cCopHBcLn1iPZZEIn8etuxhArYQ.roa (raw, json)
Hash identifier: Q4mqZsn0LMcYC3Cwr6EFVsG/EEv7CNRYosb/lLEpro0=
Subject key identifier: 70:2A:29:1C:17:0B:9F:58:8F:65:91:08:9F:C7:AD:BB:18:40:AD:84
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D0A
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/cCopHBcLn1iPZZEIn8etuxhArYQ.roa
Signing time: Wed 26 Apr 2023 10:31:28 +0000
ROA not before: Wed 26 Apr 2023 10:31:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 210.209.128.0/17 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3338 (0xd0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:28 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=702A291C170B9F588F6591089FC7ADBB1840AD84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c7:70:40:77:0b:9e:ea:9f:fa:46:fb:66:8d:
75:e0:7f:fc:c1:d3:eb:af:c5:dd:06:bf:30:76:1b:
ad:b3:df:ce:83:ce:02:5c:bc:2f:d1:fe:8b:b6:41:
93:b3:07:4c:68:e5:ab:1a:5a:05:56:fd:33:39:28:
bb:73:a0:d0:ff:89:b2:90:93:59:99:7d:a4:6c:a9:
ed:0e:27:a4:77:93:9b:73:31:08:2c:f2:61:76:67:
ab:02:38:c3:07:4f:dc:61:63:82:b3:7e:ff:84:6f:
61:99:a5:57:2f:95:08:2f:a8:c9:03:8f:8d:16:3a:
6c:d4:18:7d:12:58:ab:f3:dc:39:d9:9d:a4:75:37:
89:b1:d9:d9:c3:6a:7b:7f:4f:cf:33:8d:76:9a:16:
b4:51:26:13:cf:3b:be:aa:24:32:06:59:ec:33:3a:
1d:30:55:e5:cb:2d:02:e5:03:b8:5a:71:4b:11:79:
15:a8:8a:25:85:ef:f1:e7:20:12:76:19:0c:0d:2b:
9b:39:27:a4:9b:ef:c4:2a:87:19:c5:1d:0b:b4:31:
16:87:35:51:cc:40:83:30:36:8f:a3:d2:db:99:73:
4a:88:ba:5c:75:20:d6:09:d2:c2:36:04:d3:5d:8b:
c9:1f:d3:03:17:23:9a:d1:06:d2:a7:3c:6f:d4:3e:
46:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:2A:29:1C:17:0B:9F:58:8F:65:91:08:9F:C7:AD:BB:18:40:AD:84
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/cCopHBcLn1iPZZEIn8etuxhArYQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.209.128.0/17
Signature Algorithm: sha256WithRSAEncryption
22:cc:70:c6:7f:32:42:5a:32:a4:8e:80:3f:1c:d3:3e:70:48:
e1:13:56:d5:a4:89:3f:ca:02:29:8f:89:28:5f:5d:2f:b8:97:
1a:a6:51:44:74:17:e6:e6:51:ee:d8:67:f6:b1:3c:d5:08:5d:
5a:8d:5d:50:bf:67:62:8d:70:50:57:7c:7b:05:f3:85:fd:da:
91:8f:9b:10:c8:ab:5d:19:b3:06:c8:4c:dd:82:af:d6:30:94:
a1:94:20:d7:85:0d:a7:84:e4:2c:6a:1e:ee:93:b3:b9:f5:24:
85:e1:26:47:ba:f4:61:7e:c3:d9:bd:0d:77:b8:36:d3:5d:3d:
18:54:e7:f8:a2:2a:c5:8a:5b:1c:cc:1d:ca:5f:21:8c:dd:29:
39:1f:87:01:94:25:16:04:c8:87:c9:82:d9:e7:c6:34:c6:d7:
04:ba:be:88:3b:4a:9a:03:5b:55:05:45:54:5e:8f:11:fa:02:
84:99:b7:c7:a4:36:72:19:f9:bb:df:a2:3e:5d:fe:76:ff:75:
09:1a:c6:e0:09:0a:eb:2d:77:b7:0e:9f:1b:29:8a:a9:ae:84:
90:59:10:de:bc:b9:49:33:17:64:9e:4c:d3:01:52:fc:a9:34:
01:c9:06:ea:3d:60:c4:ba:bd:e7:a3:a6:c3:58:25:e0:95:c3:
f1:dc:89:2d
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDQowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA0MjYx
MDMxMjhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDcwMkEyOTFDMTcwQjlG
NTg4RjY1OTEwODlGQzdBREJCMTg0MEFEODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCtx3BAdwue6p/6RvtmjXXgf/zB0+uvxd0GvzB2G62z386DzgJc
vC/R/ou2QZOzB0xo5asaWgVW/TM5KLtzoND/ibKQk1mZfaRsqe0OJ6R3k5tzMQgs
8mF2Z6sCOMMHT9xhY4Kzfv+Eb2GZpVcvlQgvqMkDj40WOmzUGH0SWKvz3DnZnaR1
N4mx2dnDant/T88zjXaaFrRRJhPPO76qJDIGWewzOh0wVeXLLQLlA7hacUsReRWo
iiWF7/HnIBJ2GQwNK5s5J6Sb78QqhxnFHQu0MRaHNVHMQIMwNo+j0tuZc0qIulx1
INYJ0sI2BNNdi8kf0wMXI5rRBtKnPG/UPkYbAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUcCopHBcLn1iPZZEIn8etuxhArYQwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvY0NvcEhCY0xuMWlQWlpFSW44ZXR1
eGhBcllRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB9LRgDAN
BgkqhkiG9w0BAQsFAAOCAQEAIsxwxn8yQloypI6APxzTPnBI4RNW1aSJP8oCKY+J
KF9dL7iXGqZRRHQX5uZR7thn9rE81QhdWo1dUL9nYo1wUFd8ewXzhf3akY+bEMir
XRmzBshM3YKv1jCUoZQg14UNp4TkLGoe7pOzufUkheEmR7r0YX7D2b0Nd7g20109
GFTn+KIqxYpbHMwdyl8hjN0pOR+HAZQlFgTIh8mC2efGNMbXBLq+iDtKmgNbVQVF
VF6PEfoChJm3x6Q2chn5u9+iPl3+dv91CRrG4AkK6y13tw6fGymKqa6EkFkQ3ry5
STMXZJ5M0wFS/Kk0AckG6j1gxLq956Omw1gl4JXD8dyJLQ==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:37:48 2025 by rpki-client