Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/dAGjTFQOzwGFvUO7kbLufzxtTgA.roa
File: dAGjTFQOzwGFvUO7kbLufzxtTgA.roa (raw, json)
Hash identifier: rFSU/kgZu5UcUnxmvKl3Q1JHHmvc2L98ikaHDUo/A9A=
Subject key identifier: 74:01:A3:4C:54:0E:CF:01:85:BD:43:BB:91:B2:EE:7F:3C:6D:4E:00
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0B2C
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/dAGjTFQOzwGFvUO7kbLufzxtTgA.roa
Signing time: Thu 16 Dec 2021 06:53:53 +0000
ROA not before: Thu 16 Dec 2021 06:53:53 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17809
IP address blocks: 203.222.16.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2860 (0xb2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Dec 16 06:53:53 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7401A34C540ECF0185BD43BB91B2EE7F3C6D4E00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:99:76:0d:38:9f:7a:d7:c5:35:31:7f:df:58:
6b:70:9d:96:bb:65:44:53:93:98:ed:13:b6:f2:55:
5d:a1:99:de:b1:d7:4f:d5:da:3e:bb:1e:77:5c:bd:
f6:81:2b:07:df:20:d6:74:1e:3d:bf:1a:76:c4:0e:
fa:6c:9d:bb:a3:55:d1:6b:bb:e7:bd:e2:73:30:d1:
98:8c:62:73:0a:0b:cd:24:44:8c:d1:d4:56:d7:d1:
48:29:d9:b0:b2:3f:e7:91:1a:26:a6:6f:15:55:6b:
72:d5:8e:15:ff:cb:aa:b1:a6:26:21:8e:7f:ae:3b:
69:5c:d0:22:0b:0c:dd:bd:d1:ec:b8:26:97:2c:e8:
bf:36:4b:23:6b:db:2d:63:70:3f:73:b9:ad:db:11:
38:aa:8a:a0:e4:8c:1f:52:c6:fc:6b:d0:71:28:ea:
bd:18:fb:3e:ba:78:d4:85:0e:03:33:cc:0e:df:be:
ed:40:7c:f4:c3:1c:91:cb:96:c3:86:77:e7:c0:e5:
54:4f:1e:e3:0d:70:14:20:17:40:51:0e:26:ad:f4:
82:67:04:78:c4:68:6b:ac:06:28:28:7a:d2:72:f3:
d4:5f:86:a2:04:9a:7e:16:66:17:04:b0:8a:ae:77:
3d:30:00:f1:65:f3:f5:05:49:f2:42:3a:a7:6e:f0:
41:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:01:A3:4C:54:0E:CF:01:85:BD:43:BB:91:B2:EE:7F:3C:6D:4E:00
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/dAGjTFQOzwGFvUO7kbLufzxtTgA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.222.16.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:ab:24:59:b5:5a:e1:87:c9:50:82:61:1b:09:cd:e5:00:91:
60:69:8e:98:97:c8:90:cc:e1:62:1f:9b:28:18:c8:24:4c:38:
9b:73:2e:62:3d:11:63:4f:22:3a:30:1c:b8:0a:ae:d2:a0:43:
5f:f7:2c:f8:e8:77:d3:7b:ec:b3:65:a5:ad:6c:bf:fd:7b:d5:
31:c0:16:b9:8e:b3:75:19:23:24:2f:d9:4c:41:4f:bb:9e:06:
30:2f:3e:57:cd:20:4a:ed:08:ec:1f:90:54:0d:3b:5e:15:88:
e1:25:26:c5:00:83:59:55:17:53:ba:5a:fb:df:6a:e5:7f:2f:
1c:30:be:0d:7f:53:25:77:61:a3:3d:d4:4d:ea:1c:70:ee:9d:
60:a7:15:75:a7:ac:7e:c9:38:46:d4:59:ec:06:3b:1d:95:b1:
ce:5d:35:ce:9f:6c:ad:0e:93:81:72:65:65:e3:f2:50:85:1d:
e9:80:e0:e3:2e:65:d3:9b:4b:a5:fc:4f:5a:3f:fe:cc:de:1b:
14:67:18:d5:43:84:85:3e:e4:50:e6:30:1f:81:4a:fe:43:40:
d3:8a:0b:d5:c4:71:97:3c:2a:ff:95:60:c8:bb:60:04:43:25:
94:54:a1:a0:d6:a1:89:5f:88:10:ce:66:9d:f9:a9:9d:05:aa:
e7:a9:20:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org