Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/dCayNXsR-Ptd2RB0fxs_lgGaXtA.roa
File: dCayNXsR-Ptd2RB0fxs_lgGaXtA.roa (raw, json)
Hash identifier: Ep+DFjaawVfkckDm0ut+lJb0O3RS9VrodBMXAlRepyI=
Subject key identifier: 74:26:B2:35:7B:11:F8:FB:5D:D9:10:74:7F:1B:3F:96:01:9A:5E:D0
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0BFC
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/dCayNXsR-Ptd2RB0fxs_lgGaXtA.roa
Signing time: Thu 15 Sep 2022 02:37:22 +0000
ROA not before: Thu 15 Sep 2022 02:37:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 113.61.224.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3068 (0xbfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 15 02:37:22 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7426B2357B11F8FB5DD910747F1B3F96019A5ED0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b6:8f:f6:4e:e4:5c:36:38:e1:8a:57:cb:3e:
0d:72:21:b1:ce:3f:57:92:34:3b:a4:bb:05:96:76:
43:9c:c6:15:66:f7:9b:3b:61:76:c0:3b:d2:a8:c1:
e5:06:7e:9c:77:3a:f5:a8:4c:29:c3:52:37:ff:2e:
d5:fe:19:40:ae:1d:1c:d3:92:73:75:2a:70:59:6a:
02:2f:b0:c5:9b:29:ba:46:64:61:b1:55:a5:ed:d0:
2c:b8:f6:56:c3:fe:49:25:89:1f:10:20:26:03:23:
e6:e0:09:26:7b:fc:c7:f3:3a:b9:28:b0:48:22:15:
a2:3b:a7:02:0d:9f:e2:17:ca:34:d5:1f:5b:2a:dc:
14:70:08:98:3d:dc:91:5d:a9:56:95:5e:55:b7:d1:
25:88:19:b5:47:3f:e3:d4:a8:f4:4e:d7:a7:70:38:
d0:c5:09:88:9e:be:38:3c:1c:98:58:07:b1:0c:6f:
4c:9b:9e:ee:51:07:dc:b6:35:97:ce:e3:e8:50:7a:
20:7d:03:06:93:45:17:f7:ec:60:8e:05:e6:d0:b0:
9e:6a:56:95:83:35:fa:3e:36:16:e6:1c:29:43:28:
f9:3c:2f:68:09:e2:57:58:0a:4c:d6:8f:57:63:85:
b8:7c:24:2a:68:a3:90:b9:d2:01:8f:64:df:96:0b:
f6:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:26:B2:35:7B:11:F8:FB:5D:D9:10:74:7F:1B:3F:96:01:9A:5E:D0
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/dCayNXsR-Ptd2RB0fxs_lgGaXtA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.224.0/20
Signature Algorithm: sha256WithRSAEncryption
b4:2e:10:d5:b1:84:9b:14:ca:dc:d9:9e:d1:89:80:cd:64:c1:
f2:fe:9f:8b:ea:e5:57:9d:22:0d:3c:df:70:fe:b7:5b:98:1f:
46:cb:af:ef:77:23:5c:7d:99:6a:4e:43:bd:17:c3:b9:f2:83:
a4:57:8f:13:6f:40:03:5a:ff:82:09:9f:af:7b:35:24:0c:d9:
64:66:ea:89:2c:0a:17:1a:83:6b:9f:c7:55:ce:cc:7f:ba:b8:
2a:2e:ef:a2:bb:98:9b:f7:d5:f8:0a:15:20:e2:30:55:99:9f:
33:b6:2f:e3:6e:d3:05:e0:44:65:91:9e:64:bb:6d:75:3e:bc:
79:d2:97:b0:2e:44:d8:6c:ea:1c:57:33:ac:b0:5d:18:05:23:
57:2b:18:df:3c:97:91:18:8c:b4:a6:88:97:43:a6:31:75:e4:
6b:ae:c5:1f:99:75:04:6e:4b:24:b7:84:d2:79:3c:79:09:ee:
43:67:4c:8b:ce:00:eb:76:21:29:4c:6c:b7:17:b1:cf:f1:c5:
8b:31:14:e4:1d:fe:7b:cd:8f:a5:af:de:f4:dd:47:d7:3b:c1:
c2:ee:4a:de:9e:1f:68:4f:19:66:85:4a:3d:93:b8:e9:3f:fe:
40:f1:f4:a7:88:fe:6d:92:37:cf:66:a3:98:69:39:56:b6:1a:
8a:6a:de:21
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICC/wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMjA5MTUw
MjM3MjJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDc0MjZCMjM1N0IxMUY4
RkI1REQ5MTA3NDdGMUIzRjk2MDE5QTVFRDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC3to/2TuRcNjjhilfLPg1yIbHOP1eSNDukuwWWdkOcxhVm95s7
YXbAO9KoweUGfpx3OvWoTCnDUjf/LtX+GUCuHRzTknN1KnBZagIvsMWbKbpGZGGx
VaXt0Cy49lbD/kkliR8QICYDI+bgCSZ7/MfzOrkosEgiFaI7pwINn+IXyjTVH1sq
3BRwCJg93JFdqVaVXlW30SWIGbVHP+PUqPRO16dwONDFCYievjg8HJhYB7EMb0yb
nu5RB9y2NZfO4+hQeiB9AwaTRRf37GCOBebQsJ5qVpWDNfo+NhbmHClDKPk8L2gJ
4ldYCkzWj1djhbh8JCpoo5C50gGPZN+WC/bfAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUdCayNXsR+Ptd2RB0fxs/lgGaXtAwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvZENheU5Yc1ItUHRkMlJCMGZ4c19s
Z0dhWHRBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBHE94DAN
BgkqhkiG9w0BAQsFAAOCAQEAtC4Q1bGEmxTK3Nme0YmAzWTB8v6fi+rlV50iDTzf
cP63W5gfRsuv73cjXH2Zak5DvRfDufKDpFePE29AA1r/ggmfr3s1JAzZZGbqiSwK
FxqDa5/HVc7Mf7q4Ki7voruYm/fV+AoVIOIwVZmfM7Yv427TBeBEZZGeZLttdT68
edKXsC5E2GzqHFczrLBdGAUjVysY3zyXkRiMtKaIl0OmMXXka67FH5l1BG5LJLeE
0nk8eQnuQ2dMi84A63YhKUxstxexz/HFizEU5B3+e82Ppa/e9N1H1zvBwu5K3p4f
aE8ZZoVKPZO46T/+QPH0p4j+bZI3z2ajmGk5VrYaimreIQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org