Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/fF55WjIy67YuHGBOa40BO28SPlo.roa
File: fF55WjIy67YuHGBOa40BO28SPlo.roa (raw, json)
Hash identifier: 1JB4fzy9nVlbj+o+cAgTFz1HYIK0kUVwduAwWg/57f8=
Subject key identifier: 7C:5E:79:5A:32:32:EB:B6:2E:1C:60:4E:6B:8D:01:3B:6F:12:3E:5A
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0CA7
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/fF55WjIy67YuHGBOa40BO28SPlo.roa
Signing time: Wed 26 Apr 2023 05:54:40 +0000
ROA not before: Wed 26 Apr 2023 05:54:40 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 27.96.232.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3239 (0xca7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 05:54:40 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7C5E795A3232EBB62E1C604E6B8D013B6F123E5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:91:f5:fd:f9:de:bf:ad:ce:26:b9:90:2b:a2:
b6:45:e5:31:75:4d:86:a3:3c:00:6d:c5:36:47:29:
85:9c:d0:e6:12:34:11:d7:5e:ef:01:5d:7c:83:15:
b7:93:d0:b9:05:e7:38:ba:de:23:af:36:b1:22:87:
48:5d:7e:88:58:00:d4:ae:f4:54:42:cb:cc:c4:d4:
d1:6f:51:2f:54:94:b6:a0:62:34:cd:fc:2a:30:25:
54:a3:c9:70:55:db:bb:46:de:b2:88:d5:fc:8e:16:
32:17:5d:09:3e:e4:51:6a:23:b4:cf:fb:a6:5f:dd:
2c:d2:d5:7c:07:b4:de:e9:53:06:dc:3b:0f:59:da:
b3:06:f8:ac:1b:df:8a:70:8c:61:09:97:ad:6f:63:
76:04:6d:e5:1e:34:c1:f4:0f:0d:1b:29:15:b6:1c:
e3:ec:9a:50:1f:fe:a4:13:40:91:63:2e:eb:2a:78:
b7:37:26:f4:80:2b:ce:30:ee:52:37:1a:8f:db:f8:
16:a3:00:71:d5:87:ca:d4:8f:8f:39:d2:15:a4:6d:
12:d0:c2:a8:4e:06:a6:bf:83:56:c1:58:d4:91:c1:
b5:8e:09:09:a0:3e:52:b8:ff:3f:58:08:f6:56:b8:
52:73:c0:7a:fe:cf:22:73:d4:23:28:65:93:60:a8:
f5:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:5E:79:5A:32:32:EB:B6:2E:1C:60:4E:6B:8D:01:3B:6F:12:3E:5A
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/fF55WjIy67YuHGBOa40BO28SPlo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.232.0/22
Signature Algorithm: sha256WithRSAEncryption
69:c5:57:85:2f:e8:ab:2d:be:90:9f:38:b1:c4:82:2a:f3:f8:
0d:34:9f:66:df:c6:d3:c4:65:c4:06:c7:22:cc:2e:4b:77:e7:
3d:0c:d4:ff:62:72:88:2b:4e:90:88:18:10:53:58:15:43:ea:
d6:0f:5b:dd:15:80:8b:0c:4d:07:fa:81:81:bb:b0:34:da:5b:
9b:c0:6e:15:6d:ca:81:b4:83:dc:d0:3d:a1:0b:73:f6:de:4c:
7a:62:49:75:5f:af:67:00:6f:60:02:5b:bb:1e:60:0d:7c:b7:
f7:c6:82:bf:e6:20:d5:10:ae:05:c5:9f:3c:d5:8a:7e:db:65:
91:d3:f0:ca:a8:cc:b6:c8:b9:f3:37:85:cb:b2:46:f6:8b:40:
bd:36:5e:96:fd:5c:1b:5d:31:7e:f6:76:33:eb:28:6b:f5:cf:
a7:1e:95:2f:a3:2b:1a:8a:e4:19:b7:12:10:b6:f4:95:4e:bc:
76:0b:05:50:93:16:42:38:e2:05:da:73:9c:5e:81:a7:e8:4d:
61:f4:22:f2:b1:f4:bb:df:e9:16:c0:fb:54:41:0d:22:88:4c:
26:01:8c:65:07:6a:c1:57:e2:dc:ed:20:a9:c1:04:e3:ff:58:
16:b5:1b:4a:09:c6:64:b8:92:53:f3:aa:83:5f:bb:62:2c:aa:
c9:15:4f:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org