Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/fU3rTRe6BwEOeNtF0OxMvYKaqJ4.roa
File: fU3rTRe6BwEOeNtF0OxMvYKaqJ4.roa (raw, json)
Hash identifier: +A7QlZEK9frpACj/ElgBtPXEVViGXsR3kLx9H2EVJIw=
Subject key identifier: 7D:4D:EB:4D:17:BA:07:01:0E:78:DB:45:D0:EC:4C:BD:82:9A:A8:9E
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E31
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/fU3rTRe6BwEOeNtF0OxMvYKaqJ4.roa
Signing time: Fri 01 Sep 2023 08:49:24 +0000
ROA not before: Fri 01 Sep 2023 08:49:24 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 210.209.224.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3633 (0xe31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:24 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7D4DEB4D17BA07010E78DB45D0EC4CBD829AA89E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ee:91:b9:1c:7f:15:fb:3a:ad:82:70:03:c1:
ac:ee:14:2a:24:5d:1f:38:b1:99:02:e6:0f:72:d3:
05:4f:16:77:96:8d:ad:4f:00:48:1c:4a:47:2e:7a:
04:1a:7c:82:eb:8a:b4:f4:9f:a4:59:c6:d0:28:17:
db:90:a5:00:88:4d:47:f3:25:4d:bd:03:ce:8c:d2:
7e:fc:a2:ac:4f:24:98:3b:91:c3:03:c1:b8:b0:8e:
a4:63:3d:1c:f3:50:60:a3:93:c8:94:50:40:ed:c6:
10:b8:e4:98:46:24:ec:0d:da:7e:f0:43:10:65:27:
ff:ab:94:8f:3c:05:86:ef:3f:09:26:b3:1e:07:1e:
58:15:44:7c:07:39:ef:7d:42:9e:82:5a:e1:0c:7c:
a7:05:76:0b:ef:90:75:b1:4c:a7:1a:45:9a:0d:4a:
0c:a8:6a:b6:88:a7:a8:f1:13:9d:b0:69:f1:39:ee:
35:15:42:b6:ed:56:4c:86:7e:98:77:cd:7c:08:44:
57:66:bb:c7:ea:10:6d:14:b7:53:2c:50:72:47:4a:
37:98:8e:af:5f:13:92:ff:d0:98:d9:13:ed:76:59:
e8:a6:56:2b:03:93:24:0a:1e:29:71:b3:35:41:3d:
db:81:4c:b7:36:ee:5a:0b:bc:36:18:1b:a4:1f:02:
60:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:4D:EB:4D:17:BA:07:01:0E:78:DB:45:D0:EC:4C:BD:82:9A:A8:9E
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/fU3rTRe6BwEOeNtF0OxMvYKaqJ4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.209.224.0/19
Signature Algorithm: sha256WithRSAEncryption
32:f5:d9:40:e0:c6:f5:44:50:2c:b4:62:83:c4:17:74:16:61:
75:f8:41:fa:2a:fb:96:cc:8e:d3:0f:bf:b8:40:e6:42:8d:1d:
a5:4b:05:cf:85:05:c9:14:d1:f0:f9:bf:e9:fb:4c:94:76:61:
62:56:57:27:0a:eb:5a:03:18:7a:3e:b9:3e:88:d7:ec:e1:28:
00:7b:c4:5a:77:20:90:51:5c:e6:ee:65:5c:bd:e4:10:a8:8a:
b9:17:6a:9a:77:41:d9:c2:c3:bd:4c:0a:2c:48:50:d4:80:fe:
77:d0:46:0c:d9:8d:a2:2a:61:6d:ba:75:aa:e0:bf:1b:06:d5:
ed:dc:18:de:16:72:28:d3:fd:54:b2:ae:15:6b:b7:ef:af:57:
f0:54:75:43:60:78:3e:f0:18:48:f0:2a:fa:29:7d:6c:f3:d9:
b6:7d:77:75:5a:55:f7:c3:d9:86:19:39:c5:70:eb:46:25:06:
8a:b9:fa:d3:7a:83:9b:e9:bd:ec:00:ca:f9:c9:e7:02:e9:68:
42:eb:d0:df:41:d7:9e:f3:68:74:18:39:49:7a:12:f0:5c:8a:
1d:5e:e0:0a:94:11:cd:2f:5f:48:0c:f6:77:76:86:00:a7:06:
0e:15:49:86:e8:50:55:a5:19:59:64:d2:c2:29:69:dd:b3:8d:
eb:d1:0b:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:13:00 2025 by rpki-client