Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/gwyIYRMJPw5NQRjIBt-gkkoBBp8.roa
File: gwyIYRMJPw5NQRjIBt-gkkoBBp8.roa (raw, json)
Hash identifier: caAD4RmWaD0pdATzCwh3XCPaHTfROyV36R8/I/b7dh4=
Subject key identifier: 83:0C:88:61:13:09:3F:0E:4D:41:18:C8:06:DF:A0:92:4A:01:06:9F
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0CF9
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/gwyIYRMJPw5NQRjIBt-gkkoBBp8.roa
Signing time: Wed 26 Apr 2023 10:31:24 +0000
ROA not before: Wed 26 Apr 2023 10:31:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 203.222.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3321 (0xcf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:24 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=830C886113093F0E4D4118C806DFA0924A01069F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:36:7c:f0:19:1d:53:1c:a2:5c:b6:f7:0c:a9:
13:ea:fd:a7:06:39:30:fe:6b:ac:24:97:06:91:db:
a9:35:50:78:02:69:ef:03:8b:52:a1:40:fa:cc:02:
62:f3:80:99:7f:8d:12:cc:5d:23:ac:32:55:9c:8f:
a2:c8:11:47:3b:9e:2b:81:b3:22:bc:3b:5e:6c:60:
a9:ef:a6:e5:1c:f9:28:79:ba:08:af:d0:14:63:26:
a8:2b:0c:29:a0:cb:30:1d:d0:ef:12:84:1c:72:37:
64:e1:7a:33:35:2f:67:7c:6f:46:b2:84:98:ed:21:
ea:a3:92:cb:eb:a4:d1:f1:a1:50:6a:cb:03:f3:ca:
d1:59:29:c5:63:70:68:20:cb:6e:b1:ca:09:5d:f1:
05:6d:53:f4:13:06:d1:fc:eb:07:5d:28:f7:07:14:
51:fc:40:9d:01:68:00:49:77:11:e6:13:98:25:75:
d2:2b:97:a8:a7:b7:80:b1:2a:bb:8c:62:5d:4a:65:
ba:2a:7b:33:2d:3f:9e:c1:19:f6:b4:23:ee:91:f8:
e3:3c:df:1e:3e:27:82:9d:fe:ae:ec:f5:fb:d4:8d:
d9:92:89:8e:76:ab:4d:c2:97:26:27:46:08:4e:6e:
32:64:63:ea:d3:8f:de:aa:e0:56:07:09:79:a4:da:
da:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:0C:88:61:13:09:3F:0E:4D:41:18:C8:06:DF:A0:92:4A:01:06:9F
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/gwyIYRMJPw5NQRjIBt-gkkoBBp8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.222.4.0/22
Signature Algorithm: sha256WithRSAEncryption
43:fd:a4:d9:59:6a:56:59:9a:a8:5b:44:3e:6f:c0:c6:dd:f1:
dd:37:c8:31:5e:86:1f:2c:42:74:06:96:5d:37:3d:14:7b:a8:
ab:19:cd:05:b0:71:fb:7c:0e:93:55:a3:d7:c5:b1:df:6b:e8:
88:5e:df:1a:65:5e:26:86:0d:5b:90:e3:34:aa:5f:79:53:b8:
54:ff:96:b9:84:31:3a:ed:48:c7:92:6b:eb:d6:a9:c9:2e:48:
58:2f:5e:dd:23:4d:74:43:c9:a0:ea:ad:72:13:7a:31:71:f2:
78:26:24:e5:0e:0b:9f:25:d0:07:7d:3a:ef:b0:e4:6a:42:45:
ad:87:fa:b6:ef:94:6d:3d:7d:47:da:d2:c2:e2:b1:c2:b8:64:
fb:03:0e:1c:f3:74:9f:9a:fe:93:24:89:d1:63:33:8e:8f:eb:
70:8c:28:6b:e9:29:b1:0e:9a:d9:f0:3a:16:4e:4a:85:cc:0c:
58:35:09:d1:4f:67:93:c8:56:a8:10:ed:f3:70:10:d0:f8:9d:
00:23:cb:2f:1c:83:b0:1d:50:9c:f3:0c:e1:19:1e:2e:61:ec:
23:64:fe:57:b7:ea:47:62:d2:2c:90:54:4b:37:cf:80:7c:ba:
c1:6a:20:e3:04:a3:72:3c:2d:66:0d:86:6c:65:69:7f:3a:56:
68:b7:86:73
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDPkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA0MjYx
MDMxMjRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDgzMEM4ODYxMTMwOTNG
MEU0RDQxMThDODA2REZBMDkyNEEwMTA2OUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC8NnzwGR1THKJctvcMqRPq/acGOTD+a6wklwaR26k1UHgCae8D
i1KhQPrMAmLzgJl/jRLMXSOsMlWcj6LIEUc7niuBsyK8O15sYKnvpuUc+Sh5ugiv
0BRjJqgrDCmgyzAd0O8ShBxyN2ThejM1L2d8b0ayhJjtIeqjksvrpNHxoVBqywPz
ytFZKcVjcGggy26xygld8QVtU/QTBtH86wddKPcHFFH8QJ0BaABJdxHmE5glddIr
l6int4CxKruMYl1KZboqezMtP57BGfa0I+6R+OM83x4+J4Kd/q7s9fvUjdmSiY52
q03ClyYnRghObjJkY+rTj96q4FYHCXmk2trtAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUgwyIYRMJPw5NQRjIBt+gkkoBBp8wHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvZ3d5SVlSTUpQdzVOUVJqSUJ0LWdr
a29CQnA4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsveBDAN
BgkqhkiG9w0BAQsFAAOCAQEAQ/2k2VlqVlmaqFtEPm/Axt3x3TfIMV6GHyxCdAaW
XTc9FHuoqxnNBbBx+3wOk1Wj18Wx32voiF7fGmVeJoYNW5DjNKpfeVO4VP+WuYQx
Ou1Ix5Jr69apyS5IWC9e3SNNdEPJoOqtchN6MXHyeCYk5Q4LnyXQB30677DkakJF
rYf6tu+UbT19R9rSwuKxwrhk+wMOHPN0n5r+kySJ0WMzjo/rcIwoa+kpsQ6a2fA6
Fk5KhcwMWDUJ0U9nk8hWqBDt83AQ0PidACPLLxyDsB1QnPMM4RkeLmHsI2T+V7fq
R2LSLJBUSzfPgHy6wWog4wSjcjwtZg2GbGVpfzpWaLeGcw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org