Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/h0FCrP6CybF56DDr56ztvCmPhB4.roa
File: h0FCrP6CybF56DDr56ztvCmPhB4.roa (raw, json)
Hash identifier: YIEY81nY3539it/ZnJqb4Q8rDfb/YHTxIpTXI2UxI9o=
Subject key identifier: 87:41:42:AC:FE:82:C9:B1:79:E8:30:EB:E7:AC:ED:BC:29:8F:84:1E
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0AF2
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/h0FCrP6CybF56DDr56ztvCmPhB4.roa
Signing time: Thu 16 Dec 2021 06:35:35 +0000
ROA not before: Thu 16 Dec 2021 06:35:35 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17809
IP address blocks: 113.61.224.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2802 (0xaf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Dec 16 06:35:35 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=874142ACFE82C9B179E830EBE7ACEDBC298F841E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:23:39:a4:24:cf:92:5f:bf:97:96:dc:46:ad:
34:11:75:51:05:67:74:d6:c5:ca:e5:02:b8:cd:ee:
19:1e:aa:95:d8:56:82:67:54:38:a5:c9:fa:8c:00:
75:ea:a0:a9:25:17:91:f9:04:4e:c5:59:b9:b0:18:
5b:a9:42:25:cf:41:e2:11:7c:2f:8b:22:2f:cc:08:
ee:d6:49:60:77:6b:c5:5f:93:85:47:2b:2c:84:ee:
60:c8:c7:e5:37:5e:df:97:43:65:07:ce:51:ac:1b:
b0:3a:8f:64:7e:82:f4:bd:05:b7:b0:7a:8e:a3:29:
ec:cb:c6:26:93:d4:ca:d2:4b:6d:53:6e:e8:d9:38:
4f:32:0f:f3:b5:cf:ed:c9:ed:63:60:41:5f:e2:ed:
62:4b:d9:6d:27:92:e0:11:27:58:16:14:f8:a4:a5:
3f:ef:99:52:56:53:ba:1b:38:47:e4:13:48:c1:41:
95:62:5b:55:a9:0d:31:7b:10:4c:7e:d1:65:61:6a:
0f:97:1a:a5:a8:02:d4:30:ff:58:69:78:e2:4a:3b:
0d:44:a9:a5:1d:40:76:72:42:d4:f5:e7:eb:2e:7c:
dd:d4:8f:6b:6d:b1:ba:f9:50:94:0f:d6:fa:77:42:
5e:11:bd:50:1e:41:37:aa:07:2a:07:72:ea:b3:58:
89:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:41:42:AC:FE:82:C9:B1:79:E8:30:EB:E7:AC:ED:BC:29:8F:84:1E
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/h0FCrP6CybF56DDr56ztvCmPhB4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.224.0/19
Signature Algorithm: sha256WithRSAEncryption
2f:cc:9a:76:c3:f2:b6:43:70:22:32:91:01:e4:87:b9:88:06:
b1:bb:b6:c1:4c:0a:36:6b:e8:be:15:c5:84:a8:40:14:39:ae:
43:4a:55:88:5d:62:4f:90:38:29:39:1c:63:1d:26:d7:ea:a4:
9f:54:25:96:56:de:a7:2b:63:4e:71:42:07:48:43:1b:2a:5d:
ed:d1:67:fb:b6:63:94:6b:00:8c:ce:ae:0a:70:64:51:74:9d:
c2:aa:49:b1:a2:23:28:4d:af:d7:a1:ac:06:06:92:4f:3a:b0:
03:2b:48:c6:02:d2:c8:05:c4:31:29:99:71:a8:fe:ac:40:01:
ee:49:07:9b:76:31:fe:fb:8f:c9:a7:b1:d2:72:1a:d2:6d:cf:
0d:9a:79:31:7b:8c:18:35:b2:13:02:f2:13:36:5d:7f:99:5f:
ca:75:92:31:52:fb:9a:76:65:c0:16:d9:b2:3b:c3:7e:c4:1f:
32:51:45:2e:b8:89:c4:49:38:18:37:0c:5e:8d:80:03:03:1e:
80:26:90:e2:8a:a1:11:25:f4:66:8f:1f:bf:b0:08:7c:01:a2:
ad:40:65:da:dc:25:2c:c4:ad:69:e5:ba:7c:c2:77:7d:95:2e:
cc:23:5a:e7:ef:7b:61:2f:0c:da:06:49:de:6d:72:65:2c:5f:
d8:47:2e:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:01 2023 by rpki-client on console-fra.rpki-client.org