Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/hMIozwLXSB9MCAXsy5GeZHZe3PY.roa
File: hMIozwLXSB9MCAXsy5GeZHZe3PY.roa (raw, json)
Hash identifier: VDa5mMDMvQ/dbO1ZqR08VUD630jn7+ecnrCg0PtLSmU=
Subject key identifier: 84:C2:28:CF:02:D7:48:1F:4C:08:05:EC:CB:91:9E:64:76:5E:DC:F6
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 08D6
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/hMIozwLXSB9MCAXsy5GeZHZe3PY.roa
Signing time: Wed 18 Nov 2020 07:57:03 +0000
ROA not before: Wed 18 Nov 2020 07:57:03 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17809
IP address blocks: 27.96.224.0/19 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2262 (0x8d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Nov 18 07:57:03 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=84C228CF02D7481F4C0805ECCB919E64765EDCF6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f9:c5:00:9a:d9:9f:00:a4:c8:c4:7f:08:13:
5c:b7:82:3f:13:6f:20:7c:51:a4:e5:3f:a5:bc:d9:
89:dd:eb:63:f8:e8:a5:91:ea:7d:b3:15:8a:8b:ed:
75:fb:f2:37:16:85:ed:18:ba:16:c3:fb:12:5e:c2:
b7:9b:b0:78:9b:a6:cc:3a:4f:d9:b2:cd:62:18:42:
d7:e2:13:ce:ad:c4:9d:d5:12:de:a5:83:f8:49:ed:
ac:65:1c:fa:b4:09:14:8e:d9:5f:a9:af:86:87:3b:
fd:c7:15:dc:d9:87:ae:94:63:77:00:94:9d:9d:26:
3b:15:aa:7e:d3:c9:d9:3f:5c:bd:dd:64:5c:3c:40:
d4:2a:96:53:c4:57:dc:f4:40:c8:ff:88:07:ea:d8:
9a:f9:64:75:4c:b3:4f:e6:44:93:14:bf:1d:2e:c9:
07:35:e5:e1:26:1a:21:66:b2:97:a2:cb:4a:64:e2:
01:d4:0c:00:b2:dc:1a:c6:1f:eb:a4:d8:e7:cc:e0:
4e:8f:93:be:b2:6e:4a:69:51:ea:1a:cf:f0:ba:8a:
e4:9d:51:cc:80:32:1d:84:c2:91:12:c2:06:f6:56:
45:3c:23:e6:1e:69:f4:c7:4d:a4:b0:99:14:8a:37:
58:5e:8e:ab:51:9b:50:34:35:12:9b:22:82:07:71:
f7:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:C2:28:CF:02:D7:48:1F:4C:08:05:EC:CB:91:9E:64:76:5E:DC:F6
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/hMIozwLXSB9MCAXsy5GeZHZe3PY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.224.0/19
Signature Algorithm: sha256WithRSAEncryption
78:3c:1d:da:a8:8e:29:4a:3f:10:28:67:11:bd:f6:7a:32:70:
b9:1c:a8:f2:ab:00:14:c3:0e:6b:68:45:a3:a9:47:71:f5:83:
b3:0b:6a:7c:1c:d1:9a:6a:ff:e2:8e:a7:00:0c:8b:7d:52:a7:
d8:67:aa:14:56:27:6b:55:f4:90:25:3e:85:47:c8:bf:2b:c4:
8c:1b:07:93:0e:40:f8:b8:cf:c9:71:b4:2b:c7:ba:3b:20:d0:
ab:ae:1f:f6:00:04:0c:05:24:ea:45:2b:17:fa:f2:f0:b7:1d:
d3:92:01:ad:f0:b5:2b:01:a7:dc:16:d0:8b:e7:0f:64:df:62:
64:72:c1:1b:01:f9:e1:e2:4a:8d:97:0a:1d:2b:af:31:e5:52:
e3:fe:da:02:73:15:9a:6e:ad:10:04:5e:65:58:c5:9d:22:65:
29:6c:f7:00:81:3e:ef:c7:ad:1a:44:4b:10:70:ac:d5:fb:fc:
bd:f5:d9:f8:d3:39:9c:38:6a:a9:61:79:39:5a:ae:de:00:2b:
0a:52:f1:1e:c5:2b:06:11:6d:b7:69:19:d1:a7:dd:09:81:21:
b2:80:a2:8a:75:cb:93:d6:65:78:be:f4:ce:b5:36:ce:c4:21:
f0:32:34:fb:83:1c:f4:94:f6:ba:6c:d5:a1:cd:da:16:7b:ca:
2c:23:4b:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:01 2023 by rpki-client on console-fra.rpki-client.org