Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/hgXFFyQDg0Q4whC-7P_jI27iD0k.roa
File: hgXFFyQDg0Q4whC-7P_jI27iD0k.roa (raw, json)
Hash identifier: oXbnKf5WuOs80I093y/f3BsXrjS6BbrBIor1OEiAJ7E=
Subject key identifier: 86:05:C5:17:24:03:83:44:38:C2:10:BE:EC:FF:E3:23:6E:E2:0F:49
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D36
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/hgXFFyQDg0Q4whC-7P_jI27iD0k.roa
Signing time: Wed 26 Apr 2023 10:31:40 +0000
ROA not before: Wed 26 Apr 2023 10:31:40 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 211.79.112.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3382 (0xd36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:40 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8605C5172403834438C210BEECFFE3236EE20F49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b8:93:1e:12:27:2f:b2:78:1e:e2:87:77:c0:
89:3a:81:43:2d:94:63:27:d4:96:56:15:31:0d:27:
cf:52:e4:a0:12:8b:5b:f7:60:77:17:88:5b:cd:dc:
c9:75:38:d8:9d:c8:2b:b4:6d:9f:01:ba:f0:47:eb:
b9:fc:c3:71:81:75:d9:a9:1c:65:39:c9:2c:ea:cb:
9f:9a:fc:2c:b6:cb:2b:43:45:9b:91:77:23:38:02:
16:51:9b:a6:b7:cf:3c:1c:e1:3a:6a:c9:c4:b1:3b:
91:6c:9d:94:ef:61:b9:6d:8f:c5:fc:d1:1b:da:17:
f6:b9:91:07:85:b1:cd:d3:9d:d0:99:31:84:9e:69:
44:3c:63:02:62:5a:c3:71:e2:f2:a1:41:a6:42:72:
bf:1f:01:5d:d2:4f:e8:bc:ed:20:fc:1d:22:25:ea:
c1:51:fa:5c:0e:54:64:43:2b:a5:3b:fd:d2:f1:12:
63:cc:b2:72:eb:44:71:86:98:59:a5:c0:53:da:5b:
35:00:04:06:c9:cf:cd:76:16:46:ab:d9:70:da:65:
17:10:e6:3a:55:cf:87:f1:b1:e4:84:1c:94:21:33:
ef:9d:98:a1:40:ae:d8:f3:8d:1e:44:fa:35:ae:31:
88:1e:7d:d2:ff:e6:bf:c6:3b:e6:43:d4:ba:24:9a:
c8:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:05:C5:17:24:03:83:44:38:C2:10:BE:EC:FF:E3:23:6E:E2:0F:49
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/hgXFFyQDg0Q4whC-7P_jI27iD0k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.79.112.0/21
Signature Algorithm: sha256WithRSAEncryption
71:fe:c2:67:9f:99:83:5b:b0:46:19:5f:41:6e:af:5d:06:68:
3f:df:c4:34:dc:4c:0c:e3:dd:12:9a:b3:17:9d:6f:45:2e:55:
a7:de:33:cb:9f:1c:4d:b2:7b:ae:3a:a2:0f:d5:90:83:1e:d0:
d9:36:be:0a:56:0b:16:7e:32:66:87:09:6b:cb:02:de:19:c6:
21:b6:6e:c6:e6:4e:46:0c:a2:b9:cc:d8:57:80:a3:56:9b:13:
8b:f0:1d:85:80:84:a7:98:67:0e:2c:f7:fc:08:91:e8:03:3f:
5d:3a:03:bd:7c:9a:7b:af:0b:aa:4e:ef:cc:0c:03:c2:58:af:
77:b5:31:8a:68:01:08:5f:70:85:c8:4a:da:0d:28:a6:df:5b:
cc:8b:74:ca:db:b2:56:f7:eb:57:eb:e9:95:94:f1:4c:29:10:
b1:65:f5:26:43:eb:a0:d1:09:ae:dc:5c:8a:50:f9:d4:6f:59:
e5:87:67:ec:ce:77:d8:b8:d0:b1:4d:89:78:21:2c:88:bd:46:
37:99:00:3a:9a:c5:e5:37:97:3d:40:c2:aa:21:ee:11:80:ec:
10:01:92:68:ce:d7:f2:de:af:fd:0b:fd:19:27:11:8b:7a:fd:
26:52:6b:f0:11:90:b0:d7:37:a5:86:e1:52:0e:16:a8:ca:95:
ef:d6:56:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org