Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/nLpzbhbeXBk6O45DbvMH4Olu6BQ.roa
File: nLpzbhbeXBk6O45DbvMH4Olu6BQ.roa (raw, json)
Hash identifier: LpwMtXXF4KAqx1nF5cNkmoLLzZg9j0/P+9PydLO/rcA=
Subject key identifier: 9C:BA:73:6E:16:DE:5C:19:3A:3B:8E:43:6E:F3:07:E0:E9:6E:E8:14
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E38
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/nLpzbhbeXBk6O45DbvMH4Olu6BQ.roa
Signing time: Fri 01 Sep 2023 08:49:25 +0000
ROA not before: Fri 01 Sep 2023 08:49:25 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 210.209.192.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3640 (0xe38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:25 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=9CBA736E16DE5C193A3B8E436EF307E0E96EE814
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:20:05:13:e0:ea:95:17:a9:aa:35:5e:58:55:
20:42:d4:1f:e5:ae:04:f1:3a:53:8f:02:d7:80:2e:
1f:1f:59:22:70:7c:43:c4:3e:b7:ac:3b:9f:18:46:
01:18:da:2f:32:12:43:ac:f1:57:45:16:f6:a0:6f:
7b:68:ed:62:e8:35:c1:27:a6:b9:d3:c9:97:c3:ee:
f3:89:d5:93:69:86:34:82:19:94:ea:b0:b6:b2:4a:
fa:f5:02:8a:dd:12:28:f9:9e:98:51:2c:58:05:5e:
e6:69:a5:a5:e9:8e:78:35:2b:9d:62:91:09:e1:32:
4f:a6:25:26:db:d4:de:9d:a2:3d:ad:d5:53:87:a8:
97:f4:f9:ac:90:02:7f:45:70:22:58:19:90:79:2e:
32:cd:41:50:fb:8b:63:61:0d:a8:ab:35:96:be:47:
fc:04:a6:7d:15:73:61:9e:e2:e4:7e:fe:b0:c2:4a:
22:6a:76:89:e2:ee:74:04:b7:a5:1d:33:32:e4:13:
f5:38:17:6c:16:82:bf:65:b3:63:7e:1c:b0:6d:a9:
c6:92:aa:87:e8:78:73:05:f2:0f:3b:cb:0d:8f:4e:
8a:d7:bc:3d:de:0f:60:47:a3:77:a0:de:d7:bf:69:
99:40:7d:de:6a:6f:2a:f8:ec:86:4b:bf:c2:44:2e:
f9:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:BA:73:6E:16:DE:5C:19:3A:3B:8E:43:6E:F3:07:E0:E9:6E:E8:14
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/nLpzbhbeXBk6O45DbvMH4Olu6BQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.209.192.0/19
Signature Algorithm: sha256WithRSAEncryption
98:30:c2:62:ff:45:38:bc:d2:3b:b8:3f:5d:a9:ec:e2:b3:e8:
9f:f1:5d:63:46:dd:df:cf:af:bd:42:ee:61:ef:96:6d:f7:3a:
c7:fe:cc:46:72:15:7b:49:eb:8e:e5:f9:9b:1d:df:de:83:b4:
57:4f:b8:7e:82:84:45:d5:80:d0:04:d6:cc:9e:b7:5a:1f:ab:
55:7a:df:64:f2:44:b2:0a:59:79:2e:d5:5d:f7:ff:ff:60:17:
3d:db:3a:f4:1f:79:35:07:1d:5c:d1:05:73:0c:13:59:e0:51:
ce:49:5c:63:d8:d4:24:fc:f4:20:2a:fd:af:30:5a:27:e4:39:
32:41:3f:f4:ed:01:7d:b3:62:86:82:49:46:f0:d6:9b:f8:47:
83:a5:25:ab:ab:7e:44:5d:83:b0:0d:e3:0f:32:5a:9c:f2:6c:
d2:b4:4d:fb:f5:d9:ac:29:5a:ad:16:4b:01:76:6f:63:45:b8:
07:cc:a0:7f:25:bb:e8:64:da:9d:07:01:35:43:a5:d6:6f:64:
1b:09:61:ad:8a:23:f1:99:4c:86:7c:04:02:f2:46:5d:63:00:
29:fc:1c:ee:ea:0c:f6:8a:f8:43:a9:33:db:8d:a0:90:10:d9:
44:96:70:cf:d4:df:a3:ba:e7:7d:31:93:63:2f:42:b2:08:30:
b3:00:0e:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:35 2025 by rpki-client