Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/nWmgiQM9tTsvZeajsWuD1-x9vXE.roa
File: nWmgiQM9tTsvZeajsWuD1-x9vXE.roa (raw, json)
Hash identifier: y7uXKVQqVYV97seJJCqwRB/fepvO/xezUShpklyWoZQ=
Subject key identifier: 9D:69:A0:89:03:3D:B5:3B:2F:65:E6:A3:B1:6B:83:D7:EC:7D:BD:71
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0CEB
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/nWmgiQM9tTsvZeajsWuD1-x9vXE.roa
Signing time: Wed 26 Apr 2023 10:31:21 +0000
ROA not before: Wed 26 Apr 2023 10:31:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 113.61.160.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3307 (0xceb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:21 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9D69A089033DB53B2F65E6A3B16B83D7EC7DBD71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3c:e5:98:ea:e5:13:a3:f4:e9:27:56:7b:5e:
56:20:b5:f1:51:dc:7d:21:e8:5e:b7:13:e6:1e:04:
e3:91:cc:80:70:ff:4c:9c:ae:35:4b:ec:33:50:82:
fc:15:cf:2e:1f:c6:49:df:97:fd:fb:48:64:34:a7:
8c:66:43:f2:34:3a:9d:fb:23:8f:17:74:8c:9e:0b:
05:9d:09:8f:9c:d5:d3:4f:ec:40:c2:8b:33:6c:a2:
2c:f0:cc:14:e1:f7:d6:0b:65:bc:81:fc:de:69:5a:
08:cf:65:0e:d0:29:23:c3:09:5c:40:35:58:3a:ad:
64:7b:63:29:0a:ab:80:3c:41:6a:4d:d5:9a:7c:b4:
b6:9e:02:85:62:3f:2a:b8:7d:6c:6c:ae:54:f8:cf:
8f:91:5c:33:84:ca:f5:ac:dd:c5:65:3c:79:72:6b:
b9:20:57:91:e3:1e:12:a8:46:9c:bb:c7:27:3d:b6:
da:08:6c:a5:89:6b:81:56:31:08:c1:03:0c:ec:7c:
39:2b:1b:37:a6:62:17:70:57:06:3e:d3:d7:ec:a2:
cf:6e:aa:68:e3:e2:68:9b:91:9c:c3:1a:16:4e:27:
d3:6e:fa:db:9a:e7:c1:41:3b:c5:41:1b:4b:1d:be:
ab:ff:a7:be:5e:4e:f9:73:61:08:4d:0e:70:af:cd:
95:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:69:A0:89:03:3D:B5:3B:2F:65:E6:A3:B1:6B:83:D7:EC:7D:BD:71
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/nWmgiQM9tTsvZeajsWuD1-x9vXE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.160.0/20
Signature Algorithm: sha256WithRSAEncryption
55:8b:52:1f:9b:4f:a6:c3:79:06:1b:8b:25:48:69:f0:c5:50:
a0:c0:fe:41:ea:bd:52:e0:85:bc:3e:d7:ea:54:ce:9b:1b:1a:
1f:9c:32:83:75:32:3f:03:e9:d1:f9:0c:b1:ba:d8:27:69:b9:
27:60:ee:f8:b9:00:2c:9a:23:57:86:df:f3:1f:ca:16:1d:86:
d9:eb:83:7a:3c:77:44:df:13:d2:ef:b5:52:c4:19:38:f5:d9:
88:1a:87:d5:45:44:e6:4b:f8:19:d9:d0:54:cb:44:73:76:7f:
7e:29:67:94:ad:c8:39:bc:43:b8:33:60:88:f9:84:5d:06:dc:
a3:d1:c6:5e:2f:7a:92:5d:8e:fb:cd:4a:ee:a5:9f:2f:9e:a4:
7f:8c:f7:1f:20:4c:7f:9f:11:f3:5c:30:97:17:6b:f8:1c:f8:
e3:88:db:04:e7:ca:8c:fb:da:71:fb:b2:da:f1:91:66:f8:c4:
c7:e0:4e:3f:cc:14:df:7d:0a:f5:0f:ea:09:9c:3f:79:68:91:
ae:8d:32:84:c5:bd:61:4e:f6:3b:76:01:b6:82:52:36:21:bc:
b8:73:c8:31:86:36:7b:6a:32:bb:46:bd:2a:4b:84:6f:e9:d6:
d9:ec:e8:d8:27:f5:00:52:2b:a5:9d:ec:03:df:33:52:01:91:
aa:b0:a4:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org