Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/oQChk13b1n9eoBajMQI2mJ3ruvY.roa
File: oQChk13b1n9eoBajMQI2mJ3ruvY.roa (raw, json)
Hash identifier: DmR2SvzwM+oPfjXN9yv0AQdlCFvoV2JzaqJFpML57l8=
Subject key identifier: A1:00:A1:93:5D:DB:D6:7F:5E:A0:16:A3:31:02:36:98:9D:EB:BA:F6
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 08F8
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/oQChk13b1n9eoBajMQI2mJ3ruvY.roa
Signing time: Tue 24 Nov 2020 03:07:16 +0000
ROA not before: Tue 24 Nov 2020 03:07:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17809
IP address blocks: 203.217.96.0/19 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2296 (0x8f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Nov 24 03:07:16 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A100A1935DDBD67F5EA016A3310236989DEBBAF6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:18:0a:8d:f3:3f:4b:a7:42:2b:95:b2:6c:21:
f0:cd:fb:a3:5e:7a:f0:b0:69:5d:c3:e9:da:4f:2d:
05:09:d9:40:94:4a:bd:95:9d:1e:f5:b0:7f:f5:87:
34:8d:c7:ad:7b:59:8e:a4:ad:9f:77:30:ec:66:a7:
bc:e3:fb:ff:d0:45:ab:b2:b3:77:84:a3:de:a9:18:
de:95:2b:bd:22:5c:54:0a:1b:d7:b0:c9:c7:57:6b:
e6:0a:2c:8d:6d:2f:00:e7:93:54:02:1f:1e:3a:9e:
50:67:3e:63:4a:8c:69:dc:d7:12:3d:03:3c:ae:01:
52:a6:c4:6e:cf:e8:e5:bb:5c:5c:87:63:4f:19:df:
a4:14:c4:72:18:11:43:be:2a:b4:da:98:5d:5a:93:
d1:20:40:7a:eb:cf:2e:cc:b4:d2:87:df:94:4c:69:
b5:7a:9b:66:7d:b0:e6:a3:94:11:ea:d1:8c:3b:40:
0c:8a:54:75:b1:95:c3:01:8f:d9:9f:ee:56:33:c1:
30:38:99:c8:40:34:91:dc:dc:04:9e:f8:0c:a8:7e:
1a:c1:b9:e8:1a:d1:68:ae:46:78:88:22:4f:bc:66:
b1:c8:73:d9:3e:23:05:89:36:90:2d:ab:e6:3b:7f:
57:83:17:84:8e:21:62:ec:7d:2c:5d:f3:36:c6:d5:
27:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:00:A1:93:5D:DB:D6:7F:5E:A0:16:A3:31:02:36:98:9D:EB:BA:F6
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/oQChk13b1n9eoBajMQI2mJ3ruvY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.217.96.0/19
Signature Algorithm: sha256WithRSAEncryption
16:d7:8a:1a:6e:a7:5f:e4:c5:a6:a8:a8:e9:ad:18:36:66:53:
b8:b0:4c:32:2f:33:fc:22:53:1c:f6:18:22:17:64:87:28:a8:
f8:91:71:76:65:af:65:78:40:25:86:49:5f:a5:f6:bf:61:23:
bb:3f:df:74:a4:d8:7b:a2:d7:97:e0:90:97:d5:d1:51:90:5d:
45:d7:a3:96:62:8d:df:ea:eb:12:3a:aa:91:4b:48:16:7a:3a:
3c:64:2c:dc:74:ad:fa:18:4b:69:5b:2f:06:5a:b8:a7:c0:52:
6a:f9:21:03:23:6a:89:de:31:b6:b4:91:61:e8:26:08:d1:43:
1f:5d:a1:ab:17:25:97:ed:c7:fb:63:e3:04:60:ef:90:80:79:
e4:9f:f2:7b:7f:bb:84:e2:46:9a:b5:fe:94:2a:d3:43:80:ba:
8a:29:01:c0:6e:24:fd:9a:7e:79:7d:0f:e9:3d:dd:cb:7d:c8:
90:5c:10:70:01:60:9b:e0:72:e5:cc:f2:47:58:da:2b:95:3f:
46:dc:97:b9:72:4d:74:51:b4:6c:51:48:1c:e2:ac:24:c7:8e:
21:53:09:b5:9c:2d:d9:69:2c:b9:86:01:a3:35:eb:2d:d7:a9:
95:a3:c3:c3:23:3a:51:4c:22:a5:e6:61:cc:3a:94:2d:43:10:
f9:8c:12:a9
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCPgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMDExMjQw
MzA3MTZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEExMDBBMTkzNUREQkQ2
N0Y1RUEwMTZBMzMxMDIzNjk4OURFQkJBRjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDhGAqN8z9Lp0IrlbJsIfDN+6NeevCwaV3D6dpPLQUJ2UCUSr2V
nR71sH/1hzSNx617WY6krZ93MOxmp7zj+//QRauys3eEo96pGN6VK70iXFQKG9ew
ycdXa+YKLI1tLwDnk1QCHx46nlBnPmNKjGnc1xI9AzyuAVKmxG7P6OW7XFyHY08Z
36QUxHIYEUO+KrTamF1ak9EgQHrrzy7MtNKH35RMabV6m2Z9sOajlBHq0Yw7QAyK
VHWxlcMBj9mf7lYzwTA4mchANJHc3ASe+AyofhrBuega0WiuRniIIk+8ZrHIc9k+
IwWJNpAtq+Y7f1eDF4SOIWLsfSxd8zbG1Sc1AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUoQChk13b1n9eoBajMQI2mJ3ruvYwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvb1FDaGsxM2Ixbjllb0Jhak1RSTJt
SjNydXZZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcvZYDAN
BgkqhkiG9w0BAQsFAAOCAQEAFteKGm6nX+TFpqio6a0YNmZTuLBMMi8z/CJTHPYY
Ihdkhyio+JFxdmWvZXhAJYZJX6X2v2Ejuz/fdKTYe6LXl+CQl9XRUZBdRdejlmKN
3+rrEjqqkUtIFno6PGQs3HSt+hhLaVsvBlq4p8BSavkhAyNqid4xtrSRYegmCNFD
H12hqxcll+3H+2PjBGDvkIB55J/ye3+7hOJGmrX+lCrTQ4C6iikBwG4k/Zp+eX0P
6T3dy33IkFwQcAFgm+By5czyR1jaK5U/RtyXuXJNdFG0bFFIHOKsJMeOIVMJtZwt
2WksuYYBozXrLdeplaPDwyM6UUwipeZhzDqULUMQ+YwSqQ==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:43:56 2025 by rpki-client