Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/pXjzbRuCAU7scRenlZ_potubm6Q.roa
File: pXjzbRuCAU7scRenlZ_potubm6Q.roa (raw, json)
Hash identifier: h3HD7K+W7mQNEg4k//FtxZoAJ6l7yjDL4mQ9QwexvpQ=
Subject key identifier: A5:78:F3:6D:1B:82:01:4E:EC:71:17:A7:95:9F:E9:A2:DB:9B:9B:A4
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D0B
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/pXjzbRuCAU7scRenlZ_potubm6Q.roa
Signing time: Wed 26 Apr 2023 10:31:28 +0000
ROA not before: Wed 26 Apr 2023 10:31:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 113.61.192.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3339 (0xd0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:28 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A578F36D1B82014EEC7117A7959FE9A2DB9B9BA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:17:8c:c0:35:e7:98:88:ef:d7:cc:63:c2:d8:
f5:ac:f4:b9:e7:c1:6a:96:68:69:60:68:50:f8:89:
57:28:55:17:e3:43:3c:58:43:d3:a7:22:71:9f:07:
97:1e:8c:7c:f0:c3:e3:4b:84:d9:e2:4a:ec:ed:38:
a2:e8:b2:96:6b:41:ea:ea:b9:07:d6:f4:82:08:1f:
1f:9c:05:3d:33:e9:26:54:f2:40:a7:1e:e8:b7:17:
e5:2d:7e:3a:0e:38:b3:3c:14:68:c5:96:ce:85:b2:
db:69:7f:5b:ba:62:4a:ba:c3:33:8f:7f:52:2c:08:
4e:6d:f5:20:b4:d6:bc:27:eb:49:66:33:d2:10:5d:
b6:f7:fd:1e:0e:3f:6b:76:e1:dc:d4:67:f9:98:82:
fa:da:a3:d3:5e:32:c6:55:35:24:e5:5f:24:75:e5:
56:97:ec:90:dc:e8:d8:c8:3c:f6:d6:9a:6d:c8:c8:
fc:f4:85:db:4d:43:84:3f:e9:7d:15:24:a3:31:e7:
52:11:57:27:0b:94:30:c9:b1:9f:14:b6:ba:ac:c6:
7f:cc:13:7a:d4:93:cc:0a:73:4a:6d:1f:a7:63:11:
20:71:f5:12:0d:69:15:05:48:02:51:2c:e2:f1:68:
d8:0c:c2:bb:12:39:7b:4a:81:32:4a:94:44:7d:80:
db:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:78:F3:6D:1B:82:01:4E:EC:71:17:A7:95:9F:E9:A2:DB:9B:9B:A4
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/pXjzbRuCAU7scRenlZ_potubm6Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.192.0/20
Signature Algorithm: sha256WithRSAEncryption
77:1b:e3:2a:62:dd:08:7a:57:01:de:d7:e4:60:61:e5:52:d4:
c2:15:36:80:32:91:e0:02:44:d4:d6:05:c4:21:38:39:51:ac:
7f:aa:ca:66:b3:80:83:22:86:4c:f7:a7:89:8d:23:da:c6:fc:
2a:2a:e6:28:85:ee:8a:f2:43:6d:65:46:89:a7:3c:3f:cb:b9:
ca:6f:80:9f:cd:9f:68:c7:ce:57:f2:80:19:7e:4d:f8:9d:a3:
4f:98:e7:54:2c:4d:e5:73:82:f1:2f:3a:39:69:c0:e8:e2:ad:
cf:fb:97:e8:f7:16:06:99:fb:98:f3:7d:8d:4e:44:14:ce:b9:
04:05:31:f8:0f:f1:96:fc:7f:d2:e0:6a:c6:01:51:da:0d:6a:
f1:5b:5c:74:0f:6d:db:bc:1e:5d:ff:4d:c7:4e:56:ef:aa:7a:
0c:13:7d:8f:8a:ea:ee:f7:95:27:97:14:7e:76:96:49:05:4d:
63:fc:4c:5a:93:9a:90:1f:ca:0c:46:f1:12:6f:71:28:c6:25:
ec:62:9a:2d:65:bc:29:9d:c1:15:9e:8d:42:3b:06:98:ea:44:
a3:a7:51:80:5a:ad:f4:f1:d5:eb:03:86:72:83:60:73:d7:3f:
32:bb:25:5f:d1:fd:28:5b:bf:53:48:b2:86:26:42:3f:41:15:
5a:ee:7c:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org