Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/pmoRW2ofoW_SmXJS3ry75wIHUdw.roa
File: pmoRW2ofoW_SmXJS3ry75wIHUdw.roa (raw, json)
Hash identifier: H0z6r7WuYEqSZdmoiM84bIuXoNC1TTll4Mp6dqfJ0y8=
Subject key identifier: A6:6A:11:5B:6A:1F:A1:6F:D2:99:72:52:DE:BC:BB:E7:02:07:51:DC
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D1E
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/pmoRW2ofoW_SmXJS3ry75wIHUdw.roa
Signing time: Wed 26 Apr 2023 10:31:33 +0000
ROA not before: Wed 26 Apr 2023 10:31:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 203.217.112.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3358 (0xd1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:33 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A66A115B6A1FA16FD2997252DEBCBBE7020751DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8f:b2:50:a8:3d:0b:40:81:a5:1b:54:54:3d:
e2:85:f6:8a:77:4e:cb:ce:a0:ee:4e:db:9f:17:ff:
84:d4:42:b3:6c:04:f3:d4:6e:28:0b:25:31:72:ec:
a3:f0:a7:e9:c9:08:51:26:20:1d:b3:92:4c:a3:21:
94:5c:3a:f3:bd:6d:a5:79:15:5f:64:40:92:b9:00:
e8:20:b6:fa:5d:bc:0b:8d:11:ea:15:5a:d8:32:06:
b3:38:86:94:e6:2c:8a:0e:e4:b0:38:39:a7:89:e9:
5b:2b:0a:46:7f:78:88:85:3d:23:ed:01:07:60:4c:
ce:98:fa:0a:9a:2e:b6:e7:8d:e6:85:8c:b8:07:ba:
17:7f:21:8a:37:4a:61:82:26:7a:67:60:e1:bd:27:
05:6e:91:cc:68:43:4d:9c:7d:a4:45:af:cc:6d:a6:
c0:97:b2:18:73:7b:6f:3b:f7:bb:73:4b:2c:15:96:
3d:bd:d4:3c:8f:30:40:63:78:6e:31:0c:07:23:3f:
08:ac:5c:ff:92:8e:f5:55:f7:cd:82:67:43:83:51:
c5:27:d0:38:d2:59:9d:cb:68:8c:7c:8b:32:84:2b:
6f:51:6d:9f:0f:ff:e7:dd:4b:41:af:e6:10:54:b4:
9b:f6:cf:a7:4c:fe:d1:63:1d:d0:5e:84:a3:de:a3:
ac:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:6A:11:5B:6A:1F:A1:6F:D2:99:72:52:DE:BC:BB:E7:02:07:51:DC
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/pmoRW2ofoW_SmXJS3ry75wIHUdw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.217.112.0/20
Signature Algorithm: sha256WithRSAEncryption
0f:29:0c:25:40:1b:8b:5b:1f:dc:f0:ea:3d:22:04:4f:bb:3a:
02:ad:c1:a3:07:69:49:8e:1a:aa:25:8b:e1:1c:a3:ad:1e:69:
08:bb:39:17:8f:4d:74:d7:00:df:d4:65:fd:45:89:71:f8:a6:
4e:5a:da:50:e1:07:f6:b4:c6:49:ab:d7:8d:6e:95:bf:d1:af:
b1:3c:72:7b:ae:fd:9c:14:80:ba:d8:ef:6c:e5:23:66:a7:ff:
c4:67:ca:b9:c5:03:c8:2e:63:a1:18:1c:e7:47:ed:b5:62:f7:
4a:15:6d:b0:9f:37:69:ac:42:33:aa:0a:85:b7:57:a7:43:60:
d8:bb:5e:09:65:81:cd:42:58:ec:dc:a3:19:c4:9e:10:84:24:
d0:dc:6b:a2:db:70:f2:5a:64:11:8e:99:5f:90:d5:d3:ef:e3:
ea:15:b8:4b:d2:50:69:d7:dc:3b:5a:5a:1d:85:2b:f8:77:74:
0c:aa:55:0c:0e:30:3f:42:cc:45:e0:7c:be:f4:03:83:66:f4:
2a:fe:9f:9d:d5:c2:bd:ab:88:ab:b2:b8:50:5a:3c:3e:d4:b8:
3b:31:0c:23:81:8a:af:18:b6:00:95:32:60:6a:ae:51:e7:53:
22:6e:fb:c6:9a:bb:d5:5a:45:d1:64:37:fa:d2:ff:41:df:ec:
fd:d1:cc:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:31:07 2025 by rpki-client