Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/ppclMDjdT3Kxag9ZoR7aB-L7m50.roa
File: ppclMDjdT3Kxag9ZoR7aB-L7m50.roa (raw, json)
Hash identifier: J0HyfE1i0tPKRKjjHoC1uuzRaqrMaZ0OtezGwkQGrzU=
Subject key identifier: A6:97:25:30:38:DD:4F:72:B1:6A:0F:59:A1:1E:DA:07:E2:FB:9B:9D
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0CA5
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/ppclMDjdT3Kxag9ZoR7aB-L7m50.roa
Signing time: Wed 26 Apr 2023 05:54:08 +0000
ROA not before: Wed 26 Apr 2023 05:54:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 27.96.228.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3237 (0xca5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 05:54:08 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A697253038DD4F72B16A0F59A11EDA07E2FB9B9D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ff:2b:c1:f1:5d:23:99:75:67:39:6d:b0:7a:
e0:3b:b5:9e:70:05:db:ed:b5:bd:63:62:a8:b6:7f:
b3:fc:11:75:0b:a4:e0:c3:17:77:6f:a8:a4:04:01:
10:73:57:83:a1:ac:14:6b:86:db:d5:b9:fb:1d:50:
23:36:40:5b:72:f6:a9:51:5e:b3:f6:4d:62:dc:db:
24:32:a4:66:09:17:a8:92:ae:6c:10:f3:c0:ca:fd:
00:cc:5a:33:a3:30:a9:6c:b1:39:78:d9:e6:1d:51:
f5:1e:68:60:6d:55:c8:bc:3b:34:bd:bb:e0:8f:74:
89:1c:17:98:a4:44:ca:99:f5:21:3b:e7:3c:26:bc:
9b:e8:18:97:bb:b8:c8:df:c8:80:52:b5:50:91:ad:
45:f7:b6:b7:f5:48:3d:8e:d4:ff:f2:4b:5a:1f:ff:
81:00:fa:b0:94:74:27:05:f0:50:f2:64:44:69:91:
97:4f:99:de:3f:31:fa:20:7b:5a:75:d5:03:b8:c0:
41:2d:3a:5a:10:44:84:8c:10:d6:88:41:ab:00:38:
6b:01:ab:a1:83:5f:00:6e:c9:63:e1:6a:ec:0f:81:
a1:95:ba:3e:b9:59:e2:05:47:ae:17:b6:34:86:62:
0c:45:f8:57:9b:c8:8e:47:ae:de:fe:eb:fc:4e:d6:
39:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:97:25:30:38:DD:4F:72:B1:6A:0F:59:A1:1E:DA:07:E2:FB:9B:9D
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/ppclMDjdT3Kxag9ZoR7aB-L7m50.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.228.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:b6:03:cc:cd:0e:d2:18:ad:c1:54:0f:a5:2c:08:8a:03:6b:
8c:1f:2d:8d:7b:c1:08:c8:7e:58:b1:d5:69:aa:78:f6:24:e2:
41:85:85:d5:de:5e:ba:c7:11:a3:1d:cc:1d:71:b5:96:52:a3:
c6:bc:2b:9d:61:e2:57:0c:41:5e:45:c2:38:32:2d:7e:62:9a:
cb:fa:e1:60:1f:4e:8e:08:b8:e9:2d:1f:7d:51:6f:45:00:0d:
78:24:38:90:b3:e4:57:ed:9a:dc:82:bb:cd:35:2d:93:a3:9e:
f4:b8:9e:96:8c:83:e1:79:aa:13:f7:df:fb:6e:df:65:df:f8:
60:2d:f9:f7:a6:c2:a2:6a:c9:f4:b5:76:b5:50:e5:75:96:7d:
34:26:70:5a:21:31:ad:e9:cd:c3:9f:42:a8:cf:07:6b:89:3b:
c1:ca:6c:78:a8:3d:9e:43:70:73:8f:5b:62:10:47:8c:ce:29:
66:47:b2:21:3c:85:0c:bd:6f:5b:a3:d0:03:be:4d:4b:38:ad:
a7:b3:a8:6a:66:32:d5:4d:46:62:93:de:e4:fd:ef:c3:b7:c4:
a9:61:30:98:bb:2a:9d:c6:3c:fc:0e:19:ed:4d:c7:fb:18:70:
56:9e:50:23:80:68:a6:a3:f4:ae:3d:00:ef:65:d7:32:c7:75:
7c:47:1d:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org