Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/q9CZEM3eAbIl5WlkhDaWlYTGyag.roa
File: q9CZEM3eAbIl5WlkhDaWlYTGyag.roa (raw, json)
Hash identifier: an4vKbyB544p03jCx6mIqYXxzGrtIm3aKh66MZFRH7s=
Subject key identifier: AB:D0:99:10:CD:DE:01:B2:25:E5:69:64:84:36:96:95:84:C6:C9:A8
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0CF0
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/q9CZEM3eAbIl5WlkhDaWlYTGyag.roa
Signing time: Wed 26 Apr 2023 10:31:22 +0000
ROA not before: Wed 26 Apr 2023 10:31:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 203.217.96.0/19 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3312 (0xcf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:22 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=ABD09910CDDE01B225E569648436969584C6C9A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:6e:f7:f2:5d:fe:3b:33:73:ea:d8:80:da:72:
f1:36:c2:77:7c:d0:39:ab:0e:33:d0:e6:b8:37:46:
d7:00:79:84:2c:04:b6:6c:cc:f0:97:d4:52:64:9c:
e8:47:a4:f7:da:25:a9:aa:a7:5d:78:5d:3a:7b:44:
19:81:e4:8d:4b:08:27:5c:9b:f9:81:74:5d:6f:07:
a0:79:d9:02:0d:09:33:58:5f:29:c2:27:0f:6a:41:
22:4f:aa:f2:c5:7f:5c:16:cc:5d:ed:43:52:8c:e2:
b6:e7:99:3d:73:d7:af:f6:b6:b3:22:9b:e6:f7:f8:
92:c3:9b:43:bb:45:01:90:0a:53:33:1a:e4:3c:2c:
2d:d7:1a:74:05:f3:9a:cd:d2:b8:15:43:63:7c:be:
b4:f2:3c:87:2e:45:01:b4:b0:7f:89:32:26:c4:27:
0f:35:75:be:a5:b9:25:9f:e4:93:81:bd:5c:e5:85:
c6:69:89:ce:e5:0c:04:3a:d5:41:62:d3:02:13:a2:
6d:c5:f4:dd:27:ae:66:bf:89:28:0d:83:65:0a:2e:
5d:d6:b0:2d:71:6b:8d:11:f1:21:3e:59:15:86:7f:
1a:f8:e2:83:41:51:26:df:05:91:c2:c4:d1:7b:97:
0b:d2:3c:0d:10:b7:c9:70:60:80:5c:7c:51:a8:fa:
1d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:D0:99:10:CD:DE:01:B2:25:E5:69:64:84:36:96:95:84:C6:C9:A8
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/q9CZEM3eAbIl5WlkhDaWlYTGyag.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.217.96.0/19
Signature Algorithm: sha256WithRSAEncryption
4e:a5:18:cd:c5:24:ef:03:8a:47:36:56:13:e0:29:93:12:05:
88:b8:1b:98:ca:41:49:e7:e4:f4:8d:f4:4f:9c:9f:79:c7:f3:
e0:7b:ad:1a:ed:00:e9:61:8c:bc:47:5b:d8:e5:ec:fd:60:7d:
5d:94:96:2e:d7:7d:a4:dd:c7:41:02:fb:16:93:04:72:17:55:
2f:3c:9e:78:9b:82:b9:85:11:c7:23:18:94:fa:b8:d5:75:3a:
a2:23:14:69:c0:cf:65:fd:64:48:bd:73:8f:70:a1:f4:0a:aa:
44:14:ef:40:c7:50:1a:9b:7e:bc:15:6e:68:66:01:94:8a:7f:
c1:3a:4e:46:51:43:8d:1d:0a:d8:95:23:b1:bd:af:1e:f9:ee:
8f:ea:28:ee:56:2e:0e:70:fb:96:fc:d6:7b:1e:51:8e:a3:63:
1f:81:9a:b0:7d:d6:97:19:fb:da:fe:94:2d:af:38:6d:4b:4e:
f3:48:69:0f:1d:ec:7f:09:cb:f3:eb:83:ab:e1:24:43:12:03:
94:8a:bd:00:7d:60:df:37:78:34:06:5f:58:aa:b0:dc:29:72:
e0:e0:eb:c7:92:da:80:63:93:a7:a0:af:e9:2a:6c:a1:00:c3:
a7:97:8b:1f:f5:d4:fe:6d:dc:d6:dd:70:fa:69:db:e6:cd:0e:
b5:2e:71:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org