Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/qL7syFoMgTFEB3JwX_MCtH45Btc.roa
File: qL7syFoMgTFEB3JwX_MCtH45Btc.roa (raw, json)
Hash identifier: Wzlt5aLEYj9a/APFPWvrvvlu+/YFPJCQWfJlQekPVNM=
Subject key identifier: A8:BE:EC:C8:5A:0C:81:31:44:07:72:70:5F:F3:02:B4:7E:39:06:D7
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0BFC
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/qL7syFoMgTFEB3JwX_MCtH45Btc.roa
Signing time: Thu 15 Sep 2022 02:37:16 +0000
ROA not before: Thu 15 Sep 2022 02:37:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 113.61.128.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3068 (0xbfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 15 02:37:16 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A8BEECC85A0C8131440772705FF302B47E3906D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:bf:78:82:0e:ea:c6:f6:25:42:5b:b2:c4:79:
78:84:a3:ea:4e:52:d0:79:c3:04:f6:82:58:db:7b:
ba:19:d8:a9:1c:ab:56:79:59:60:7f:fa:4f:76:7a:
5c:30:79:9d:2e:10:1c:39:38:3f:49:47:33:f6:57:
88:2d:53:b5:2e:62:61:1a:c6:0e:36:b3:ac:ca:b1:
bc:56:4a:df:9f:7b:34:b9:96:f7:bd:ba:50:bd:1f:
71:b6:e9:c5:d0:1b:2c:a9:15:d6:61:3d:fa:8a:d4:
79:a3:19:01:f1:cb:42:3b:09:63:ed:57:a3:86:64:
fe:ec:64:48:b3:47:38:0b:17:81:d8:6c:1e:41:be:
92:98:58:28:bd:bc:0c:3f:6e:f5:bb:7a:e9:5f:90:
13:a7:eb:52:3c:55:c7:88:95:8f:5c:76:17:6b:49:
24:c2:f4:f4:f6:a0:f2:37:e2:4d:07:9b:49:25:e7:
39:57:d1:90:a7:1c:3d:c2:a2:e1:ba:6d:de:c0:57:
e4:9f:78:f7:02:7c:ea:cb:ad:9d:04:90:88:a3:eb:
b7:bb:c1:5a:cc:3b:6b:67:0f:96:a0:da:e5:b2:61:
ff:7f:4e:b4:17:57:43:eb:f5:b7:8f:b2:e4:a7:0a:
a8:05:e8:40:89:22:a7:3f:d8:a8:e0:07:4c:a7:80:
05:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:BE:EC:C8:5A:0C:81:31:44:07:72:70:5F:F3:02:B4:7E:39:06:D7
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/qL7syFoMgTFEB3JwX_MCtH45Btc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.128.0/20
Signature Algorithm: sha256WithRSAEncryption
49:82:83:73:8e:42:b6:3b:59:b6:9e:26:68:80:fe:6f:ff:9b:
1e:69:5a:73:e0:b6:d7:a2:7e:8c:06:d7:d2:76:11:6b:1b:95:
6b:b3:8c:e3:d9:1b:05:90:d6:3f:4a:e4:2d:8a:13:0d:28:11:
73:b0:a2:9e:0f:13:4f:d0:f8:98:65:10:11:a6:ee:68:88:ca:
8b:39:94:43:6f:d3:c2:31:ef:1a:32:ee:69:40:c3:04:13:51:
52:db:1b:a0:00:eb:3b:da:f9:c7:62:ef:ac:f0:15:0b:9e:d5:
ef:cf:3e:3c:b4:84:29:a3:ef:11:64:84:88:24:0e:c3:23:15:
8f:e1:a2:16:ad:f6:82:08:d4:92:d7:95:4a:7d:6e:4f:1e:18:
46:8e:85:92:67:11:7c:60:20:c6:49:84:aa:c3:e6:fa:57:f7:
74:a6:2c:3f:b5:ad:5f:10:84:c4:7c:d0:d8:ea:f4:08:e2:dd:
1c:95:32:5d:e6:83:cf:fd:91:70:89:88:00:95:bf:38:04:8c:
76:8d:cb:fd:1a:24:b8:db:8b:aa:55:9e:b4:a3:1a:72:ac:d6:
00:b6:98:b4:6b:96:16:15:42:cb:c9:40:12:bc:b8:11:14:47:
e5:7c:63:fb:1a:c9:1d:18:68:fc:29:8c:ce:2e:c8:39:b9:28:
ac:2e:23:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org