Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/rWaxYXU8ZtxG9Kl3d0QBAu5F4aw.roa
File: rWaxYXU8ZtxG9Kl3d0QBAu5F4aw.roa (raw, json)
Hash identifier: 4XNSYD5RwRMW1FxE3ya8BeahER5vt/2/RdhoxigoqFA=
Subject key identifier: AD:66:B1:61:75:3C:66:DC:46:F4:A9:77:77:44:01:02:EE:45:E1:AC
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0B3A
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/rWaxYXU8ZtxG9Kl3d0QBAu5F4aw.roa
Signing time: Thu 16 Dec 2021 06:55:40 +0000
ROA not before: Thu 16 Dec 2021 06:55:40 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17809
IP address blocks: 210.209.224.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2874 (0xb3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Dec 16 06:55:40 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=AD66B161753C66DC46F4A97777440102EE45E1AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d5:47:1f:78:ce:4d:cf:62:c6:df:76:a3:be:
ad:39:c6:7f:f5:2f:c9:80:c4:a8:8b:e8:24:3d:75:
a3:97:08:f8:d6:ba:eb:26:b9:56:ca:17:54:3d:83:
3a:ea:b7:9a:8e:cd:d6:23:ef:4e:42:a8:54:7c:af:
e1:e0:8f:6c:3a:8d:83:8b:47:ce:90:a8:80:1e:7c:
55:b6:ae:d9:41:c7:f0:83:44:75:2b:18:38:fe:d4:
81:fb:74:b8:60:b8:c8:d0:03:85:26:36:ce:41:f4:
9f:2a:b3:7b:22:5a:31:aa:13:3a:05:73:8a:a6:80:
df:9d:e3:9d:31:6e:3a:cb:85:e5:c5:ba:de:a6:8b:
55:64:7e:61:9f:70:7a:e9:ba:b5:e5:d7:af:7c:b8:
1f:ab:09:02:9c:16:21:45:a0:72:73:60:ee:2b:70:
80:a0:3f:08:22:af:70:16:5f:06:9d:e6:9b:0b:03:
b5:b7:78:c0:95:52:26:0a:07:c7:f0:5a:86:e1:65:
58:cd:81:ad:52:f8:14:8b:30:33:ff:f1:b7:c8:1c:
90:ef:10:52:70:65:3c:48:d1:33:de:e5:56:97:f8:
cb:69:89:ef:cc:f4:7b:42:27:4e:0b:86:9a:cf:60:
6c:dd:f7:b5:5d:aa:ec:5a:10:97:e9:e3:a7:6f:5f:
86:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:66:B1:61:75:3C:66:DC:46:F4:A9:77:77:44:01:02:EE:45:E1:AC
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/rWaxYXU8ZtxG9Kl3d0QBAu5F4aw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.209.224.0/19
Signature Algorithm: sha256WithRSAEncryption
4c:82:bc:ac:ba:c6:cb:b0:61:7d:33:e1:04:84:24:2f:74:12:
65:6f:e2:af:5a:e1:7e:44:65:6c:a8:b6:8b:b6:ba:bb:14:32:
50:f3:2a:9d:50:d3:d6:c8:17:d6:c9:e4:d4:0d:a2:bc:29:40:
96:ac:a6:53:62:64:cc:b8:5e:56:65:78:79:89:3a:66:da:f4:
21:83:23:cd:83:aa:29:08:57:b3:4a:10:74:6d:3a:b2:62:4d:
a5:9b:c9:f2:34:62:41:1a:cc:9e:b9:ba:3f:2c:f7:81:de:02:
5e:b4:b8:91:7a:de:dc:75:df:78:7b:90:09:1c:c8:c9:00:f9:
8d:54:fa:89:fe:9d:0e:a5:9c:c2:19:e5:13:38:ec:fa:38:ff:
b6:b8:54:e7:8e:fb:ff:ae:33:25:92:97:53:71:9c:57:87:c0:
bd:09:33:7e:e5:ff:84:57:c8:5a:d4:63:9e:13:e5:0d:cb:34:
af:48:47:a7:45:71:69:c9:01:1b:85:d0:2f:b6:a5:d9:4b:43:
1f:bc:12:dc:b4:92:0c:97:12:59:34:16:7a:b2:43:06:ff:71:
03:92:9a:76:96:bc:95:66:b8:57:93:67:7a:9c:70:e3:03:19:
81:65:2f:1a:c5:a9:73:48:36:6d:71:4a:fd:fe:d3:40:61:0b:
ec:a6:23:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:53 2023 by rpki-client on console-ams.rpki-client.org