Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/tXphA8q538Cvl0O0COkhhdzdj0c.roa
File: tXphA8q538Cvl0O0COkhhdzdj0c.roa (raw, json)
Hash identifier: y6PzVtsbQvJLT7AjnsOZweNJYQMcF0f/jP5zT2UI5Wg=
Subject key identifier: B5:7A:61:03:CA:B9:DF:C0:AF:97:43:B4:08:E9:21:85:DC:DD:8F:47
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0CEA
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/tXphA8q538Cvl0O0COkhhdzdj0c.roa
Signing time: Wed 26 Apr 2023 10:31:20 +0000
ROA not before: Wed 26 Apr 2023 10:31:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 113.61.224.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3306 (0xcea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:20 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B57A6103CAB9DFC0AF9743B408E92185DCDD8F47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:a8:e1:bb:e0:c6:93:92:7e:f5:86:ce:4f:82:
5c:ba:51:69:9d:d7:49:d3:e1:7f:cd:f3:04:6c:71:
e4:95:d8:79:78:ac:0d:bc:9c:4f:2e:6f:0f:9f:9e:
97:b3:fe:e9:10:89:0a:ec:dd:20:95:e9:b5:99:1a:
23:1c:a9:23:2d:2f:b0:4b:e8:1c:7d:bc:e7:f1:ab:
8b:69:53:f0:90:03:7c:fb:7d:27:a6:eb:98:05:6c:
a5:2b:5e:06:29:e3:82:5b:3b:99:b5:02:f8:71:c0:
c7:b3:51:5b:3f:98:8c:49:c1:ea:8f:e1:96:a6:26:
cb:2e:9a:1b:35:89:16:ce:fd:a6:4b:d3:9c:b5:58:
a4:d3:b9:5d:b0:e4:7b:4c:16:30:c4:20:fd:6c:ce:
70:f1:3c:3d:1d:b7:aa:45:2a:fd:f4:f6:c0:42:28:
cf:28:7b:ac:09:c8:c2:8d:e0:53:e7:8c:09:09:13:
5b:c4:20:9d:27:0a:c5:d8:e2:b9:22:15:9f:be:1e:
3f:1b:cd:35:be:c6:d4:a8:ea:8f:d2:df:76:fd:f5:
d2:a3:65:a7:6a:aa:4e:d0:83:8d:e4:95:9d:49:44:
18:ff:a7:7e:cc:7e:73:0f:e5:47:d1:06:a8:6a:cb:
ec:fa:3a:df:09:e2:cd:a4:53:af:f2:f2:86:a5:78:
ec:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:7A:61:03:CA:B9:DF:C0:AF:97:43:B4:08:E9:21:85:DC:DD:8F:47
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/tXphA8q538Cvl0O0COkhhdzdj0c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.224.0/19
Signature Algorithm: sha256WithRSAEncryption
8e:93:6f:f4:92:6a:14:3d:87:a4:82:06:8f:26:bb:70:58:d2:
01:52:f9:72:65:53:33:e4:cd:72:03:c6:d4:5a:3c:b7:7f:81:
a3:d7:93:1f:00:87:2b:f3:bd:27:d1:8a:4f:ae:48:b4:f8:b7:
8c:b6:96:7d:38:6e:89:c8:af:6a:84:04:b5:01:cc:66:fb:2a:
c0:9c:5f:89:34:b5:4e:4e:b3:d2:e0:d5:cf:ef:1b:08:af:d7:
19:33:94:b0:96:4c:b2:dd:3f:78:f6:0e:b3:fb:6e:17:08:28:
2d:9c:fa:b4:b8:2a:b7:f0:cf:f1:4f:30:37:ea:e5:60:70:f3:
71:ee:71:a9:8a:32:d4:47:4b:1c:5d:41:fd:21:b0:41:f4:fe:
c9:39:1e:a9:84:4c:7a:bc:91:50:4d:23:56:41:17:a5:7c:70:
c2:f2:a8:64:5b:0a:fc:7a:74:d8:7a:22:fc:da:f8:c2:ea:30:
4b:d9:3a:b0:16:0e:7d:0b:1a:62:97:1c:ac:5b:cc:72:3d:e4:
f8:f6:05:51:a3:24:ad:d0:b4:55:c6:5b:57:96:c2:0b:25:e8:
a5:89:8d:0d:38:f7:6b:17:ec:81:73:3f:4b:7c:c4:55:1e:b4:
70:a2:b5:0a:7c:8f:b5:4e:46:ef:ae:ad:27:ac:2a:9e:b6:13:
a2:dd:7f:fb
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDOowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA0MjYx
MDMxMjBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEI1N0E2MTAzQ0FCOURG
QzBBRjk3NDNCNDA4RTkyMTg1RENERDhGNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDQqOG74MaTkn71hs5Pgly6UWmd10nT4X/N8wRsceSV2Hl4rA28
nE8ubw+fnpez/ukQiQrs3SCV6bWZGiMcqSMtL7BL6Bx9vOfxq4tpU/CQA3z7fSem
65gFbKUrXgYp44JbO5m1AvhxwMezUVs/mIxJweqP4ZamJssumhs1iRbO/aZL05y1
WKTTuV2w5HtMFjDEIP1sznDxPD0dt6pFKv309sBCKM8oe6wJyMKN4FPnjAkJE1vE
IJ0nCsXY4rkiFZ++Hj8bzTW+xtSo6o/S33b99dKjZadqqk7Qg43klZ1JRBj/p37M
fnMP5UfRBqhqy+z6Ot8J4s2kU6/y8oaleOzlAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUtXphA8q538Cvl0O0COkhhdzdj0cwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvdFhwaEE4cTUzOEN2bDBPMENPa2ho
ZHpkajBjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXE94DAN
BgkqhkiG9w0BAQsFAAOCAQEAjpNv9JJqFD2HpIIGjya7cFjSAVL5cmVTM+TNcgPG
1Fo8t3+Bo9eTHwCHK/O9J9GKT65ItPi3jLaWfThuicivaoQEtQHMZvsqwJxfiTS1
Tk6z0uDVz+8bCK/XGTOUsJZMst0/ePYOs/tuFwgoLZz6tLgqt/DP8U8wN+rlYHDz
ce5xqYoy1EdLHF1B/SGwQfT+yTkeqYRMeryRUE0jVkEXpXxwwvKoZFsK/Hp02Hoi
/Nr4wuowS9k6sBYOfQsaYpccrFvMcj3k+PYFUaMkrdC0VcZbV5bCCyXopYmNDTj3
axfsgXM/S3zEVR60cKK1CnyPtU5G766tJ6wqnrYTot1/+w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org