Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/tbG4PVIU17csQhVZLfMak5Qt_Lo.roa
File: tbG4PVIU17csQhVZLfMak5Qt_Lo.roa (raw, json)
Hash identifier: cf1chae65QiL5fNyycJVFApMtbO7/sREU3Ll/Owq1s8=
Subject key identifier: B5:B1:B8:3D:52:14:D7:B7:2C:42:15:59:2D:F3:1A:93:94:2D:FC:BA
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0960
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/tbG4PVIU17csQhVZLfMak5Qt_Lo.roa
Signing time: Thu 21 Jan 2021 10:16:07 +0000
ROA not before: Thu 21 Jan 2021 10:16:07 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17809
IP address blocks: 111.67.56.0/21 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2400 (0x960)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Jan 21 10:16:07 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B5B1B83D5214D7B72C4215592DF31A93942DFCBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:1c:2b:07:fc:df:f3:a3:f7:41:5d:50:d2:21:
22:ab:76:49:69:91:26:91:e3:53:db:df:c1:43:26:
37:26:94:1b:78:36:27:ef:24:4c:18:d7:1b:47:b9:
38:8d:f4:9f:32:31:b5:19:23:27:d9:9c:64:8e:12:
7f:db:06:b9:71:73:05:83:e9:93:94:d3:ca:89:69:
90:01:7b:59:f9:47:88:d4:fa:08:21:da:f9:73:8a:
bd:bd:1d:1c:3d:98:ef:5b:69:ae:34:f5:10:e0:9f:
6b:06:98:e5:11:a6:c7:97:a6:0f:6c:05:bf:e3:ec:
ba:4a:f7:d3:b4:ef:79:7f:85:4b:1e:f9:0e:3c:f4:
44:10:7a:03:9a:82:4a:1d:03:ec:27:c3:69:b6:51:
18:24:3c:56:97:40:bc:aa:87:80:98:15:46:eb:be:
5a:42:41:6c:a7:08:6d:d0:56:8d:4b:39:32:bf:d6:
8a:56:b0:e4:32:23:f1:50:30:83:13:02:4a:b8:7a:
88:15:4d:16:2e:1d:cb:54:b2:bd:c3:8e:fb:cb:91:
b4:0f:6a:2b:68:62:a0:96:1d:86:81:5e:94:47:e8:
d9:16:9b:a8:4e:64:f7:88:1c:d5:2d:72:ce:96:3f:
2d:ed:0c:e3:6e:40:a8:33:1f:ec:88:2d:8b:2e:ac:
d6:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:B1:B8:3D:52:14:D7:B7:2C:42:15:59:2D:F3:1A:93:94:2D:FC:BA
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/tbG4PVIU17csQhVZLfMak5Qt_Lo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
111.67.56.0/21
Signature Algorithm: sha256WithRSAEncryption
44:dc:bb:37:c9:74:d0:06:65:26:39:6b:c5:d2:ae:02:6a:42:
c7:b3:73:b7:0d:f3:dc:47:cb:fe:f6:10:85:af:d8:ac:db:3f:
41:24:d6:9b:16:52:10:00:12:5b:62:8b:a6:d1:79:36:b3:12:
7e:d6:c4:e9:a4:da:de:f9:57:0f:9d:4e:9f:2c:b3:9c:cb:17:
1a:5e:0f:4c:cb:39:21:a4:cc:b0:22:29:24:ac:26:09:e0:f1:
c6:2c:3c:17:10:21:53:b2:f2:16:3b:b4:5f:87:46:9c:8d:cb:
0e:7a:d8:ac:7c:6a:8d:49:7c:04:f6:21:9f:3d:58:3a:d7:7d:
27:8c:a5:e7:5d:1f:99:5d:d3:50:be:16:32:56:0a:71:53:d1:
8e:8c:11:69:f4:9e:61:c7:26:35:53:ba:12:25:09:13:a9:55:
bc:5b:f9:fd:7a:64:c6:f4:90:3e:75:64:63:fa:57:f4:f8:23:
ed:cb:99:6f:5b:ba:63:08:05:b2:ea:b5:54:47:25:2a:09:db:
cd:ec:3a:5f:d7:cb:6c:9c:e9:97:14:92:0d:b7:a8:4c:ca:55:
35:31:d3:94:b4:b2:33:e2:d9:03:8d:0a:a9:70:14:44:ca:0f:
f1:f5:17:52:d5:8d:a3:65:3e:64:ca:ee:07:37:92:b8:28:39:
bb:f4:6b:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org