Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/tddVezSikpYYPy2tyLx8Th3INkE.roa
File: tddVezSikpYYPy2tyLx8Th3INkE.roa (raw, json)
Hash identifier: YMUjgmOqVu/evdfJK8iOQVpgXebUfGPLCWtNPULYF3E=
Subject key identifier: B5:D7:55:7B:34:A2:92:96:18:3F:2D:AD:C8:BC:7C:4E:1D:C8:36:41
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D23
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/tddVezSikpYYPy2tyLx8Th3INkE.roa
Signing time: Wed 26 Apr 2023 10:31:34 +0000
ROA not before: Wed 26 Apr 2023 10:31:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 203.222.12.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3363 (0xd23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:34 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B5D7557B34A29296183F2DADC8BC7C4E1DC83641
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:56:a9:64:eb:96:38:6d:f7:61:cc:dc:f0:80:
10:97:f6:29:54:3f:21:14:80:e7:c6:cc:29:f7:78:
1d:99:e8:5d:c1:80:0d:61:28:62:cd:a2:4e:85:b6:
51:2d:9b:0f:df:d7:56:e6:27:f3:04:0b:5e:95:4c:
fc:df:b9:5a:ec:7c:c2:b9:09:6c:7e:73:27:12:dc:
b0:9a:19:82:f0:ab:0e:59:e4:77:7e:84:72:3c:d2:
c3:c7:e4:31:55:8a:16:12:19:36:9f:f7:c0:05:48:
bb:9a:52:df:b3:f0:ba:c7:19:19:4d:f5:88:98:06:
4e:49:4a:05:2f:d4:53:f3:bf:f8:5d:34:62:d2:a4:
62:df:f4:57:9f:da:24:6c:a1:56:0f:22:ec:29:01:
f6:04:ea:46:35:fb:d4:6d:4f:55:05:b1:f7:1b:a1:
12:30:ca:74:1a:c0:8f:01:77:5e:97:eb:43:03:72:
1c:3b:e6:d1:c8:ac:ec:f0:7a:2a:f6:41:b8:b1:38:
a0:22:f4:ff:fd:ac:cb:07:87:4d:4e:6d:88:c4:54:
42:2f:eb:ea:66:1f:20:fc:52:69:17:b5:ec:bb:ba:
c9:e5:82:79:c7:21:c9:a4:f6:a9:e9:d3:88:a2:89:
c9:43:4c:64:18:8d:8a:f9:5b:74:6d:c9:b3:d1:94:
c1:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:D7:55:7B:34:A2:92:96:18:3F:2D:AD:C8:BC:7C:4E:1D:C8:36:41
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/tddVezSikpYYPy2tyLx8Th3INkE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.222.12.0/22
Signature Algorithm: sha256WithRSAEncryption
55:3d:67:86:f8:4b:66:dc:52:f7:ff:b8:46:2a:fc:43:40:b0:
59:14:4b:2b:92:5a:b3:90:9d:c4:70:b7:28:91:85:45:58:15:
9c:9a:d8:1f:56:10:f6:06:65:27:57:8d:b9:35:a8:ff:6b:ac:
90:0b:cb:59:2c:7f:0b:2f:c5:87:29:05:0a:af:92:9f:21:78:
42:66:46:31:7d:7f:cf:0f:51:4a:00:99:a3:14:ae:d6:2c:30:
02:ae:13:a6:5a:6e:e6:64:e3:03:6b:63:43:1c:de:5c:ba:3e:
37:e1:9f:76:ad:eb:6b:94:48:cf:2d:d2:df:63:dd:87:0d:9e:
ec:ac:ce:fb:b3:8d:6b:05:33:63:57:91:ed:d4:aa:8b:14:2b:
cf:9d:56:d4:70:f5:04:5a:06:1a:6e:2d:42:c3:d6:fa:2f:e1:
10:41:46:41:be:6a:19:4f:31:0f:bd:bb:3f:e9:25:e3:e1:30:
b4:0f:26:dd:38:7d:1f:07:50:cc:fa:4e:fa:96:80:31:da:fc:
1d:9d:a7:42:22:7e:d7:49:1c:ac:a2:6e:6c:0f:14:df:c1:4f:
b4:84:54:d4:f2:14:bd:75:50:49:81:64:34:10:fa:57:d5:50:
a0:0b:fe:d7:0c:e1:07:b1:b5:6d:02:4a:c2:93:06:19:2a:50:
19:a3:b2:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org