Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/txVCY_ecVhvrK2cPv96RYdkZMHg.roa
File: txVCY_ecVhvrK2cPv96RYdkZMHg.roa (raw, json)
Hash identifier: QCUySUJltMZYKqxmoklfTWWAeBaL09UbZAbVRLU8EGA=
Subject key identifier: B7:15:42:63:F7:9C:56:1B:EB:2B:67:0F:BF:DE:91:61:D9:19:30:78
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0954
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/txVCY_ecVhvrK2cPv96RYdkZMHg.roa
Signing time: Thu 21 Jan 2021 10:01:41 +0000
ROA not before: Thu 21 Jan 2021 10:01:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18046
IP address blocks: 119.15.192.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2388 (0x954)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Jan 21 10:01:41 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B7154263F79C561BEB2B670FBFDE9161D9193078
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e8:ad:ca:56:2b:80:8a:dc:58:32:8d:ce:22:
92:68:72:a8:be:b9:bd:6b:55:72:de:1c:2d:01:5f:
ca:6b:29:be:be:ff:f3:01:fe:84:9a:cc:83:02:5e:
72:57:ca:a0:8a:2e:88:de:ff:ba:cd:32:8e:f7:b7:
a4:13:15:4a:37:1b:c4:48:49:99:3e:31:50:88:a0:
96:0e:21:12:8c:ff:cd:82:14:07:4e:32:b2:50:43:
81:2d:55:38:16:9a:dc:a0:c3:b9:c9:a7:40:c3:d8:
b4:cc:b4:9e:21:03:3f:5e:4c:6f:3c:bc:0d:2d:cf:
5c:31:e8:b9:7c:0a:46:4c:8a:a8:a7:ba:5c:65:b3:
fd:6d:63:b4:1b:89:50:d9:c2:bd:98:c6:84:95:87:
20:8d:21:a7:b2:2c:2b:ff:f9:dc:b2:ca:69:ea:bd:
42:d7:00:6f:e9:9d:cc:66:03:51:6a:36:3d:b1:91:
76:27:11:86:e5:2b:9e:a4:25:aa:bd:cc:87:be:cf:
e1:4d:c6:a3:eb:ca:63:2a:15:7e:e1:ef:de:19:74:
01:b0:c8:03:de:36:3b:2d:f2:c0:dc:bd:9f:15:52:
2e:83:ba:9c:2e:c5:39:0a:ee:56:d0:f2:86:48:77:
f4:2b:74:5b:31:1a:a6:6e:4c:e8:98:52:94:35:a0:
63:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:15:42:63:F7:9C:56:1B:EB:2B:67:0F:BF:DE:91:61:D9:19:30:78
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/txVCY_ecVhvrK2cPv96RYdkZMHg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.15.192.0/21
Signature Algorithm: sha256WithRSAEncryption
93:fa:28:87:3e:8f:b0:f9:e0:6b:ed:33:45:12:34:79:84:10:
b5:d8:46:e8:b2:d7:e4:89:8b:44:95:8f:bb:d0:8c:50:5c:c2:
ca:c5:fb:f9:2f:90:af:8b:b1:32:1b:b2:cd:f1:ba:5f:c2:84:
a0:bf:86:0d:68:26:06:4b:7b:e5:5d:4a:8e:17:45:94:a9:38:
6d:f8:89:65:f6:64:07:1e:2d:80:22:db:9d:76:fb:13:d3:a7:
70:d9:53:df:84:17:80:8c:ec:48:c5:e5:d1:4c:ab:02:c2:5e:
63:3e:3c:f6:c4:03:46:37:e5:1d:04:f9:fd:fd:17:2b:67:30:
df:d6:74:a6:e5:93:62:7d:17:2d:c1:09:0c:9a:d2:49:08:08:
c0:22:dc:03:87:b7:92:c3:4c:a3:e5:e0:b8:fd:14:d8:30:bb:
80:4e:0a:bd:f4:d6:7f:cb:99:ee:51:30:71:60:84:66:52:8e:
05:3b:29:de:ad:93:a8:a0:06:09:0b:2e:b9:f2:1d:dc:a7:5e:
be:62:a7:34:7e:77:d0:49:e9:04:43:a4:ed:65:4f:ad:42:dc:
e4:45:38:76:ee:64:a4:d4:bf:c5:35:2a:a5:c5:97:11:bf:51:
e5:7e:60:3c:98:af:d8:cd:46:3b:23:a2:e6:09:aa:0d:c3:2a:
7e:7d:0a:e7
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCVQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMTAxMjEx
MDAxNDFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEI3MTU0MjYzRjc5QzU2
MUJFQjJCNjcwRkJGREU5MTYxRDkxOTMwNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC96K3KViuAitxYMo3OIpJocqi+ub1rVXLeHC0BX8prKb6+//MB
/oSazIMCXnJXyqCKLoje/7rNMo73t6QTFUo3G8RISZk+MVCIoJYOIRKM/82CFAdO
MrJQQ4EtVTgWmtygw7nJp0DD2LTMtJ4hAz9eTG88vA0tz1wx6Ll8CkZMiqinulxl
s/1tY7QbiVDZwr2YxoSVhyCNIaeyLCv/+dyyymnqvULXAG/pncxmA1FqNj2xkXYn
EYblK56kJaq9zIe+z+FNxqPrymMqFX7h794ZdAGwyAPeNjst8sDcvZ8VUi6Dupwu
xTkK7lbQ8oZId/QrdFsxGqZuTOiYUpQ1oGO/AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUtxVCY/ecVhvrK2cPv96RYdkZMHgwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvdHhWQ1lfZWNWaHZySzJjUHY5NlJZ
ZGtaTUhnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3cPwDAN
BgkqhkiG9w0BAQsFAAOCAQEAk/oohz6PsPnga+0zRRI0eYQQtdhG6LLX5ImLRJWP
u9CMUFzCysX7+S+Qr4uxMhuyzfG6X8KEoL+GDWgmBkt75V1KjhdFlKk4bfiJZfZk
Bx4tgCLbnXb7E9OncNlT34QXgIzsSMXl0UyrAsJeYz489sQDRjflHQT5/f0XK2cw
39Z0puWTYn0XLcEJDJrSSQgIwCLcA4e3ksNMo+XguP0U2DC7gE4KvfTWf8uZ7lEw
cWCEZlKOBTsp3q2TqKAGCQsuufId3KdevmKnNH530EnpBEOk7WVPrULc5EU4du5k
pNS/xTUqpcWXEb9R5X5gPJiv2M1GOyOi5gmqDcMqfn0K5w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org