Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/tyxwBKNmaqCvEvz4DpJOAZDd8Ww.roa
File: tyxwBKNmaqCvEvz4DpJOAZDd8Ww.roa (raw, json)
Hash identifier: ZsN9sjcQQVxmEd7MDfA2xT+m7PH4Qwp7qyC+mQ9uHOM=
Subject key identifier: B7:2C:70:04:A3:66:6A:A0:AF:12:FC:F8:0E:92:4E:01:90:DD:F1:6C
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0BFC
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/tyxwBKNmaqCvEvz4DpJOAZDd8Ww.roa
Signing time: Thu 15 Sep 2022 02:37:30 +0000
ROA not before: Thu 15 Sep 2022 02:37:30 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 210.209.192.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3068 (0xbfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 15 02:37:30 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B72C7004A3666AA0AF12FCF80E924E0190DDF16C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:58:c0:d1:d7:3c:8c:ba:b7:e2:32:79:cd:6f:
d8:ab:81:a3:51:cb:3b:20:7d:f3:7f:28:94:15:40:
57:f7:57:42:69:ea:28:4a:36:af:2d:d0:47:dc:40:
f3:3c:4b:97:06:11:18:41:6c:87:34:fe:8e:d9:8c:
67:0b:14:04:0c:c6:c7:1d:23:d2:bf:7d:99:56:86:
69:36:f6:29:b0:b2:3e:9e:bb:9c:75:fd:a2:17:a7:
9d:b5:e2:10:b7:4a:c5:73:15:2b:4d:0e:58:c6:60:
6e:cd:ba:52:1d:75:a4:46:ff:69:62:cc:46:36:80:
14:6c:f0:56:e0:b3:3f:c4:99:2c:29:b0:e9:bc:eb:
bc:23:25:7f:8f:e5:32:09:1e:50:3e:b9:de:dd:b9:
5b:19:8e:22:5e:80:37:e7:5e:2a:4f:36:11:43:64:
c2:72:ae:0e:5a:79:fd:8d:d1:90:2e:26:68:33:bf:
5c:b1:a0:42:76:34:cb:63:6e:f4:0d:36:f6:7d:81:
b1:01:fa:68:29:a5:42:01:d1:fe:05:e4:c3:bc:b2:
b9:2d:71:6c:de:f2:de:1b:4b:4a:6a:b9:ad:8e:1a:
b6:7f:89:c0:20:bb:f9:cb:80:68:3f:2f:c3:66:11:
b6:53:18:f5:ef:a6:2b:69:f0:e2:b3:5c:4c:24:fd:
55:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:2C:70:04:A3:66:6A:A0:AF:12:FC:F8:0E:92:4E:01:90:DD:F1:6C
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/tyxwBKNmaqCvEvz4DpJOAZDd8Ww.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.209.192.0/19
Signature Algorithm: sha256WithRSAEncryption
15:20:9a:0a:6b:9d:d0:b1:50:e4:b8:85:c5:82:e9:d3:46:29:
d7:0a:95:b0:c9:e9:ed:27:b6:3e:70:fc:34:00:1c:62:4c:a6:
5b:cb:35:96:72:46:4b:eb:e9:74:70:48:ca:b2:c8:3b:ec:f9:
27:5f:03:c2:5d:e9:c4:d9:70:f4:66:67:0e:fe:8d:1b:78:dc:
31:87:c0:65:a4:98:cf:62:18:79:7b:85:f2:b3:b6:74:13:1c:
0d:7c:d1:6e:62:31:db:5a:fb:39:73:40:e4:6c:98:94:de:cb:
10:e8:a8:76:12:66:e5:58:e4:d3:03:99:bc:54:0d:f7:ed:bd:
73:b8:88:72:77:b8:cf:75:68:1c:26:6f:92:2a:1c:80:0b:09:
a5:b1:a4:fb:dd:e2:3b:ac:ed:01:9a:b9:9a:11:36:70:99:ec:
98:68:1d:af:05:5c:ab:6f:9c:f2:de:51:16:2a:e9:c5:5d:a7:
47:f0:62:34:84:40:50:4c:35:6e:c5:33:ed:cc:13:c5:58:2f:
bc:c3:91:96:c2:af:a4:ba:72:73:60:a5:d1:5d:c8:d5:b8:a8:
85:86:a2:39:11:6b:4b:b2:6c:42:01:88:b4:e6:ed:0a:af:a5:
b4:9d:67:19:0c:9c:48:6d:9d:38:67:69:bd:71:7d:d3:cd:be:
c8:ad:4b:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:31:11 2025 by rpki-client