Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/uDMzMlE66oj_vAd8csxknIdI-A4.roa
File: uDMzMlE66oj_vAd8csxknIdI-A4.roa (raw, json)
Hash identifier: uWUWYGLs1ohqabpkj2CrsNvBcbkTLxxwdIAPqdM7tmI=
Subject key identifier: B8:33:33:32:51:3A:EA:88:FF:BC:07:7C:72:CC:64:9C:87:48:F8:0E
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0B22
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/uDMzMlE66oj_vAd8csxknIdI-A4.roa
Signing time: Thu 16 Dec 2021 06:50:41 +0000
ROA not before: Thu 16 Dec 2021 06:50:41 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17809
IP address blocks: 203.222.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2850 (0xb22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Dec 16 06:50:41 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B8333332513AEA88FFBC077C72CC649C8748F80E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:19:47:07:be:b4:37:cd:f0:84:42:ad:f0:f0:
16:d4:ab:3d:f4:21:aa:3c:11:ce:2a:a8:3e:dc:61:
e7:6e:63:73:06:d4:f0:96:56:ed:9e:d5:60:c9:76:
98:62:da:67:24:51:b3:77:53:11:49:16:d3:e7:55:
be:7a:d6:ea:55:20:e0:6d:cc:90:33:63:bf:fd:7f:
43:b7:8d:3e:52:c9:c0:86:ea:51:b3:a4:38:bb:e9:
4d:4e:68:37:5f:67:d7:54:10:3b:17:e2:fc:ba:21:
9f:84:08:0f:c8:96:9a:8c:22:bb:f7:62:f7:35:e7:
8a:c9:41:d1:91:ed:e5:60:0a:d3:0b:89:65:2c:4d:
75:c0:be:d9:e8:8d:2c:53:41:67:9b:3d:9a:3e:e7:
84:7f:63:59:0b:a1:19:ac:5e:71:3a:c7:2c:2b:96:
90:21:99:f9:9c:ec:62:26:0a:b9:50:aa:0d:96:be:
78:f5:6c:d8:6e:38:68:67:da:5d:7c:47:fa:79:1d:
f9:82:f0:37:83:81:9b:b2:90:4a:75:cf:7b:0d:fc:
7f:59:eb:2f:ae:4b:87:7a:19:be:83:bb:b1:8e:b4:
71:8f:96:8d:ee:50:ab:9c:d0:41:36:69:28:2f:0f:
32:54:10:2a:b7:f3:aa:bc:cf:09:f8:d4:81:2b:3c:
a8:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:33:33:32:51:3A:EA:88:FF:BC:07:7C:72:CC:64:9C:87:48:F8:0E
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/uDMzMlE66oj_vAd8csxknIdI-A4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.222.4.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:a9:77:10:cf:09:6e:43:5b:7c:ab:13:28:05:bb:33:42:cf:
31:1e:55:75:4d:a5:53:15:87:f5:c9:d4:77:3c:2b:04:45:1b:
b9:28:db:73:fa:5d:07:30:be:95:fa:cc:6e:82:a1:f2:ce:b9:
8c:dc:67:f1:2a:6f:43:e3:b7:6e:e9:80:c2:55:13:7d:5c:3f:
c6:38:f2:2e:7e:18:e0:a3:c8:07:ec:6b:71:ab:3b:12:80:3a:
8e:ce:ba:bf:a2:14:97:cb:ee:6d:14:b7:18:ba:97:91:26:50:
9c:b9:ff:a0:b0:05:74:3c:51:ed:de:2d:16:50:2b:ce:a6:b4:
dc:a7:08:e1:f0:80:e2:76:13:d7:53:a6:87:2e:2a:6e:67:26:
92:4b:aa:aa:a7:4f:99:e8:ab:3f:4f:0a:c1:dc:01:76:9d:2b:
ac:8a:e3:04:97:ba:25:f4:94:3c:cc:8b:2b:70:6b:c4:98:f8:
89:d5:ba:ac:61:47:8d:dc:ab:71:1f:30:c3:09:18:ad:da:55:
fe:e7:46:ef:53:f6:7c:eb:ad:82:aa:15:49:86:8a:f6:2e:a4:
b8:7a:50:c0:6e:8e:4c:98:ad:69:07:ac:82:57:3f:53:50:ab:
9e:a6:e7:7d:3d:55:2b:6f:54:cc:96:5e:81:37:5b:8c:b5:af:
cc:4f:55:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org