Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/uahYtNSUJHivWlIYLqOm4jUk4BM.roa
File: uahYtNSUJHivWlIYLqOm4jUk4BM.roa (raw, json)
Hash identifier: QdkBr/02I9lo3g9i90RsPiRhT5TYDQYCWizDgPSwCQM=
Subject key identifier: B9:A8:58:B4:D4:94:24:78:AF:5A:52:18:2E:A3:A6:E2:35:24:E0:13
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0B2E
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/uahYtNSUJHivWlIYLqOm4jUk4BM.roa
Signing time: Thu 16 Dec 2021 06:54:07 +0000
ROA not before: Thu 16 Dec 2021 06:54:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17809
IP address blocks: 203.222.20.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2862 (0xb2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Dec 16 06:54:07 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B9A858B4D4942478AF5A52182EA3A6E23524E013
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:10:f8:b0:c4:6e:4a:ef:d3:b9:20:b8:31:2c:
b2:bd:14:ba:34:e7:8c:49:bf:ec:c4:54:34:85:c9:
0c:2c:98:ca:a4:01:9c:df:d3:a8:65:f5:2a:fb:02:
da:0d:8c:82:ae:81:50:f0:ab:9c:1b:52:0b:f1:00:
57:c6:0e:df:d0:70:95:6f:a3:27:c7:3e:9a:64:64:
65:b9:cb:ee:ba:19:7e:ff:9d:bd:78:41:02:d7:86:
fc:37:85:7c:69:3e:9d:cb:48:dd:1e:c4:46:be:97:
bd:aa:f7:35:05:d6:cb:9d:c6:5c:5f:d3:15:63:00:
43:dd:38:d9:f6:e4:be:aa:e1:32:b6:33:fb:94:4e:
27:37:42:e8:b0:d0:67:cc:7a:87:ad:9a:42:23:29:
d6:17:4f:fa:5d:28:88:3f:89:4b:a2:b1:b2:57:cb:
6b:ef:d5:f7:94:95:4a:68:51:19:8e:89:d5:07:4e:
7c:70:ed:ea:11:cc:6e:ce:58:84:f0:95:79:bb:c0:
30:ef:32:a5:b7:a1:ce:47:21:ef:35:a4:23:f8:15:
01:29:8f:bd:81:9b:c5:f4:2b:31:7c:f3:66:45:ec:
4d:8e:80:ea:9f:2d:4f:be:e5:85:a8:2c:43:92:50:
5b:32:b8:f3:f4:6b:93:4b:b4:cf:90:21:77:84:8a:
75:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:A8:58:B4:D4:94:24:78:AF:5A:52:18:2E:A3:A6:E2:35:24:E0:13
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/uahYtNSUJHivWlIYLqOm4jUk4BM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.222.20.0/22
Signature Algorithm: sha256WithRSAEncryption
56:d7:3c:24:f6:b6:b8:0f:50:07:f7:ec:61:7a:40:b4:80:ad:
50:ed:bd:b2:d1:b4:8b:40:94:02:c5:71:ab:fd:64:ba:df:ae:
01:00:6a:db:e8:81:96:8b:c1:db:fe:2d:11:af:6c:cf:c9:24:
c8:47:32:46:77:6e:12:f2:b5:9f:22:75:f7:61:6f:e6:01:26:
10:ce:6a:27:19:82:c0:c0:02:44:95:43:14:1f:bf:95:14:c9:
85:b3:c6:89:bd:76:16:3d:21:87:3d:f4:4c:e0:f0:f8:31:2e:
9f:51:22:01:d8:1d:63:74:f3:b2:5c:a7:13:41:29:40:c4:d4:
eb:41:90:65:cb:c2:ed:2e:a5:99:9f:c4:99:28:97:8e:47:f2:
8e:8d:18:77:09:85:ac:2d:8d:3b:11:3c:80:b6:b5:97:78:0c:
cb:8b:db:53:43:c3:ec:50:09:ea:0e:4d:bb:47:e8:47:9f:17:
34:af:89:54:7f:d7:2c:38:06:21:75:46:bd:b1:bb:d2:ac:2b:
1b:20:85:64:2c:fa:e2:7b:69:84:73:d9:91:49:88:1f:38:e7:
1d:34:06:ef:36:0f:f7:cf:dd:72:7e:45:79:7a:65:a5:df:81:
82:2d:12:5d:03:c4:82:ad:0f:1e:3e:d1:29:e1:f8:7a:b6:94:
b7:9a:6e:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org