Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/uhLfU1wLF2jpZQqwT_Iip-JNJ4E.roa
File: uhLfU1wLF2jpZQqwT_Iip-JNJ4E.roa (raw, json)
Hash identifier: H94EJlpcqRKaub9/Us+xm/LPOiZRCeTgxsWt3CyNFIA=
Subject key identifier: BA:12:DF:53:5C:0B:17:68:E9:65:0A:B0:4F:F2:22:A7:E2:4D:27:81
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0CF7
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/uhLfU1wLF2jpZQqwT_Iip-JNJ4E.roa
Signing time: Wed 26 Apr 2023 10:31:24 +0000
ROA not before: Wed 26 Apr 2023 10:31:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 121.254.104.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3319 (0xcf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:24 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BA12DF535C0B1768E9650AB04FF222A7E24D2781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:62:20:f8:f3:4a:f0:99:4b:1e:3d:4b:6b:6c:
7b:a5:8d:67:df:d9:d0:d6:cb:94:e1:4f:00:e5:c6:
30:38:8b:ae:14:31:6c:4b:33:06:b7:4b:f1:59:74:
1e:84:8f:b6:f1:f1:93:78:0a:1c:d3:1c:7a:cc:4e:
ef:27:ae:98:ee:cf:21:d5:c3:4e:50:1b:58:39:dc:
cb:a7:3f:21:e5:18:8b:98:41:39:52:df:f7:05:10:
ed:50:fd:5a:3c:4b:45:8e:33:a1:2a:b6:b6:c0:29:
0c:3c:4c:81:ea:75:93:39:61:33:84:3e:ef:7b:ae:
0f:54:04:12:6c:2a:c9:12:4e:9b:80:1f:cf:0f:eb:
b9:bc:75:17:e8:1c:21:1e:04:62:e5:72:f6:b7:1f:
d5:3c:b5:4f:6b:cd:10:9d:47:b9:33:59:39:fb:5f:
11:53:fb:ba:33:9e:3a:da:68:5a:fa:ca:b2:19:31:
8a:c1:4b:c6:a6:31:0b:c3:16:54:a3:cc:5e:32:3c:
46:6e:24:32:41:1e:32:ab:2f:b0:02:45:4a:c5:10:
1a:d5:d7:3c:b4:52:07:67:d5:18:32:56:3b:7e:b1:
bc:0b:49:8b:0e:c8:09:6d:86:a1:6a:37:80:1d:16:
73:9c:4d:29:f7:3f:59:f8:38:f1:90:46:d7:81:6c:
35:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:12:DF:53:5C:0B:17:68:E9:65:0A:B0:4F:F2:22:A7:E2:4D:27:81
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/uhLfU1wLF2jpZQqwT_Iip-JNJ4E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.254.104.0/21
Signature Algorithm: sha256WithRSAEncryption
36:c4:9c:be:b5:f5:ee:a8:de:e2:f2:08:5a:18:a9:99:08:4f:
f6:99:60:42:dc:9a:29:83:48:e3:c9:a6:c6:a9:5a:de:cd:b2:
66:b1:0d:72:cb:84:a1:a3:f0:32:0f:31:7a:58:04:97:7c:1b:
e9:7b:ae:34:69:ae:9a:a8:c5:2e:d1:cd:15:26:e3:ab:80:06:
5f:2f:97:6b:0f:8d:49:78:75:e2:f2:4a:36:84:98:d3:94:48:
59:84:3a:82:18:08:48:75:42:7d:15:b5:ea:94:ba:14:9c:30:
3c:68:f5:61:27:df:ff:83:01:b6:20:d6:db:bf:a7:5c:3a:3c:
f6:a6:2c:fc:93:02:e0:1c:f9:42:89:a1:65:d2:9b:93:70:a0:
93:d2:4e:78:a2:71:df:b9:c2:68:45:d1:da:66:48:13:af:5d:
ef:1d:7a:5a:1a:e4:33:d9:46:19:32:44:f8:71:06:0b:ac:68:
98:49:c4:5d:26:ed:1f:cb:be:4b:79:a8:ef:46:9d:98:f4:e8:
3a:7f:1a:50:30:4b:14:37:b0:65:da:fc:34:95:4e:45:b8:20:
4b:e3:c7:7d:01:94:f5:71:08:79:04:cb:2d:9f:f6:3b:60:70:
30:25:df:6c:40:fb:61:c3:da:31:d0:f1:34:59:8d:90:ef:f8:
14:bb:e0:b1
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDPcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA0MjYx
MDMxMjRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEJBMTJERjUzNUMwQjE3
NjhFOTY1MEFCMDRGRjIyMkE3RTI0RDI3ODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDYYiD480rwmUsePUtrbHuljWff2dDWy5ThTwDlxjA4i64UMWxL
Mwa3S/FZdB6Ej7bx8ZN4ChzTHHrMTu8nrpjuzyHVw05QG1g53MunPyHlGIuYQTlS
3/cFEO1Q/Vo8S0WOM6EqtrbAKQw8TIHqdZM5YTOEPu97rg9UBBJsKskSTpuAH88P
67m8dRfoHCEeBGLlcva3H9U8tU9rzRCdR7kzWTn7XxFT+7oznjraaFr6yrIZMYrB
S8amMQvDFlSjzF4yPEZuJDJBHjKrL7ACRUrFEBrV1zy0Ugdn1RgyVjt+sbwLSYsO
yAlthqFqN4AdFnOcTSn3P1n4OPGQRteBbDWvAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUuhLfU1wLF2jpZQqwT/Iip+JNJ4EwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvdWhMZlUxd0xGMmpwWlFxd1RfSWlw
LUpOSjRFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3n+aDAN
BgkqhkiG9w0BAQsFAAOCAQEANsScvrX17qje4vIIWhipmQhP9plgQtyaKYNI48mm
xqla3s2yZrENcsuEoaPwMg8xelgEl3wb6XuuNGmumqjFLtHNFSbjq4AGXy+Xaw+N
SXh14vJKNoSY05RIWYQ6ghgISHVCfRW16pS6FJwwPGj1YSff/4MBtiDW27+nXDo8
9qYs/JMC4Bz5QomhZdKbk3Cgk9JOeKJx37nCaEXR2mZIE69d7x16WhrkM9lGGTJE
+HEGC6xomEnEXSbtH8u+S3mo70admPToOn8aUDBLFDewZdr8NJVORbggS+PHfQGU
9XEIeQTLLZ/2O2BwMCXfbED7YcPaMdDxNFmNkO/4FLvgsQ==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:14:23 2025 by rpki-client