Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/v8Vj6voUv-XyNk7lXPY3yijnXtU.roa
File: v8Vj6voUv-XyNk7lXPY3yijnXtU.roa (raw, json)
Hash identifier: JA6PdQwkIHduelxG3EIGoY+332xp0T3reGRmnfKqVN4=
Subject key identifier: BF:C5:63:EA:FA:14:BF:E5:F2:36:4E:E5:5C:F6:37:CA:28:E7:5E:D5
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0CD1
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/v8Vj6voUv-XyNk7lXPY3yijnXtU.roa
Signing time: Wed 26 Apr 2023 06:49:11 +0000
ROA not before: Wed 26 Apr 2023 06:49:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 113.61.128.0/17 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3281 (0xcd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 06:49:11 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BFC563EAFA14BFE5F2364EE55CF637CA28E75ED5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:eb:6b:2e:7c:43:9f:49:57:44:f4:31:25:03:
11:a6:00:c7:14:02:96:05:37:54:ec:dc:6e:d0:38:
2d:43:b7:7f:6b:f7:a2:76:fd:d1:54:77:33:bf:00:
b6:c7:45:12:00:20:8d:aa:02:b1:d3:1c:f9:2f:32:
ed:47:f4:ab:2d:24:06:e9:1c:d9:99:8f:09:a4:ed:
88:e6:d8:48:2e:59:15:f9:50:11:4f:28:28:b2:31:
03:78:e6:6b:1a:61:42:e4:a8:1a:aa:76:3d:e9:69:
45:f1:91:98:64:a9:40:01:03:7d:f0:0d:73:13:bb:
48:e0:51:40:2a:18:73:9c:50:d3:0a:4b:b4:18:3b:
11:9a:31:23:09:c9:04:1f:71:d8:db:ad:5c:5d:37:
b2:63:33:cc:28:65:60:fb:d4:4a:af:2f:8a:66:dd:
68:7e:3e:eb:3e:e8:86:4d:5d:69:89:22:c5:02:57:
f7:bf:97:74:c4:5e:75:00:c4:73:6d:76:7b:7d:18:
b6:7a:f1:c0:22:29:3d:be:9d:b6:f4:80:f9:f3:15:
d6:8c:a7:11:dd:a3:ef:97:53:0b:40:22:19:5c:fb:
05:53:02:71:79:90:5b:26:b6:a8:a6:d8:22:9f:95:
18:4a:c8:8c:15:77:e5:6f:f8:d2:fa:1c:fa:47:67:
66:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:C5:63:EA:FA:14:BF:E5:F2:36:4E:E5:5C:F6:37:CA:28:E7:5E:D5
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/v8Vj6voUv-XyNk7lXPY3yijnXtU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.128.0/17
Signature Algorithm: sha256WithRSAEncryption
14:a7:72:03:a5:b8:44:f6:f1:37:b5:52:4e:14:5a:84:ff:be:
0e:ee:be:82:8a:1a:f3:4a:99:f2:32:de:e4:bc:04:4b:13:8f:
f2:d1:4b:0a:39:9d:c4:dc:92:76:1b:3e:dc:3b:f2:e2:bd:2d:
d7:dc:6d:94:09:0b:d6:79:e4:68:44:47:6a:79:98:d6:ca:9b:
6b:db:17:65:62:64:9f:13:98:97:b7:30:61:49:bf:87:d6:d1:
37:cd:de:32:e6:f9:6c:b7:aa:67:a6:2f:ca:d4:01:e5:e0:a6:
de:b5:0f:c0:ae:f1:6c:f6:8f:63:ad:16:56:d4:a4:8e:5b:38:
09:dc:91:84:30:0f:e1:e3:2b:d7:a2:cd:d2:44:d6:8c:5a:75:
59:78:8a:e3:7a:dd:01:52:00:b3:26:15:93:72:f2:fe:00:bc:
61:6c:65:45:a3:53:f7:f3:c2:b0:18:b0:f7:ed:fe:1c:36:5e:
d8:fa:b8:96:94:07:35:36:35:4a:a8:f6:30:34:12:3a:17:cc:
a7:24:60:88:c9:fe:b3:96:da:9f:0b:e7:03:4c:34:ba:69:a9:
14:16:d8:6a:00:67:b6:00:91:2b:48:59:6e:87:f0:7f:77:1e:
be:29:05:62:20:7f:29:74:40:96:ae:19:ef:73:cc:b9:27:b1:
7f:e0:58:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org