Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/vCVhTXoEj3S6B4RKv2DnAtyFLUc.roa
File: vCVhTXoEj3S6B4RKv2DnAtyFLUc.roa (raw, json)
Hash identifier: yuihlCHgmf4rZvUshOcszXppN4NGpSmUcboXQlhzhvY=
Subject key identifier: BC:25:61:4D:7A:04:8F:74:BA:07:84:4A:BF:60:E7:02:DC:85:2D:47
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D0F
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/vCVhTXoEj3S6B4RKv2DnAtyFLUc.roa
Signing time: Wed 26 Apr 2023 10:31:29 +0000
ROA not before: Wed 26 Apr 2023 10:31:29 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 203.222.8.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3343 (0xd0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:29 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BC25614D7A048F74BA07844ABF60E702DC852D47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:09:d7:0e:6d:f4:cf:8e:14:a9:ed:94:37:af:
78:a0:5b:07:6e:ae:cf:71:7d:9a:c5:55:3f:3f:b8:
99:9d:d4:e6:53:c8:1c:a7:1a:77:ca:61:43:90:48:
65:29:d1:59:be:4b:cf:0b:90:a9:db:1d:96:d0:51:
30:9f:ea:0f:90:8f:88:a3:de:a7:19:df:33:2b:b8:
bf:97:46:3a:59:e9:08:7d:ef:d3:ab:19:4f:2b:77:
d3:84:29:11:7a:ff:be:ce:21:5e:cc:16:13:e9:5e:
80:f3:7a:ae:3e:75:07:47:cd:bc:72:2b:4b:3e:01:
b4:9f:39:6c:bb:9f:b1:70:37:88:f3:1d:cd:a4:47:
8f:10:0f:ce:5c:93:fa:4c:f2:ed:21:d3:0b:e6:d4:
d2:4f:64:de:bf:ab:d7:12:58:04:fa:cc:e3:47:38:
35:3c:7d:f9:e2:43:35:56:2a:72:66:cc:f7:54:d0:
06:9e:03:18:4a:88:fd:22:a3:6d:54:53:21:8b:af:
f8:ce:66:ab:c7:d0:d4:02:a5:fa:f0:08:9f:0a:56:
e9:35:38:5b:e7:bd:ec:7b:f4:56:7c:3c:b2:e9:75:
7f:2f:b4:22:f2:02:07:13:6a:42:e6:48:41:6e:4a:
28:89:8d:54:31:2a:25:9f:56:8a:0e:51:8b:c0:eb:
8a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:25:61:4D:7A:04:8F:74:BA:07:84:4A:BF:60:E7:02:DC:85:2D:47
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/vCVhTXoEj3S6B4RKv2DnAtyFLUc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.222.8.0/21
Signature Algorithm: sha256WithRSAEncryption
71:a5:d3:b1:ca:43:ac:09:97:48:fb:1c:a1:99:00:76:9d:d4:
93:76:85:f6:64:25:6c:0e:14:e3:85:1b:b6:0a:ea:2f:f9:88:
62:5b:ac:b7:75:d1:72:5c:cf:ac:02:c4:1c:d9:d2:d4:bc:1e:
b6:b7:00:79:51:18:df:2f:47:3e:a5:55:b1:33:f3:c2:88:33:
58:2c:13:a8:1e:9e:6b:f8:6e:fb:4b:da:89:bb:7f:a2:72:ee:
54:4a:ee:35:67:4d:42:e8:70:5f:4b:8f:fc:3d:4e:8e:0a:f7:
8d:fd:0f:69:b4:ad:b4:d7:8b:07:ea:29:20:79:74:43:33:6c:
7f:0c:15:56:6c:98:24:d7:46:96:d0:dd:cf:cf:08:ff:25:1b:
b8:fb:17:6b:d0:ad:d0:4e:a1:98:91:31:f3:e4:f7:f5:05:dc:
da:95:10:48:4e:ac:04:0e:1f:41:e8:cc:18:e7:58:b3:25:8b:
4e:87:42:07:7c:bc:35:81:71:28:3c:66:b9:f0:71:a9:49:a6:
ac:4b:b8:37:f0:21:29:13:ec:4b:79:32:a6:14:96:f4:57:64:
87:ad:3a:4f:b4:ef:a6:4e:01:e0:6c:f6:b6:79:67:53:4f:6d:
89:cf:df:1c:a6:ff:3a:2c:2e:d3:e3:ec:d4:70:37:9d:95:d9:
17:53:77:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org