Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/vHdRzwLSImSxEbXFoinlqjeM70A.roa
File: vHdRzwLSImSxEbXFoinlqjeM70A.roa (raw, json)
Hash identifier: 5Jg502ZZIpBKgSOLFxR6i/tELtrTaEhZVtabDdin474=
Subject key identifier: BC:77:51:CF:02:D2:22:64:B1:11:B5:C5:A2:29:E5:AA:37:8C:EF:40
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0BFC
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/vHdRzwLSImSxEbXFoinlqjeM70A.roa
Signing time: Thu 15 Sep 2022 02:37:21 +0000
ROA not before: Thu 15 Sep 2022 02:37:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 203.217.96.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3068 (0xbfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 15 02:37:21 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BC7751CF02D22264B111B5C5A229E5AA378CEF40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:38:51:dd:c9:22:05:20:33:f3:a9:63:a7:ec:
07:ee:71:ba:d4:7e:53:8e:10:d0:36:69:47:be:a4:
8b:c1:49:d5:52:ca:3f:14:42:02:64:c6:01:c5:21:
c9:bb:63:81:7c:2c:79:71:89:a5:54:1d:2d:88:ab:
2b:fd:c5:76:57:d5:b2:ce:63:fb:1c:1c:22:a9:22:
c5:17:0c:71:40:06:6c:ec:3f:f1:67:94:71:5d:68:
bb:cb:3b:bb:01:21:93:33:f2:61:a7:0b:30:43:e5:
77:4b:f1:9d:f1:9c:d0:ca:ca:fd:08:bd:62:59:d4:
ab:71:9b:c8:5d:e3:96:31:52:33:bb:53:0e:dd:ba:
7d:c8:08:33:d9:a4:b3:6c:9c:eb:81:b5:8f:f7:4c:
c5:f8:9b:54:39:10:90:d0:8d:b9:d3:6c:c8:cf:58:
ca:62:ee:6f:27:e4:a1:a4:96:14:a0:8f:b9:21:a4:
c8:ec:0f:d9:ee:8b:e6:c1:b0:93:e4:6e:2c:ee:f8:
7b:70:8c:df:4d:bd:69:2e:22:3f:d0:23:ee:69:6a:
25:fd:d1:97:e6:c0:5d:43:c9:e2:ab:77:2e:1e:dd:
66:79:9f:0d:39:98:54:4a:43:67:7a:8e:e0:bd:8c:
e0:9e:a4:59:bc:9b:18:6a:91:a6:dc:66:aa:3d:84:
aa:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:77:51:CF:02:D2:22:64:B1:11:B5:C5:A2:29:E5:AA:37:8C:EF:40
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/vHdRzwLSImSxEbXFoinlqjeM70A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.217.96.0/22
Signature Algorithm: sha256WithRSAEncryption
78:fd:85:08:21:24:e3:7d:c1:74:c8:7c:4b:91:ff:17:0d:37:
d7:a2:f6:c7:7d:10:84:e8:25:62:78:b2:a4:f3:ec:e0:84:15:
6b:4c:92:c6:71:a6:2c:de:77:cc:42:a9:90:36:cd:8b:44:23:
8b:ca:92:77:cd:5f:89:a9:0d:32:d5:01:a5:09:a5:d4:f7:f7:
b0:e8:0b:8b:4a:7a:8c:ed:61:99:47:dd:20:ec:1c:62:26:9a:
51:15:b0:97:15:09:d6:48:ed:97:90:eb:60:22:68:a7:fd:51:
39:15:f4:8b:20:5c:51:3b:7a:ed:30:1d:08:50:17:f6:20:e6:
4c:ca:f3:fc:9f:f5:e3:55:74:b3:2a:36:9c:28:4d:9e:12:00:
fb:f6:4e:9d:54:94:15:36:16:a8:d0:87:c3:86:be:0d:20:fa:
b0:54:dc:33:ad:1f:ab:95:c5:05:97:45:b6:85:4d:c2:eb:48:
04:fd:fd:4f:33:17:15:e3:6d:2a:be:ec:1d:bb:91:1c:66:e6:
b8:27:c9:4c:2c:54:d0:12:0c:07:52:da:e2:19:6e:ec:34:d2:
49:bc:4c:3f:51:cc:59:df:59:97:c1:cd:ec:a0:c7:5e:66:00:
78:13:76:06:6e:43:19:26:2a:f6:12:1f:b1:5c:b4:63:15:ea:
bb:04:7d:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org