Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/wGBy4MxNwsptSiXMLCJe1YlZTJ0.roa
File: wGBy4MxNwsptSiXMLCJe1YlZTJ0.roa (raw, json)
Hash identifier: xrevw9og8vHjTCoKkujjEd+V+93U4U1H3WfkqWVzMMU=
Subject key identifier: C0:60:72:E0:CC:4D:C2:CA:6D:4A:25:CC:2C:22:5E:D5:89:59:4C:9D
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D20
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/wGBy4MxNwsptSiXMLCJe1YlZTJ0.roa
Signing time: Wed 26 Apr 2023 10:31:34 +0000
ROA not before: Wed 26 Apr 2023 10:31:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 203.222.8.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3360 (0xd20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:34 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C06072E0CC4DC2CA6D4A25CC2C225ED589594C9D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ff:8e:8f:38:37:57:1f:af:0b:ac:e8:2b:88:
12:2f:a1:cc:a1:ec:3b:b0:16:ba:b9:cd:98:a7:78:
aa:5f:37:74:b8:39:4c:9b:e9:2a:56:b2:e9:fe:33:
02:78:3a:0c:8f:9f:a5:e6:39:44:37:7e:72:a9:39:
e2:16:68:cb:a3:3b:8b:c9:24:64:20:18:be:1d:ed:
eb:20:6d:af:51:3a:b1:3d:56:53:fb:f2:0f:91:86:
55:53:88:66:8e:21:21:42:17:8c:a9:b6:91:1f:e5:
5f:c2:16:4e:d5:ea:9f:6b:04:37:fd:92:21:aa:a3:
04:04:e3:8a:1f:bb:ab:77:2b:c8:02:4b:40:87:c2:
ff:7c:41:88:80:39:6a:ea:ff:37:81:be:80:7f:14:
0a:a7:15:c2:69:b9:45:dc:58:78:96:e0:94:08:5c:
f1:fd:c7:91:89:de:9a:ea:9a:e7:c9:d6:99:66:88:
8a:b1:a7:8c:95:6b:09:95:d9:f8:e0:7b:cd:cf:bf:
be:53:54:b7:d6:45:52:45:a6:a5:be:63:07:77:c8:
56:39:b5:48:2b:a5:6d:95:fc:25:79:f8:e9:97:67:
30:e4:d8:0a:fa:ce:1e:ed:ca:94:af:e2:04:31:16:
ec:52:b3:56:91:37:b9:76:f1:fc:bc:ef:f1:4b:0a:
71:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:60:72:E0:CC:4D:C2:CA:6D:4A:25:CC:2C:22:5E:D5:89:59:4C:9D
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/wGBy4MxNwsptSiXMLCJe1YlZTJ0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.222.8.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:8a:72:0e:40:ca:55:f0:e5:72:14:14:7e:f9:76:b8:39:ac:
ed:58:f2:76:ec:39:6f:f1:be:40:09:23:e3:13:b5:61:91:aa:
3a:26:93:d6:33:2c:20:68:00:8b:66:23:ec:08:10:b5:82:16:
54:a5:4b:ec:46:c8:4b:7c:62:87:7c:aa:3d:4f:1c:01:60:05:
45:2a:fc:de:71:00:1c:e7:b0:be:5f:12:32:36:ec:c4:80:c7:
20:8f:69:53:bc:fa:56:f5:9b:03:55:39:45:eb:8a:3e:30:6a:
dc:20:6a:ff:73:89:1f:40:b6:49:ae:75:7f:60:75:1d:88:4c:
4b:b8:51:89:77:ad:cf:25:94:eb:f3:d9:0e:ca:2b:35:67:0c:
50:7f:f3:80:1d:aa:df:11:ff:2e:82:d1:b6:e7:84:05:92:b3:
54:4a:1a:73:3d:a1:9a:d0:c8:ca:ee:f6:c4:27:a8:54:99:36:
b6:cb:2c:cc:d0:71:f2:49:00:bf:44:5f:ec:ea:aa:c6:e4:74:
fc:18:50:b5:e6:58:c2:b2:fb:c4:db:76:88:c9:9b:34:f1:79:
d5:9d:dc:10:5d:9e:83:06:1e:65:f2:73:42:11:1c:c0:1a:fc:
46:f3:5b:de:4e:f7:d1:ac:3b:ff:3c:a7:ab:9e:df:ea:a3:8e:
5a:21:b6:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:17:17 2025 by rpki-client