Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/wfj42Hdbi8OuXLFJUdDUS7L-cLw.roa
File: wfj42Hdbi8OuXLFJUdDUS7L-cLw.roa (raw, json)
Hash identifier: UsESt5x295cL4Gj55OUiU+n/lHwl22oIJiIfD3ZNRuE=
Subject key identifier: C1:F8:F8:D8:77:5B:8B:C3:AE:5C:B1:49:51:D0:D4:4B:B2:FE:70:BC
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0B16
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/wfj42Hdbi8OuXLFJUdDUS7L-cLw.roa
Signing time: Thu 16 Dec 2021 06:45:22 +0000
ROA not before: Thu 16 Dec 2021 06:45:22 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17809
IP address blocks: 203.217.96.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2838 (0xb16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Dec 16 06:45:22 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C1F8F8D8775B8BC3AE5CB14951D0D44BB2FE70BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:43:cb:bb:c5:c9:eb:49:9f:18:ed:a9:43:4d:
2b:bd:33:8c:f0:9b:41:38:69:f6:de:a6:82:61:e3:
3e:da:a2:ee:a5:95:7c:c1:a2:7a:d6:11:f6:81:5e:
b5:6a:df:69:28:99:04:0c:a3:15:d6:25:63:75:c1:
24:d6:24:d2:04:10:88:48:cc:5e:a4:64:ac:26:35:
cd:c0:96:e7:2e:9e:ff:18:ef:4d:ed:57:48:1d:b2:
87:b1:21:2a:52:c8:a6:06:94:da:bf:c7:46:1e:ad:
a3:f1:08:11:a3:51:6a:11:69:05:c9:f1:9c:95:06:
c0:4a:09:45:05:5a:8b:cf:ec:2a:8e:08:cb:65:e8:
76:f4:84:3c:03:c7:83:e9:96:16:e8:38:8e:ce:c1:
e3:9a:55:84:c7:bb:9d:a6:c8:05:b3:e3:09:5f:c3:
b5:94:e9:0f:9e:8a:1f:40:be:c4:5f:75:30:ac:bf:
92:45:b1:04:e3:f1:7e:cb:73:f8:f5:ad:3e:ab:74:
32:25:0f:bd:39:e8:e0:86:71:ee:60:92:dc:dc:ea:
cd:0c:96:bf:96:f5:bb:47:94:89:dc:4a:4e:34:a5:
9e:41:23:d1:13:0a:73:2e:8c:81:8c:8d:85:2f:2f:
dd:c0:64:1b:30:c2:a3:7c:e9:c4:bb:de:33:26:1f:
35:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:F8:F8:D8:77:5B:8B:C3:AE:5C:B1:49:51:D0:D4:4B:B2:FE:70:BC
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/wfj42Hdbi8OuXLFJUdDUS7L-cLw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.217.96.0/22
Signature Algorithm: sha256WithRSAEncryption
40:59:bc:5c:e0:a0:b7:b2:e6:bd:62:c1:68:70:b8:39:37:b1:
8c:37:6a:44:48:e8:ab:a2:c7:64:0f:96:02:44:88:29:2a:88:
fa:1e:95:6c:df:d6:bb:91:c3:39:4a:4f:d8:40:b1:2f:27:00:
3d:43:ca:8b:d6:d9:b7:c7:a6:3a:5b:4e:13:8e:51:ba:8a:af:
cf:45:72:b4:db:21:09:28:e7:0c:48:52:5a:08:38:c9:ee:3a:
39:6e:91:96:81:d1:7f:98:ef:3d:1e:c9:30:4d:52:d6:96:42:
32:aa:1e:f7:37:09:8e:e6:01:08:35:bc:32:c5:8e:9b:01:68:
72:e4:d4:43:ec:08:d8:9e:84:c3:cb:5a:ba:af:20:7f:56:6d:
61:e1:2d:2c:a5:e7:89:3c:b3:3c:4f:09:0b:64:61:7e:48:39:
99:e4:0a:a4:a7:6c:86:e2:a7:f4:2d:ff:09:9e:db:d7:1c:26:
11:e4:af:28:2d:74:94:5e:18:85:ef:09:e6:03:7a:df:91:a9:
49:ee:d4:cd:8e:db:71:17:f8:45:b5:f0:18:67:a7:58:28:1c:
05:7a:60:a9:c6:ea:20:f8:15:3c:0a:5d:5c:3e:50:bf:af:b8:
8d:a7:a4:a7:4d:e2:c0:f5:b2:de:ac:8a:f3:1e:5c:60:b8:93:
ed:15:7b:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org