Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/xA8-5u-Ujt3vUtF09deLVUwOmqY.roa
File: xA8-5u-Ujt3vUtF09deLVUwOmqY.roa (raw, json)
Hash identifier: YI2BLekYlq7l7Z8H6wt0Q+fmg1gVUFxejvCh5HEInu8=
Subject key identifier: C4:0F:3E:E6:EF:94:8E:DD:EF:52:D1:74:F5:D7:8B:55:4C:0E:9A:A6
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D22
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/xA8-5u-Ujt3vUtF09deLVUwOmqY.roa
Signing time: Wed 26 Apr 2023 10:31:34 +0000
ROA not before: Wed 26 Apr 2023 10:31:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 113.61.144.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3362 (0xd22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:34 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C40F3EE6EF948EDDEF52D174F5D78B554C0E9AA6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:64:e2:69:74:bb:9e:1d:9b:07:fd:3f:ac:80:
54:88:44:5f:e5:aa:59:83:f4:6d:44:14:0e:4d:ff:
6e:14:07:35:62:bc:13:7f:23:6e:4d:18:09:38:7c:
cb:30:1c:10:95:1a:5c:a1:e7:23:31:3b:29:7a:1a:
83:53:f4:2b:5a:9b:a7:97:4f:41:70:f7:d4:8f:da:
f1:de:62:ea:33:50:2d:77:57:ff:62:34:2f:fd:ab:
92:9f:32:43:99:d3:79:3f:1c:dd:af:90:63:d2:64:
0b:d6:c1:ff:10:2e:c1:8b:dc:f1:a9:fd:6c:01:8c:
18:6e:de:7a:f0:a5:c4:b6:cd:d8:36:c5:bd:25:c6:
b0:d8:5c:1d:61:0f:ff:5e:6c:d9:5d:0f:43:2d:f9:
b6:1f:36:6d:49:ec:5c:81:a8:27:2b:48:e2:12:2a:
d9:51:6a:28:a0:fd:96:20:2b:8a:5f:2f:60:09:07:
4b:c8:85:4d:3c:8d:67:dd:3c:e8:4a:14:a6:91:fd:
d6:65:bc:ed:ee:dd:10:34:b2:9d:63:53:da:1e:c6:
6c:94:25:37:ca:e6:74:ed:76:21:e2:c5:cc:37:a5:
ae:f7:59:6f:1f:44:aa:46:e2:35:98:77:eb:3a:fa:
bb:70:46:f3:78:4a:41:c6:d9:44:35:5b:15:0a:53:
5e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:0F:3E:E6:EF:94:8E:DD:EF:52:D1:74:F5:D7:8B:55:4C:0E:9A:A6
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/xA8-5u-Ujt3vUtF09deLVUwOmqY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.144.0/20
Signature Algorithm: sha256WithRSAEncryption
41:ad:4f:ab:92:3e:db:d5:ed:58:0f:bc:60:dd:06:86:71:93:
5a:61:05:53:92:96:a9:86:eb:13:9c:92:78:46:c5:c4:b1:c8:
cb:7e:d1:10:c1:3e:51:0f:8e:c6:3f:41:93:a6:f8:77:77:2e:
94:de:57:d8:4a:86:63:a7:bd:ae:e7:ba:fc:dc:9e:64:bf:70:
e0:27:27:6f:7c:07:bf:b0:8d:a7:e6:83:89:24:a7:9c:9a:0a:
26:96:9e:9b:ac:d6:89:32:56:04:52:66:bc:65:80:df:70:b9:
10:39:40:26:e8:c9:84:52:42:1d:2a:60:19:5a:29:36:b6:bf:
7f:02:3b:ed:49:09:31:82:c9:eb:80:39:24:38:5a:66:fb:55:
ac:c3:47:86:7e:69:c8:43:11:e7:44:00:4e:16:7f:c2:e5:e7:
e6:d4:f0:71:86:c2:de:4b:78:63:a1:05:4a:53:47:e1:ae:74:
5a:b7:dc:49:23:bf:a5:fa:3a:4b:79:91:78:b8:e3:b4:3e:f1:
0a:e9:b8:77:5d:6d:28:17:4c:6f:3c:ab:9f:27:03:f9:a3:2b:
24:da:cb:f2:7c:03:73:9c:82:a1:74:92:4d:49:fa:e6:00:ea:
4e:9e:b6:0e:1c:39:88:05:c9:ff:a5:13:eb:79:5f:e3:12:26:
d2:19:72:42
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDSIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA0MjYx
MDMxMzRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEM0MEYzRUU2RUY5NDhF
RERFRjUyRDE3NEY1RDc4QjU1NEMwRTlBQTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGZOJpdLueHZsH/T+sgFSIRF/lqlmD9G1EFA5N/24UBzVivBN/
I25NGAk4fMswHBCVGlyh5yMxOyl6GoNT9Ctam6eXT0Fw99SP2vHeYuozUC13V/9i
NC/9q5KfMkOZ03k/HN2vkGPSZAvWwf8QLsGL3PGp/WwBjBhu3nrwpcS2zdg2xb0l
xrDYXB1hD/9ebNldD0Mt+bYfNm1J7FyBqCcrSOISKtlRaiig/ZYgK4pfL2AJB0vI
hU08jWfdPOhKFKaR/dZlvO3u3RA0sp1jU9oexmyUJTfK5nTtdiHixcw3pa73WW8f
RKpG4jWYd+s6+rtwRvN4SkHG2UQ1WxUKU16rAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUxA8+5u+Ujt3vUtF09deLVUwOmqYwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgveEE4LTV1LVVqdDN2VXRGMDlkZUxW
VXdPbXFZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBHE9kDAN
BgkqhkiG9w0BAQsFAAOCAQEAQa1Pq5I+29XtWA+8YN0GhnGTWmEFU5KWqYbrE5yS
eEbFxLHIy37REME+UQ+Oxj9Bk6b4d3culN5X2EqGY6e9rue6/NyeZL9w4Ccnb3wH
v7CNp+aDiSSnnJoKJpaem6zWiTJWBFJmvGWA33C5EDlAJujJhFJCHSpgGVopNra/
fwI77UkJMYLJ64A5JDhaZvtVrMNHhn5pyEMR50QAThZ/wuXn5tTwcYbC3kt4Y6EF
SlNH4a50WrfcSSO/pfo6S3mReLjjtD7xCum4d11tKBdMbzyrnycD+aMrJNrL8nwD
c5yCoXSSTUn65gDqTp62Dhw5iAXJ/6UT63lf4xIm0hlyQg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org