Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/yXelyFxesGLEUfuLI-xI_btGi4o.roa
File: yXelyFxesGLEUfuLI-xI_btGi4o.roa (raw, json)
Hash identifier: WKdHrl4osDSihvlxou29LZ4e8f86Kwbq7N8eN4bGyo4=
Subject key identifier: C9:77:A5:C8:5C:5E:B0:62:C4:51:FB:8B:23:EC:48:FD:BB:46:8B:8A
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D16
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/yXelyFxesGLEUfuLI-xI_btGi4o.roa
Signing time: Wed 26 Apr 2023 10:31:31 +0000
ROA not before: Wed 26 Apr 2023 10:31:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 203.222.16.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3350 (0xd16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:31 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C977A5C85C5EB062C451FB8B23EC48FDBB468B8A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:bf:ff:d6:93:b7:b0:ee:2a:72:db:e3:a8:6a:
2d:1a:c6:66:bf:ee:5e:3e:0a:62:0b:68:59:f3:3f:
60:92:87:f4:2a:20:95:3b:fc:b3:d9:2f:7f:70:c2:
45:59:b3:2d:48:5c:ca:b1:5a:e7:1f:57:39:fb:46:
f8:28:e6:e2:39:67:be:8c:29:01:6a:7c:49:da:92:
e9:50:8b:91:82:82:30:9a:58:99:97:0b:89:b7:70:
b4:1f:5b:f5:7d:ea:0b:5c:db:69:58:82:28:dd:a1:
5c:21:21:6a:92:be:b7:a8:e6:48:45:f1:f0:ee:03:
68:b9:3b:79:c7:0e:a3:12:44:60:d2:ff:2f:ca:5b:
01:ea:4e:71:fb:a8:45:4f:40:fe:ed:cf:1c:ca:03:
00:3c:29:38:86:ce:e8:49:92:f4:7b:8e:c4:10:d5:
e3:ef:26:de:4d:c6:1e:03:26:76:60:6a:7a:71:88:
28:58:3f:f3:e4:52:4a:da:e8:79:ad:42:05:de:e0:
a0:26:58:13:1c:be:47:30:0a:8e:b4:8e:13:23:44:
42:a1:f1:46:35:ae:28:23:58:65:59:d6:ce:f5:b2:
dc:3e:19:cb:aa:e3:f6:57:a8:0a:af:95:d9:8b:46:
38:37:4f:9c:2f:a7:a1:6a:b0:47:43:d9:d6:68:16:
8f:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:77:A5:C8:5C:5E:B0:62:C4:51:FB:8B:23:EC:48:FD:BB:46:8B:8A
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/yXelyFxesGLEUfuLI-xI_btGi4o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.222.16.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:f8:f6:f8:94:17:bd:a7:62:ce:3e:97:45:4b:5d:92:62:aa:
0a:0e:db:cb:02:7c:eb:97:93:1c:dc:f3:bb:a9:9d:07:ab:b8:
27:a4:a4:e1:af:7a:f3:95:a0:5e:85:02:1b:95:1b:6c:e6:32:
9a:29:15:b7:b4:0a:e0:da:4d:3a:4e:1f:bb:94:e6:0f:72:08:
9e:27:9a:49:8d:b5:4e:02:31:81:ed:b9:39:2e:a2:f9:7c:ee:
1f:96:95:66:90:85:21:c6:fe:8d:34:05:0f:1b:61:0a:13:c0:
f3:4b:28:3f:7d:ef:25:aa:26:21:e0:c0:e2:da:9a:04:ca:d0:
74:28:2c:08:43:67:53:c8:56:58:fb:af:04:4d:db:68:66:84:
e1:5c:52:30:82:59:c1:4c:b8:a0:01:d9:71:f6:8f:fe:78:46:
e2:6a:91:e5:d8:68:24:ac:e0:e6:8e:04:a5:a8:c7:36:de:c7:
16:0d:b3:f3:15:b9:f7:fe:a8:c3:f5:40:de:c4:6d:21:b9:d5:
08:6d:15:26:63:48:d9:73:e6:9c:d4:b3:7a:5e:76:7c:23:9d:
24:a5:33:42:a9:e8:5d:69:c3:2b:8a:d7:83:39:77:c0:b2:46:
60:fb:4c:66:6f:3d:81:37:d1:2f:5c:e6:31:50:8f:6d:6b:72:
b6:aa:be:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org