Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/zKZJ7nvvnsQ6zz-FXDUiVvuwd64.roa
File: zKZJ7nvvnsQ6zz-FXDUiVvuwd64.roa (raw, json)
Hash identifier: bHcGKCrao21+DkkwCM6lLZngr/jZ9EllnVnLcfVY8Jw=
Subject key identifier: CC:A6:49:EE:7B:EF:9E:C4:3A:CF:3F:85:5C:35:22:56:FB:B0:77:AE
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0CED
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/zKZJ7nvvnsQ6zz-FXDUiVvuwd64.roa
Signing time: Wed 26 Apr 2023 10:31:21 +0000
ROA not before: Wed 26 Apr 2023 10:31:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 113.61.208.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3309 (0xced)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:21 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CCA649EE7BEF9EC43ACF3F855C352256FBB077AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:54:0b:4f:0f:d2:c6:90:14:dc:19:aa:dc:8f:
35:de:52:b4:f6:c1:2c:de:bc:97:77:68:87:a4:b4:
b7:2c:fd:74:a4:0b:6f:1f:25:a6:25:2e:99:41:c1:
fe:87:85:4c:00:00:93:b1:7d:08:d0:2f:fd:4c:86:
ef:8d:f9:22:0d:b3:60:82:52:b1:6a:e9:26:9c:20:
81:4e:45:82:e1:b0:b0:e4:fe:31:63:82:9d:3a:3c:
4b:32:f1:a9:7d:80:09:04:dd:3d:a0:c3:03:e2:02:
a6:59:dd:82:e8:9e:82:b1:d4:b9:3b:02:36:c8:9a:
af:f4:3c:4a:06:c8:20:0d:f6:b1:34:21:71:3a:67:
08:a5:96:6d:c9:09:e5:88:83:be:93:e0:06:28:96:
43:63:9a:2f:a1:f2:e7:78:18:69:2c:a0:90:f0:13:
75:82:cc:47:5c:35:7e:60:72:67:91:1f:37:68:55:
8a:1a:96:87:98:6b:9b:ca:6f:a5:42:38:ff:68:6c:
1d:5f:0f:25:61:30:90:42:dc:10:3b:59:a9:8f:26:
24:e2:5c:db:4e:50:17:3f:17:d0:a2:5c:76:8e:06:
19:c1:79:72:95:dd:fe:ab:22:70:11:e4:e9:19:f4:
08:58:65:76:73:1f:28:f9:aa:eb:8c:3e:93:fd:6d:
38:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:A6:49:EE:7B:EF:9E:C4:3A:CF:3F:85:5C:35:22:56:FB:B0:77:AE
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/zKZJ7nvvnsQ6zz-FXDUiVvuwd64.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.208.0/20
Signature Algorithm: sha256WithRSAEncryption
a3:92:29:08:4e:a9:b7:a0:e9:81:be:22:54:0a:d1:15:36:c2:
a8:e8:be:86:88:40:0f:81:7d:f0:ca:3d:fa:6c:80:ae:cc:8b:
ed:fe:78:da:01:95:c4:28:f8:a7:5f:c1:f4:57:d5:20:7a:31:
f5:81:58:9e:80:1c:b1:fa:58:fc:94:f4:ab:75:7b:76:30:bf:
c1:cf:9e:3c:fb:2d:be:af:f2:b9:cf:e8:f1:fe:06:16:99:0a:
07:e7:92:61:a3:49:25:67:bb:12:35:00:41:de:8e:c3:df:5a:
67:1b:67:2c:62:0e:40:1b:b2:ba:1d:60:b5:cc:9d:0f:ce:20:
66:b9:fd:73:9b:d2:4b:3b:a1:aa:96:04:79:43:a5:36:e0:d4:
1b:89:ee:d3:0b:7d:0f:93:eb:d9:29:68:50:d6:b8:78:ae:c6:
c7:bc:e5:cc:01:ba:13:62:1d:d2:b5:b6:96:82:b5:d5:e6:2b:
e9:55:c2:58:1c:33:83:a7:87:72:f5:14:7d:2b:37:3a:13:cc:
c6:a2:98:17:ad:68:b8:e5:49:18:ec:91:6b:da:be:ab:95:98:
ac:cb:75:15:06:f2:23:90:01:ce:ed:32:7a:0e:95:ae:f6:51:
ff:4d:c3:7f:5c:3a:8c:34:e7:47:4f:41:b7:97:bb:5c:e0:d2:
b6:97:2b:a1
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDO0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA0MjYx
MDMxMjFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKENDQTY0OUVFN0JFRjlF
QzQzQUNGM0Y4NTVDMzUyMjU2RkJCMDc3QUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDQVAtPD9LGkBTcGarcjzXeUrT2wSzevJd3aIektLcs/XSkC28f
JaYlLplBwf6HhUwAAJOxfQjQL/1Mhu+N+SINs2CCUrFq6SacIIFORYLhsLDk/jFj
gp06PEsy8al9gAkE3T2gwwPiAqZZ3YLonoKx1Lk7AjbImq/0PEoGyCAN9rE0IXE6
Zwillm3JCeWIg76T4AYolkNjmi+h8ud4GGksoJDwE3WCzEdcNX5gcmeRHzdoVYoa
loeYa5vKb6VCOP9obB1fDyVhMJBC3BA7WamPJiTiXNtOUBc/F9CiXHaOBhnBeXKV
3f6rInAR5OkZ9AhYZXZzHyj5quuMPpP9bTj3AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUzKZJ7nvvnsQ6zz+FXDUiVvuwd64wHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvektaSjdudnZuc1E2enotRlhEVWlW
dnV3ZDY0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBHE90DAN
BgkqhkiG9w0BAQsFAAOCAQEAo5IpCE6pt6Dpgb4iVArRFTbCqOi+hohAD4F98Mo9
+myArsyL7f542gGVxCj4p1/B9FfVIHox9YFYnoAcsfpY/JT0q3V7djC/wc+ePPst
vq/yuc/o8f4GFpkKB+eSYaNJJWe7EjUAQd6Ow99aZxtnLGIOQBuyuh1gtcydD84g
Zrn9c5vSSzuhqpYEeUOlNuDUG4nu0wt9D5Pr2SloUNa4eK7Gx7zlzAG6E2Id0rW2
loK11eYr6VXCWBwzg6eHcvUUfSs3OhPMxqKYF61ouOVJGOyRa9q+q5WYrMt1FQby
I5ABzu0yeg6VrvZR/03Df1w6jDTnR09Bt5e7XODStpcroQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org