Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/zUmP_th_35j4XQDOfQovGrAyJaI.roa
File: zUmP_th_35j4XQDOfQovGrAyJaI.roa (raw, json)
Hash identifier: QVM/nOlk7ItkwDRnZ43dt1pVWeJ+oHycQD2ZqiZINmg=
Subject key identifier: CD:49:8F:FE:D8:7F:DF:98:F8:5D:00:CE:7D:0A:2F:1A:B0:32:25:A2
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0AF0
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/zUmP_th_35j4XQDOfQovGrAyJaI.roa
Signing time: Thu 16 Dec 2021 06:35:17 +0000
ROA not before: Thu 16 Dec 2021 06:35:17 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17809
IP address blocks: 113.61.208.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2800 (0xaf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Dec 16 06:35:17 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CD498FFED87FDF98F85D00CE7D0A2F1AB03225A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:75:86:d5:41:09:ae:1e:26:94:ba:c7:5f:ab:
07:b2:a2:7c:74:1c:c0:5e:d4:51:86:68:17:4f:33:
64:13:45:4e:2c:b4:ef:ae:2f:a8:20:da:c9:c1:d3:
d2:94:96:41:de:a2:aa:5b:32:de:52:c6:ba:23:af:
41:ce:42:e0:02:68:8f:a9:2b:3b:24:23:8d:82:d3:
5f:05:5c:51:d3:0e:6a:9f:db:e0:5c:21:fa:cf:33:
be:5e:bc:63:c7:ad:9b:74:77:0a:63:5a:82:c4:24:
91:42:08:c4:6e:22:ad:9b:c1:79:39:56:16:0b:58:
07:ab:9b:0c:d9:72:ce:b4:c2:74:d3:00:f5:de:68:
83:52:1d:fe:cf:d3:d3:72:a9:45:7b:41:10:3a:5b:
26:8b:e5:44:6d:72:64:6d:1c:a6:e7:0c:28:24:9f:
6e:3a:9b:2d:5e:86:87:60:e9:3c:b2:d5:fe:0c:2d:
a2:9b:c8:c0:61:f2:62:60:4b:fd:79:ea:36:fa:ef:
26:f5:c4:ae:9d:5a:62:4d:b3:36:f5:eb:89:17:8a:
8a:07:13:3c:b6:58:47:86:13:b5:8f:6d:a9:fa:dd:
9e:f1:0c:fc:1c:2a:ff:61:30:36:bf:3f:9c:c8:d8:
d2:29:69:c2:eb:06:73:51:c6:36:54:00:1e:88:20:
0d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:49:8F:FE:D8:7F:DF:98:F8:5D:00:CE:7D:0A:2F:1A:B0:32:25:A2
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/zUmP_th_35j4XQDOfQovGrAyJaI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.208.0/20
Signature Algorithm: sha256WithRSAEncryption
4e:5a:f5:cc:8e:ac:4a:20:4f:2f:1e:36:e5:3c:a3:4e:13:7a:
72:32:25:c7:7c:52:75:75:13:3f:4d:c8:c1:9c:e6:c0:92:f1:
6a:04:9f:87:30:7c:35:75:da:e0:10:30:06:36:31:b7:23:6e:
8c:1a:9f:b9:34:bb:1e:cd:e6:8e:52:22:cf:59:2c:15:87:fb:
65:02:f8:7a:20:bc:fa:35:aa:b1:55:8a:8b:c6:a9:88:c7:16:
1a:28:ac:ee:85:d1:78:b0:f1:d0:da:50:7d:26:6a:9d:99:30:
15:2b:87:1c:52:ac:dd:75:43:ab:f0:e6:73:fb:16:5c:90:59:
e7:f4:e5:2f:89:0e:4f:98:67:3d:de:3e:73:39:c9:a7:08:31:
0c:1f:fb:af:28:ba:ba:e6:35:69:47:c3:d4:a1:cd:4d:ca:3c:
72:3f:b7:70:a0:1e:52:33:93:22:9a:12:01:9c:4b:1d:9c:f9:
13:5d:90:92:bc:72:59:08:c4:60:ec:e9:5c:5b:5f:12:46:4c:
8e:db:65:41:80:34:19:84:d8:f8:53:ca:71:77:fc:de:fd:c9:
7c:bf:86:62:67:84:8e:e0:60:e6:0f:30:43:41:60:c1:2c:7e:
58:f4:94:56:9a:44:ad:54:23:4d:08:2e:4f:5e:84:ff:75:49:
ed:f7:56:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:53 2023 by rpki-client on console-ams.rpki-client.org