Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/1UjqjB7EScwASn4edxgC-df5F-M.roa
File: 1UjqjB7EScwASn4edxgC-df5F-M.roa (raw, json)
Hash identifier: z3wJ02Ye4qsmqOiwAfqwxMhDT4Iakp5KFUYRFggwJYM=
Subject key identifier: D5:48:EA:8C:1E:C4:49:CC:00:4A:7E:1E:77:18:02:F9:D7:F9:17:E3
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0B10
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/1UjqjB7EScwASn4edxgC-df5F-M.roa
Signing time: Thu 16 Dec 2021 06:44:08 +0000
ROA not before: Thu 16 Dec 2021 06:44:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17809
IP address blocks: 182.155.128.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2832 (0xb10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Dec 16 06:44:08 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D548EA8C1EC449CC004A7E1E771802F9D7F917E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:29:40:4f:68:6c:1a:83:89:45:f7:80:e8:bc:
0d:4a:6a:75:82:d6:4d:a8:2d:0c:a2:c3:00:af:a1:
89:bd:47:7f:2d:62:cf:0a:bc:e1:3e:15:2a:7e:d4:
11:52:c0:21:db:ea:01:db:2d:23:da:12:85:89:0e:
b9:c3:48:ca:9a:a6:db:8e:4d:50:47:f2:68:e7:a6:
12:a3:a2:c8:38:dc:4d:0c:0d:d0:f8:9c:a6:40:67:
fe:ca:1a:21:68:ce:1a:34:4d:8b:a5:e7:16:56:dd:
d7:9b:e7:3d:1f:7d:15:57:f9:7b:19:32:40:01:2b:
7b:d4:3e:a3:4e:48:5b:8f:53:a4:1c:8c:e9:b2:ec:
3d:70:07:bc:e5:7b:e8:b0:d1:ac:3a:ce:05:75:96:
be:bb:41:b1:74:cb:44:7f:5e:be:19:af:55:89:94:
aa:99:1e:51:95:7b:ba:f7:a8:c4:bd:54:5d:ef:6d:
38:ac:81:a5:50:bb:b0:be:22:3a:4a:50:9a:26:56:
16:55:a7:af:5e:fb:ef:b7:bc:85:fb:31:2d:0f:32:
16:dd:3e:13:f2:ed:b4:61:57:dd:b8:db:d9:bd:04:
9e:9a:f1:6e:0a:73:d1:af:a4:dd:e9:6d:3b:64:70:
71:29:e0:22:c8:84:c4:b8:64:37:42:e5:ff:82:dc:
12:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:48:EA:8C:1E:C4:49:CC:00:4A:7E:1E:77:18:02:F9:D7:F9:17:E3
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/1UjqjB7EScwASn4edxgC-df5F-M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.128.0/18
Signature Algorithm: sha256WithRSAEncryption
b5:c9:2a:56:ea:42:b8:fb:ea:21:ac:c5:78:4a:55:ec:ec:65:
a0:2c:1a:7c:52:07:48:51:53:44:57:d7:91:13:c1:18:d7:ba:
41:21:19:8a:4f:97:b0:4d:b2:f8:33:6f:3c:30:00:82:c6:be:
e6:17:31:cd:5d:4c:a1:f2:5a:82:27:83:73:49:bb:e3:73:61:
84:cd:9a:5d:d9:b0:8c:22:f2:67:bc:da:ea:39:9d:13:ed:2a:
ed:24:a7:7d:c2:a3:f2:e6:1c:b3:cf:64:b5:1d:48:02:85:2f:
8d:d6:ac:86:1a:d2:62:9b:71:ed:7c:ca:55:99:34:fd:e4:44:
77:70:eb:78:3e:d9:39:f0:7b:8c:62:11:16:e4:66:5a:b9:c4:
56:73:5e:fe:1c:66:2d:55:92:ef:4e:34:94:d5:22:18:a3:30:
fd:bd:a0:5a:31:84:a7:e6:05:c3:48:b7:a8:f7:0d:0f:69:ca:
68:96:4c:18:2e:55:17:8f:f1:d9:59:6d:ac:3f:0e:8f:06:ce:
3e:2a:0c:f2:aa:cc:1a:6b:d6:91:dd:64:d0:fb:ab:f8:07:89:
74:c0:c8:8a:dc:e4:94:7b:29:8c:68:54:44:b9:05:13:fc:e1:
d2:e5:e4:b1:8f:bd:54:87:54:85:e6:ee:f2:1b:24:f9:38:a5:
b0:6c:35:06
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCxAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMTEyMTYw
NjQ0MDhaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEQ1NDhFQThDMUVDNDQ5
Q0MwMDRBN0UxRTc3MTgwMkY5RDdGOTE3RTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDPKUBPaGwag4lF94DovA1KanWC1k2oLQyiwwCvoYm9R38tYs8K
vOE+FSp+1BFSwCHb6gHbLSPaEoWJDrnDSMqaptuOTVBH8mjnphKjosg43E0MDdD4
nKZAZ/7KGiFozho0TYul5xZW3deb5z0ffRVX+XsZMkABK3vUPqNOSFuPU6QcjOmy
7D1wB7zle+iw0aw6zgV1lr67QbF0y0R/Xr4Zr1WJlKqZHlGVe7r3qMS9VF3vbTis
gaVQu7C+IjpKUJomVhZVp69e+++3vIX7MS0PMhbdPhPy7bRhV92429m9BJ6a8W4K
c9GvpN3pbTtkcHEp4CLIhMS4ZDdC5f+C3BItAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU1UjqjB7EScwASn4edxgC+df5F+MwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvMVVqcWpCN0VTY3dBU240ZWR4Z0Mt
ZGY1Ri1NLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBrabgDAN
BgkqhkiG9w0BAQsFAAOCAQEAtckqVupCuPvqIazFeEpV7OxloCwafFIHSFFTRFfX
kRPBGNe6QSEZik+XsE2y+DNvPDAAgsa+5hcxzV1MofJagieDc0m743NhhM2aXdmw
jCLyZ7za6jmdE+0q7SSnfcKj8uYcs89ktR1IAoUvjdashhrSYptx7XzKVZk0/eRE
d3DreD7ZOfB7jGIRFuRmWrnEVnNe/hxmLVWS7040lNUiGKMw/b2gWjGEp+YFw0i3
qPcND2nKaJZMGC5VF4/x2VltrD8OjwbOPioM8qrMGmvWkd1k0Pur+AeJdMDIitzk
lHspjGhURLkFE/zh0uXksY+9VIdUhebu8hsk+TilsGw1Bg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org