Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/1un2ZN9ns-42tXHSKdw00Jx8k4o.roa
File: 1un2ZN9ns-42tXHSKdw00Jx8k4o.roa (raw, json)
Hash identifier: 1biSD5TK9szIphwlyCAuOOlRR4zqL0Vo7Ug2KGvk2/U=
Subject key identifier: D6:E9:F6:64:DF:67:B3:EE:36:B5:71:D2:29:DC:34:D0:9C:7C:93:8A
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0B12
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/1un2ZN9ns-42tXHSKdw00Jx8k4o.roa
Signing time: Thu 16 Dec 2021 06:44:23 +0000
ROA not before: Thu 16 Dec 2021 06:44:23 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17809
IP address blocks: 182.155.192.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2834 (0xb12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Dec 16 06:44:23 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D6E9F664DF67B3EE36B571D229DC34D09C7C938A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:31:4e:6c:b3:c2:c9:a9:9d:88:52:98:05:a6:
8c:91:72:1c:9c:ab:0a:62:63:a8:89:3c:b7:95:76:
9e:97:32:51:0d:51:cd:49:6f:40:9c:1d:2d:75:4d:
a7:16:15:21:de:5c:d2:a6:be:c8:93:0f:37:d0:6b:
a6:8e:8a:56:13:24:7f:c6:ed:b8:73:d5:f5:6b:fb:
ec:5d:fe:46:17:90:e6:ec:9d:d3:02:2d:09:05:39:
57:f4:fc:32:52:bc:cb:b1:d5:10:80:68:20:b2:8e:
15:e2:f9:ad:9c:d6:37:ec:22:c6:e8:a2:22:1f:3c:
e0:11:73:d4:65:8e:40:98:9e:0e:3d:23:f9:ed:02:
2a:6e:a2:3f:64:7e:b7:fe:7d:7e:1a:e5:9f:2e:de:
af:63:10:e3:2b:0e:43:3b:d9:2d:de:75:1d:d9:dd:
1c:fb:fc:13:86:1d:7b:7b:cf:a7:94:1f:73:e4:06:
fd:f6:a2:d8:57:e8:6c:0f:b4:14:82:8c:fd:b0:25:
e5:79:a2:76:d3:d7:d6:f5:4c:85:34:61:25:5b:6e:
3a:a0:e1:70:fb:da:04:ab:5a:87:40:d6:68:71:3a:
e8:d3:ad:53:25:fd:2d:5c:97:ce:c5:97:85:e7:63:
8f:08:88:cb:43:b1:06:5d:4a:f1:25:02:1f:e7:48:
37:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:E9:F6:64:DF:67:B3:EE:36:B5:71:D2:29:DC:34:D0:9C:7C:93:8A
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/1un2ZN9ns-42tXHSKdw00Jx8k4o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.192.0/18
Signature Algorithm: sha256WithRSAEncryption
10:c6:dc:69:e0:72:83:e5:6f:27:74:63:63:54:45:eb:d4:0b:
fe:80:7e:a6:74:b6:ce:37:ca:06:b6:f1:3a:e1:84:75:c2:8a:
72:26:bb:b9:cf:1a:ba:8d:aa:20:48:08:f6:8e:23:77:45:bc:
21:37:99:45:ed:50:76:11:38:15:93:65:1a:03:0b:e3:f1:b5:
31:2f:ee:b5:c8:20:81:8f:e7:75:b4:df:18:09:83:df:e7:9e:
e6:c2:50:6f:e7:78:84:3e:d9:00:38:c6:44:93:d0:0f:21:f2:
2a:0d:47:f8:72:c9:54:e7:b7:3b:eb:79:d5:38:7d:5a:df:a9:
37:aa:b8:fe:6d:5b:96:81:02:0d:5c:99:cf:45:94:a8:39:b3:
eb:07:07:31:93:02:f1:c2:50:a2:bd:4e:6d:82:89:48:bf:45:
29:e6:21:1b:26:85:87:c6:99:40:c5:21:f7:25:23:36:30:cc:
a7:7c:d2:1b:db:d1:3c:44:3c:04:89:ed:6f:95:37:e7:d7:e0:
2c:0e:e0:b6:dd:f9:ee:8b:76:5b:ea:e7:fa:c9:d3:78:84:8b:
9e:ae:4e:4b:2f:a4:21:c4:f1:54:36:f0:c0:f2:39:91:95:f3:
5f:2d:29:23:98:2f:21:a4:85:b6:cc:0e:03:6e:2f:1b:0a:05:
c6:83:38:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:34 2025 by rpki-client