Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/GE4VjoeeW3D0nGrnPE2oDYeJh1U.roa
File: GE4VjoeeW3D0nGrnPE2oDYeJh1U.roa (raw, json)
Hash identifier: QGhJWcLu+dsylYRroziuPXT1I1tioxC6KZqbcRvzwEw=
Subject key identifier: 18:4E:15:8E:87:9E:5B:70:F4:9C:6A:E7:3C:4D:A8:0D:87:89:87:55
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 09A3
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/GE4VjoeeW3D0nGrnPE2oDYeJh1U.roa
Signing time: Sun 07 Feb 2021 13:15:31 +0000
ROA not before: Sun 07 Feb 2021 13:15:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17809
IP address blocks: 182.155.0.0/16 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2467 (0x9a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Feb 7 13:15:31 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=184E158E879E5B70F49C6AE73C4DA80D87898755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7d:5f:28:6f:9d:d2:5b:62:d2:87:47:08:f5:
ab:4a:bf:78:b5:b4:dd:c1:0b:e5:2b:60:63:57:39:
7b:af:6f:26:f2:e6:f4:a1:75:b8:11:7f:78:4a:53:
d0:80:4f:fd:a4:74:06:69:04:0b:12:b2:ac:d0:e2:
c2:e8:cb:36:b9:52:f2:51:55:03:3e:e8:14:b8:22:
4b:ff:15:d9:35:c7:d3:ee:b8:80:b3:aa:47:32:4a:
a0:3d:e2:d1:70:2a:ee:bb:cd:b7:f0:c1:cb:0d:f4:
b8:9c:fc:08:81:4a:ec:ee:40:93:00:6e:c6:5f:ce:
d5:dd:11:7b:a2:30:5b:41:8f:bc:84:95:36:11:4b:
42:1a:af:19:98:8d:41:c4:6c:f8:dd:97:37:e5:a8:
f2:ed:ed:60:80:9d:cd:78:c9:d1:60:c7:ef:78:6c:
dc:c9:74:aa:67:f5:8d:7e:e4:49:d4:41:c2:5f:73:
52:1d:9b:6a:47:a7:f2:75:2e:22:53:be:e4:2f:4f:
5a:38:3a:bd:48:ff:2f:c4:37:a4:b4:c9:f8:6e:09:
82:65:5b:0c:60:e3:9e:81:a8:6e:c1:b3:10:83:61:
6b:d5:2d:51:8d:bf:46:01:e3:a7:c6:b2:a4:38:82:
8d:bf:31:a0:c8:d5:96:4d:5f:6b:cf:65:e5:09:ab:
bc:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:4E:15:8E:87:9E:5B:70:F4:9C:6A:E7:3C:4D:A8:0D:87:89:87:55
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/GE4VjoeeW3D0nGrnPE2oDYeJh1U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.0.0/16
Signature Algorithm: sha256WithRSAEncryption
19:7a:5e:7e:ae:94:a8:da:d0:90:73:79:65:71:6e:a5:65:81:
fa:b8:a6:9d:53:a4:82:18:95:db:27:84:26:fc:c8:88:69:87:
f3:2d:17:6d:df:2b:d1:6a:8c:6f:78:c5:fc:4d:da:5a:5e:f0:
47:8b:ff:0b:5b:1b:5a:f4:f4:f0:36:75:18:86:97:26:66:d2:
f6:b5:67:0b:e1:97:f7:b7:b2:3b:77:04:7f:3e:44:cc:72:68:
3d:39:2e:e9:62:51:fb:c5:c1:2c:69:3d:71:9e:4b:b3:ea:cc:
2d:30:35:f7:0c:15:50:56:d6:3d:95:0f:21:48:56:04:12:e6:
c1:63:9c:2e:a6:fe:72:ea:70:aa:81:29:29:41:30:c3:f0:a7:
e5:e4:62:6e:61:2e:85:86:d8:fe:75:97:69:01:99:a0:63:17:
03:dc:ff:78:67:ff:35:b5:da:99:a3:b6:25:8e:ca:82:5e:00:
5e:82:01:a8:80:5e:47:f6:ff:80:36:b1:eb:f5:3d:50:ed:cf:
2b:50:b2:95:24:69:4c:65:09:3d:be:a8:74:22:14:e0:25:83:
96:ed:3c:c5:e2:32:0a:ea:bb:43:0e:1e:fc:5c:76:03:af:69:
4d:af:31:f8:46:e7:71:90:f6:84:3c:6a:c2:01:80:9c:0d:e8:
7c:ab:d6:a8
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICCaMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMTAyMDcx
MzE1MzFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDE4NEUxNThFODc5RTVC
NzBGNDlDNkFFNzNDNERBODBEODc4OTg3NTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/fV8ob53SW2LSh0cI9atKv3i1tN3BC+UrYGNXOXuvbyby5vSh
dbgRf3hKU9CAT/2kdAZpBAsSsqzQ4sLoyza5UvJRVQM+6BS4Ikv/Fdk1x9PuuICz
qkcySqA94tFwKu67zbfwwcsN9Lic/AiBSuzuQJMAbsZfztXdEXuiMFtBj7yElTYR
S0IarxmYjUHEbPjdlzflqPLt7WCAnc14ydFgx+94bNzJdKpn9Y1+5EnUQcJfc1Id
m2pHp/J1LiJTvuQvT1o4Or1I/y/EN6S0yfhuCYJlWwxg456BqG7BsxCDYWvVLVGN
v0YB46fGsqQ4go2/MaDI1ZZNX2vPZeUJq7ytAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUGE4VjoeeW3D0nGrnPE2oDYeJh1UwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvR0U0VmpvZWVXM0QwbkdyblBFMm9E
WWVKaDFVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDALabMA0G
CSqGSIb3DQEBCwUAA4IBAQAZel5+rpSo2tCQc3llcW6lZYH6uKadU6SCGJXbJ4Qm
/MiIaYfzLRdt3yvRaoxveMX8TdpaXvBHi/8LWxta9PTwNnUYhpcmZtL2tWcL4Zf3
t7I7dwR/PkTMcmg9OS7pYlH7xcEsaT1xnkuz6swtMDX3DBVQVtY9lQ8hSFYEEubB
Y5wupv5y6nCqgSkpQTDD8Kfl5GJuYS6Fhtj+dZdpAZmgYxcD3P94Z/81tdqZo7Yl
jsqCXgBeggGogF5H9v+ANrHr9T1Q7c8rULKVJGlMZQk9vqh0IhTgJYOW7TzF4jIK
6rtDDh78XHYDr2lNrzH4RudxkPaEPGrCAYCcDeh8q9ao
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org