Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/GhQnGSaOpLO-s8AjewEkCBkBhoM.roa
File: GhQnGSaOpLO-s8AjewEkCBkBhoM.roa (raw, json)
Hash identifier: bvdgCLFicfcXHuADZEx0yowWiGuwcbJtvSuH2mn+NUY=
Subject key identifier: 1A:14:27:19:26:8E:A4:B3:BE:B3:C0:23:7B:01:24:08:19:01:86:83
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D14
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/GhQnGSaOpLO-s8AjewEkCBkBhoM.roa
Signing time: Wed 26 Apr 2023 10:31:31 +0000
ROA not before: Wed 26 Apr 2023 10:31:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 182.155.192.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3348 (0xd14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:31 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1A142719268EA4B3BEB3C0237B01240819018683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:df:74:3a:1d:22:bb:e9:2c:30:1f:33:29:a5:
38:df:95:6a:92:e4:19:dd:88:04:f8:5d:5c:81:34:
80:7f:fc:2f:77:76:96:2e:36:cc:94:bd:d6:06:fd:
37:d3:cc:04:8e:53:b3:b1:3d:6d:fe:6b:0b:ca:d5:
e1:fa:44:82:15:9a:49:bb:16:ee:5f:c4:a9:15:df:
47:4f:c9:37:74:0e:e4:0d:9e:24:be:25:76:81:46:
f6:bd:50:a0:43:db:23:29:16:ee:78:48:c7:78:b1:
17:4f:85:0f:94:bd:ae:60:b3:b4:df:ba:6b:60:84:
a7:2d:d2:26:b0:af:9b:c8:f1:e7:87:6e:e1:6d:46:
00:af:c9:23:8a:e1:59:7a:cb:ee:cf:a4:56:ed:36:
6a:41:68:69:41:d8:c1:e8:ca:2d:97:ab:80:9f:cb:
d0:e3:7b:b0:33:46:2e:8a:f3:3b:6a:72:24:e7:a7:
89:40:83:0b:48:f0:70:54:5a:9d:15:33:f6:0b:86:
a1:c8:a5:35:a1:c1:a5:27:2a:0b:18:a5:72:ab:1d:
ff:1f:ec:29:64:79:81:44:ab:22:78:ec:66:b7:48:
04:1d:e3:61:e2:75:3c:94:b1:95:c1:d2:13:d5:d7:
67:c7:d3:81:86:8a:e1:72:cf:e7:28:08:6d:54:4c:
95:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:14:27:19:26:8E:A4:B3:BE:B3:C0:23:7B:01:24:08:19:01:86:83
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/GhQnGSaOpLO-s8AjewEkCBkBhoM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.192.0/18
Signature Algorithm: sha256WithRSAEncryption
83:4b:51:cf:ff:ec:c2:f0:1d:53:93:06:dd:1a:d6:f9:c4:fa:
19:2f:0e:52:e8:0d:01:63:61:47:99:4c:ad:a0:02:df:1a:cb:
92:81:96:92:2c:96:cc:1a:18:45:76:b2:df:a4:40:87:2e:ff:
0e:9f:6d:dc:97:dc:0a:d2:f1:25:b2:92:49:8d:d5:3c:37:c1:
c6:ba:2d:2b:c4:55:18:a0:60:94:3d:13:c2:d7:c2:96:70:89:
ea:ed:12:cd:ec:b7:dc:c2:30:d3:a4:2c:a3:38:27:05:12:85:
53:a4:f2:67:fd:66:c4:f3:b1:6b:58:88:e7:a8:79:1b:e4:0b:
04:f2:5e:1d:32:38:f1:52:07:99:43:e5:c6:8a:bf:a1:bb:03:
c1:b9:6b:8e:20:ca:2f:e8:f6:19:a2:64:3c:e2:ac:28:73:73:
83:c8:05:b9:51:5f:0c:08:81:cd:21:a6:0c:9a:4f:86:c3:ef:
cd:9f:66:a0:51:ae:44:d1:14:9a:7d:79:0d:a2:2e:e3:f6:63:
ab:23:17:55:9a:b1:36:b5:77:6a:7b:cc:b1:de:f4:1d:46:1e:
e4:c4:68:79:7d:16:38:70:20:7f:bb:8c:97:27:52:74:0a:71:
1c:13:08:26:0c:e3:0e:98:a9:65:5a:37:8e:66:eb:39:ce:d6:
dc:ca:3b:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org