Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/HA2605DeOB3Hccaxw0bpQCqpvH0.roa
File: HA2605DeOB3Hccaxw0bpQCqpvH0.roa (raw, json)
Hash identifier: LhbOp2P/d0CETOz0mK3k8LKrOVokgXumjtbdzkro5A0=
Subject key identifier: 1C:0D:BA:D3:90:DE:38:1D:C7:71:C6:B1:C3:46:E9:40:2A:A9:BC:7D
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D34
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/HA2605DeOB3Hccaxw0bpQCqpvH0.roa
Signing time: Wed 26 Apr 2023 10:31:40 +0000
ROA not before: Wed 26 Apr 2023 10:31:40 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 182.155.0.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3380 (0xd34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:40 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1C0DBAD390DE381DC771C6B1C346E9402AA9BC7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:fd:66:bf:52:5f:98:fc:e0:44:2d:e3:18:a6:
c1:f7:1f:70:c3:bf:32:52:5e:49:d6:e8:ad:e9:76:
e8:a3:62:46:18:16:41:db:85:1e:18:9c:66:29:ab:
72:8e:80:2b:2d:2f:aa:fd:e1:d7:5d:eb:26:dd:de:
0c:1c:c4:90:5a:80:32:4a:22:d8:55:5f:eb:6c:4c:
eb:b0:09:70:ed:49:0d:96:8c:05:c2:e0:70:6e:94:
eb:af:71:cf:ab:36:4e:76:67:3f:5f:7a:b7:a6:0b:
d1:9c:9b:10:11:c0:e8:20:e2:cf:d2:8d:ad:40:26:
cb:b8:ff:9a:b7:8e:31:17:18:7c:25:d9:a0:fe:05:
72:d5:6e:25:4b:0b:87:ff:33:5a:24:53:ff:a3:fa:
ad:89:a7:81:fe:49:6d:b8:60:ca:d3:d8:cb:f4:c1:
84:61:3b:b8:5f:5e:02:d6:f7:f5:7a:7a:c3:7b:48:
ab:a4:f2:df:c5:14:23:08:b1:95:8b:26:d7:5a:9a:
92:51:1c:97:75:6a:8c:f0:4d:7b:bc:b1:fc:4f:1d:
36:76:b3:d4:55:44:e2:59:9e:05:36:72:fe:f0:05:
ea:62:0f:f2:d4:97:ac:65:1a:3d:0d:9f:64:ee:5e:
42:18:ad:f8:88:77:15:e9:bf:c1:0b:5b:da:de:aa:
9c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:0D:BA:D3:90:DE:38:1D:C7:71:C6:B1:C3:46:E9:40:2A:A9:BC:7D
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/HA2605DeOB3Hccaxw0bpQCqpvH0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.0.0/19
Signature Algorithm: sha256WithRSAEncryption
a3:e8:45:52:ea:0b:4c:d2:2f:48:ad:2d:7a:2e:22:95:de:70:
17:f2:99:7d:13:95:59:d9:69:0e:9a:34:ed:4b:12:30:71:ea:
0d:fe:d9:a7:b4:24:47:2d:fe:21:56:e9:a7:61:2a:2f:9e:f5:
38:2f:22:e2:58:ec:fd:2d:3a:05:22:f6:72:49:e2:ab:cb:d6:
20:42:73:73:1b:6a:d1:d3:8c:91:f9:6a:73:6e:25:ea:6a:cb:
d1:2c:29:0d:45:04:bd:8c:d5:cc:74:a7:15:74:6e:29:05:4b:
87:60:b5:2d:8b:5f:83:c5:2f:f5:f6:b9:fd:97:44:21:2b:ed:
24:62:5c:5a:8d:57:da:a8:ae:e6:14:60:a7:40:d0:57:5c:a7:
8f:2e:24:ee:23:99:74:2e:77:01:89:1a:da:eb:10:5d:1b:ce:
9b:fd:06:b0:9d:5a:79:79:55:4b:7c:55:33:a1:53:87:97:a1:
4a:fb:fc:cf:23:e4:98:af:12:2f:d5:19:20:66:36:74:e3:42:
cd:a2:ae:eb:e7:a5:b3:b4:75:f6:15:8d:62:99:59:c2:97:25:
87:9f:f7:89:27:12:69:f0:e7:a7:33:ab:48:ea:1d:d0:92:74:
e4:ef:39:70:3c:fb:4a:b9:73:f9:ed:70:7c:83:ae:59:ae:00:
e7:bc:5f:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org