Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/IuJA9-5liZvQUgP9fQKFMnxTAEg.roa
File: IuJA9-5liZvQUgP9fQKFMnxTAEg.roa (raw, json)
Hash identifier: 05DDuyJnJIuqY9UtB+KCT1yG4BoA86+Bv2bTcT/j7dA=
Subject key identifier: 22:E2:40:F7:EE:65:89:9B:D0:52:03:FD:7D:02:85:32:7C:53:00:48
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D04
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/IuJA9-5liZvQUgP9fQKFMnxTAEg.roa
Signing time: Wed 26 Apr 2023 10:31:27 +0000
ROA not before: Wed 26 Apr 2023 10:31:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 182.155.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3332 (0xd04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:27 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=22E240F7EE65899BD05203FD7D0285327C530048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:b9:ac:3c:29:f1:09:a6:f7:bb:2d:04:73:ec:
64:ac:ad:57:22:d2:a6:a1:d7:98:9f:cb:01:d1:23:
a7:53:4b:33:87:8f:36:80:3d:58:ad:da:c8:1d:ce:
2c:b4:97:88:05:9a:e8:63:dc:31:ae:11:1f:f7:34:
e3:fa:fb:04:e8:34:01:35:2d:ae:0b:0f:76:9f:9d:
73:68:3f:4c:64:35:16:24:1d:59:1c:b0:d2:9d:91:
45:44:7b:d7:42:41:4d:f0:a5:2a:0d:5c:8b:fb:76:
f1:08:dc:fe:1d:4f:01:c9:b9:1e:3c:37:01:d2:ab:
d1:2a:b3:f4:f6:e7:db:36:20:c9:72:96:7d:60:17:
4b:e4:3f:27:37:27:1c:c2:df:5b:97:47:72:26:47:
65:25:64:c9:85:45:32:5e:88:2b:d5:25:2f:1f:6f:
7a:54:30:a9:6b:20:a1:7f:6d:a1:e5:6d:00:02:90:
4c:d8:0c:f3:7f:1b:93:ff:34:6a:0b:33:5a:f4:34:
10:2b:79:61:80:32:97:47:64:7c:f9:27:0a:eb:f2:
d3:99:a5:5d:77:9e:52:38:db:a0:28:05:1e:45:99:
8f:ed:9f:f3:31:10:dc:90:e4:58:68:44:36:c7:29:
06:48:ec:08:a4:ad:f9:61:7e:27:8c:f0:1d:ec:dc:
45:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:E2:40:F7:EE:65:89:9B:D0:52:03:FD:7D:02:85:32:7C:53:00:48
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/IuJA9-5liZvQUgP9fQKFMnxTAEg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.128.0/17
Signature Algorithm: sha256WithRSAEncryption
8a:be:2d:4d:2c:8f:48:b9:5c:15:4e:41:9e:01:3a:a6:03:eb:
ee:f5:ad:35:40:38:78:95:9c:91:94:39:9f:e4:9d:49:34:e4:
d9:bc:84:e1:46:e1:a9:55:8c:26:d4:6c:69:94:11:06:45:e9:
78:dd:e8:6c:fa:53:e3:d0:fe:ba:7a:5e:b6:65:61:6a:8f:60:
16:b8:43:62:b7:a5:ea:93:17:46:14:35:b4:c4:0a:9b:79:43:
f3:43:85:0f:3e:e2:ec:dd:de:84:64:b6:75:a3:9d:0b:af:9e:
8d:8e:cd:12:cb:8d:0b:8e:e9:7a:d0:ff:2f:c1:f4:ae:6e:e1:
5f:95:ad:7b:84:ef:0f:51:4e:8a:3d:bc:bb:90:3d:ab:04:52:
21:13:b7:62:89:1b:fc:76:ce:b1:b5:a0:94:48:cf:f9:c5:44:
9e:47:ee:3a:9b:e2:7d:19:60:cc:d4:fe:80:c7:71:a8:79:49:
4a:7c:03:a6:0c:e1:b1:b5:fb:c3:6a:d2:70:f5:71:3c:fc:fe:
e7:d6:0f:dc:4b:4d:73:84:81:ad:85:1b:fc:8a:b9:3e:7e:e2:
b1:0e:55:ea:1c:12:c3:14:19:3c:cf:bc:98:71:c9:7d:e6:ee:
cc:58:6d:bd:05:2a:73:33:6c:4d:0b:58:0f:92:54:a9:86:4a:
29:ef:16:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org