Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/JQo54mbOduipne5pKEEuKVQSi2w.roa
File: JQo54mbOduipne5pKEEuKVQSi2w.roa (raw, json)
Hash identifier: X6RpKyx7GId0h25o3oRT2VP8QoOLsBVdW1ZhEILoFtM=
Subject key identifier: 25:0A:39:E2:66:CE:76:E8:A9:9D:EE:69:28:41:2E:29:54:12:8B:6C
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0BFC
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/JQo54mbOduipne5pKEEuKVQSi2w.roa
Signing time: Thu 15 Sep 2022 02:37:28 +0000
ROA not before: Thu 15 Sep 2022 02:37:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 182.155.32.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3068 (0xbfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 15 02:37:28 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=250A39E266CE76E8A99DEE6928412E2954128B6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:35:ec:84:1b:5f:c7:d3:c5:be:b6:9c:bd:51:
5d:70:05:a9:c6:73:c3:2c:0c:19:6d:b9:2c:b6:c1:
d0:ad:f6:2e:93:90:cc:e0:ae:33:c9:fa:52:38:a3:
82:33:ae:bb:1a:26:a1:7f:1b:03:ed:b4:63:f1:d8:
64:ee:6a:18:d6:b5:85:b2:77:e0:16:14:6c:a7:d5:
3e:19:d7:01:10:e8:ac:8c:69:94:01:46:19:fa:0e:
42:44:da:34:7b:27:ae:da:51:d3:60:df:8e:c8:4a:
84:8e:59:62:ae:d9:35:7c:e2:e6:b6:00:cc:75:62:
df:fe:08:f9:bb:13:2e:42:06:d5:e7:d2:f5:a9:8c:
dd:6d:5e:8e:e8:1d:ad:56:b0:f3:e1:c8:9a:94:ba:
87:20:65:a6:0f:e3:24:44:9a:54:63:fd:66:d9:be:
9d:aa:34:8c:89:c8:37:21:e7:ab:e0:de:87:ea:91:
7f:8d:1d:d5:5e:81:ef:17:e4:3b:89:fe:bb:02:76:
38:12:bd:7c:91:bc:e5:1c:78:0c:b6:c7:07:07:e8:
33:fb:27:2f:50:15:f2:42:a1:1c:46:06:26:5a:c6:
2e:3b:6e:ad:f5:59:c8:90:d0:12:4c:9a:83:14:68:
34:21:ff:a5:42:d8:90:aa:7b:00:9f:50:a0:01:1a:
1f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:0A:39:E2:66:CE:76:E8:A9:9D:EE:69:28:41:2E:29:54:12:8B:6C
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/JQo54mbOduipne5pKEEuKVQSi2w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.32.0/19
Signature Algorithm: sha256WithRSAEncryption
15:c0:40:c4:7b:21:29:3e:31:c0:63:d1:b1:4e:93:f4:78:91:
61:f1:cf:65:2b:9d:5b:95:c2:97:ed:3e:1d:f5:2f:d7:44:65:
de:34:b7:37:5b:5a:6f:81:77:65:db:03:6f:93:8c:d0:a3:d3:
ee:c4:03:ad:d8:c1:b2:02:88:2a:36:8a:33:d4:fe:c3:c1:b3:
a7:e7:c2:61:40:32:4d:6a:48:13:e5:77:ed:4c:7e:4f:1b:d7:
6b:08:24:40:f9:42:cd:09:1b:25:4a:77:3a:68:2f:67:5b:74:
ed:4e:03:48:fe:8e:02:68:ee:9c:e1:97:84:53:38:66:91:cb:
95:a2:ef:d9:c1:86:a7:7b:ed:c3:56:54:c1:0e:0d:17:99:0e:
10:5d:ad:c4:99:78:f5:da:16:85:d4:fc:64:bf:a9:39:43:82:
60:1f:65:d1:01:44:08:e2:24:b2:34:c3:25:51:91:7e:bd:ec:
9c:ae:48:2c:e5:69:0b:61:ba:54:d1:5e:30:03:99:a2:5d:d1:
97:5b:a2:30:c3:12:0c:b8:d7:3f:0e:54:31:16:c1:75:90:97:
eb:a7:86:9b:04:a4:f1:d3:7a:ee:0f:14:39:ae:eb:97:28:f1:
eb:89:5e:82:92:71:8e:8b:09:42:68:63:3f:42:98:2c:51:49:
89:27:b1:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org