Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/KVj34m7w1R7ox_yrN6r1hl0J5dM.roa
File: KVj34m7w1R7ox_yrN6r1hl0J5dM.roa (raw, json)
Hash identifier: rf0QRzSxF8NBpJUrtz80IXrAccHMaL0WWIWEomhOa1A=
Subject key identifier: 29:58:F7:E2:6E:F0:D5:1E:E8:C7:FC:AB:37:AA:F5:86:5D:09:E5:D3
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0CB9
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KVj34m7w1R7ox_yrN6r1hl0J5dM.roa
Signing time: Wed 26 Apr 2023 06:12:03 +0000
ROA not before: Wed 26 Apr 2023 06:12:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 182.155.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3257 (0xcb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 06:12:03 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2958F7E26EF0D51EE8C7FCAB37AAF5865D09E5D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a7:e8:03:03:36:2f:19:e3:62:b3:2d:a3:94:
de:a2:b9:0d:b9:3c:1c:e9:ab:6b:c4:e7:44:9a:6b:
21:8a:6a:85:54:40:93:2d:c9:ef:b6:c3:c4:76:e5:
5d:7c:81:a3:42:f3:6f:e7:a8:48:78:23:a6:01:bd:
50:b1:c8:41:39:d4:d5:99:2e:f7:e7:e6:47:e0:ff:
ad:a3:7d:7a:79:2a:17:41:e9:74:38:77:92:97:5b:
c3:c4:ee:d5:56:8a:8c:eb:5b:95:c9:07:3d:b1:e3:
d1:93:28:4b:4f:24:77:b7:8c:a2:0d:70:50:3d:29:
1c:a1:1e:fb:cf:c7:92:c2:20:d2:c7:aa:b6:d2:d2:
ab:d2:1b:ef:d2:c7:02:f9:d6:02:cc:e5:d5:7d:e8:
2e:00:1d:ed:79:14:3c:e2:ae:83:f2:5e:b3:28:2b:
05:b5:d4:7d:f5:0a:d4:df:1f:07:f2:9e:5d:e8:17:
32:e8:5b:da:bd:72:a7:06:91:66:fb:7d:7a:56:a5:
14:5d:8a:5c:bc:9c:c1:53:b7:73:34:12:3a:43:76:
ff:8b:35:53:e9:5e:50:1f:63:35:47:d8:cd:80:26:
9d:51:cf:19:e1:f2:48:40:63:77:69:1d:20:98:70:
14:db:55:55:cc:07:94:86:30:35:dd:ec:ba:dd:1d:
07:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:58:F7:E2:6E:F0:D5:1E:E8:C7:FC:AB:37:AA:F5:86:5D:09:E5:D3
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KVj34m7w1R7ox_yrN6r1hl0J5dM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.0.0/17
Signature Algorithm: sha256WithRSAEncryption
33:65:98:a1:0c:5a:d2:eb:06:3c:45:e7:b8:23:4a:85:e2:b7:
e2:50:a3:1e:57:49:d2:e1:21:0f:d1:b4:fd:0b:c8:60:6a:f1:
9c:c8:d8:23:ca:ef:a2:ec:e3:36:da:30:71:4c:bb:9a:a6:1c:
4f:d3:76:ce:53:37:fc:76:8d:7a:bb:ad:f7:aa:e0:28:6c:c8:
65:37:91:ad:cb:8e:be:24:7a:d5:92:dc:bf:5d:25:3a:14:77:
89:5b:8b:d2:35:06:87:20:f3:a1:f9:1e:8c:85:67:75:88:91:
93:cc:cb:be:b9:cc:db:32:06:b7:f3:94:8e:94:0d:1b:fa:2e:
83:29:17:9d:b9:0a:f9:ae:11:40:70:01:14:9d:14:78:ad:e1:
42:5b:f3:9e:c6:9d:97:09:34:3d:d0:4b:e1:df:c9:30:97:cb:
3e:3a:1f:36:3b:fe:7b:56:92:70:4c:3d:0c:f9:c2:9e:89:ec:
ef:03:4a:c0:d9:08:28:8b:0e:12:1d:b1:f8:c7:31:cf:0b:a0:
fc:ad:20:01:18:9e:c7:9b:30:04:5c:f2:d5:50:24:24:d0:3a:
7a:c0:dd:20:4a:af:7d:c7:35:ac:60:92:24:f4:5e:88:05:4e:
93:c1:4a:07:cc:e0:0b:00:c9:2b:41:0e:1c:3b:c9:bb:05:c5:
f4:cc:be:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org