Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/Lv2eQyl0qAPwL2ungP5wTv0mu_0.roa
File: Lv2eQyl0qAPwL2ungP5wTv0mu_0.roa (raw, json)
Hash identifier: GBR0Kdu5yTsUuAu4bcfwn5UNrjdIv1UfdGP7DF5sWu0=
Subject key identifier: 2E:FD:9E:43:29:74:A8:03:F0:2F:6B:A7:80:FE:70:4E:FD:26:BB:FD
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0CFC
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Lv2eQyl0qAPwL2ungP5wTv0mu_0.roa
Signing time: Wed 26 Apr 2023 10:31:25 +0000
ROA not before: Wed 26 Apr 2023 10:31:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 182.155.96.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3324 (0xcfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:25 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2EFD9E432974A803F02F6BA780FE704EFD26BBFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:93:6d:7e:2b:07:f7:5b:9b:4a:00:d3:51:7d:
b9:fa:2b:63:2d:35:89:71:b5:73:ec:57:7a:fe:52:
6f:95:88:14:fd:83:85:b5:b2:d0:04:2c:e4:62:f8:
8b:b4:32:9c:de:dd:d1:75:97:60:b6:91:4b:fa:06:
28:d0:63:b2:84:6d:95:96:eb:8b:cf:fa:ab:3c:86:
64:c3:cf:c2:6c:d2:a7:3b:fa:5e:2f:7d:1e:b4:80:
25:72:cc:44:1d:62:64:7a:a2:7d:bf:58:f0:1f:72:
0e:65:4b:c9:ef:8d:eb:d2:d1:4a:17:5d:64:5e:eb:
93:02:60:03:61:01:46:27:48:7a:a6:79:da:90:12:
1b:f8:d9:52:3b:38:d0:a2:61:60:59:6a:7d:03:8f:
1f:26:51:d2:43:89:3c:af:d4:e9:b3:67:4b:d4:7c:
83:59:77:a7:c4:bf:cd:cc:b2:3a:5f:3c:30:72:20:
f0:60:21:75:93:cc:e8:86:8e:c6:f4:46:04:ee:1c:
d1:12:6c:c2:28:f1:37:61:b5:1e:cc:ac:55:ba:be:
f3:04:0f:d1:7f:fa:28:95:c3:5d:2c:d5:56:dd:7b:
11:91:f7:85:4e:cb:0a:f4:a0:4c:bc:21:b1:c4:d6:
4f:5c:b0:58:4d:e6:eb:30:dc:f1:75:16:8e:95:b2:
4e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:FD:9E:43:29:74:A8:03:F0:2F:6B:A7:80:FE:70:4E:FD:26:BB:FD
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Lv2eQyl0qAPwL2ungP5wTv0mu_0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.96.0/19
Signature Algorithm: sha256WithRSAEncryption
4a:95:a5:22:3c:03:da:a5:4d:58:67:f4:8a:7e:3b:5f:00:f4:
a0:e9:c7:d5:56:f8:b8:97:94:3f:ac:26:31:61:fd:cd:23:a8:
c3:06:2c:34:8e:a9:4f:55:0b:88:18:e3:5b:40:36:92:b3:8f:
49:a2:d9:c6:de:28:0c:8d:61:df:96:c8:9c:e2:a7:56:01:b3:
2d:5b:19:d6:e0:d2:df:aa:aa:6e:39:21:ac:30:9e:6e:5c:f3:
9d:b5:ea:30:f1:d3:0c:71:c0:2b:8e:a5:94:61:74:ea:cb:6a:
69:c4:c4:b2:bb:59:11:60:44:88:39:55:52:76:cc:4a:91:29:
74:36:e9:84:6b:8e:f5:19:f3:5b:2b:38:17:83:0e:1b:5d:14:
79:68:dc:cf:a5:b8:2e:be:38:da:b7:14:6f:0b:f7:b7:0a:20:
f9:4b:0a:d8:b3:90:cd:8b:2a:e0:d2:e3:25:da:35:17:cb:e2:
06:51:7e:8f:93:96:3a:5b:25:90:9b:b5:5d:bf:f2:78:eb:31:
cb:17:17:ba:90:f6:ae:15:81:9c:cb:6c:63:bf:f1:7e:7d:53:
f1:24:92:64:c8:33:2e:ad:3a:92:26:da:6f:ac:b0:fa:16:cb:
ea:de:9b:b2:2c:06:4f:f5:df:1f:2b:9b:00:f5:d2:5b:15:44:
21:32:90:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:53 2025 by rpki-client