Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/PeBB085HBZz5H_thMjrOcBgs2UE.roa
File: PeBB085HBZz5H_thMjrOcBgs2UE.roa (raw, json)
Hash identifier: +xrcn+FuNIXFadGjRJZcwbMr3Bu1+3SLVTfrnwgYjxQ=
Subject key identifier: 3D:E0:41:D3:CE:47:05:9C:F9:1F:FB:61:32:3A:CE:70:18:2C:D9:41
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E1E
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/PeBB085HBZz5H_thMjrOcBgs2UE.roa
Signing time: Fri 01 Sep 2023 08:49:18 +0000
ROA not before: Fri 01 Sep 2023 08:49:18 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 182.155.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3614 (0xe1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:18 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=3DE041D3CE47059CF91FFB61323ACE70182CD941
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:73:37:b4:1b:ab:4e:2f:96:50:c0:86:c4:cf:
86:a8:eb:55:2c:a9:3c:d5:c3:f7:62:e6:02:7b:c8:
ab:6c:3e:d7:9d:15:e2:52:05:24:35:d6:f8:38:62:
59:1d:f0:d7:43:55:40:a5:fa:30:ba:4c:de:25:80:
35:f7:d3:30:88:b4:1b:20:02:b0:08:2d:3e:78:81:
81:4a:c6:13:4a:56:4d:81:74:75:68:a5:c7:32:d5:
e3:b2:0f:2e:5c:8e:e0:c9:3e:f3:f5:72:02:87:8c:
a2:3a:9a:89:d6:63:da:ac:4f:ea:e1:5d:8c:26:ba:
1e:fa:4e:5d:5b:63:18:ea:cf:ce:48:55:9b:7a:88:
ab:da:ba:04:ff:d6:79:a7:32:2d:23:3d:bf:85:e2:
b5:79:1d:14:99:c5:1a:9d:f7:cf:9c:86:41:e5:a5:
2a:0a:e1:3a:bd:b8:4f:d0:aa:10:c0:dc:04:47:4d:
4c:73:89:84:84:58:0e:e9:84:84:ff:c0:4f:13:cd:
8a:ca:96:8b:3a:e2:06:9b:70:e9:42:52:91:2b:4e:
5c:da:91:0b:49:67:84:95:ab:99:06:85:4c:d5:aa:
47:45:02:bf:c0:35:d8:0e:34:bb:8e:51:ed:44:ef:
9a:15:59:c5:cf:92:72:de:46:7a:09:eb:cf:85:79:
3f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:E0:41:D3:CE:47:05:9C:F9:1F:FB:61:32:3A:CE:70:18:2C:D9:41
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/PeBB085HBZz5H_thMjrOcBgs2UE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.0.0/17
Signature Algorithm: sha256WithRSAEncryption
22:c3:9c:4d:30:d3:21:52:5a:f2:b4:92:77:40:ae:9a:7c:26:
c5:87:17:15:88:83:4a:0d:73:aa:86:96:b7:0b:7a:a9:11:25:
99:58:0b:96:53:60:14:3c:52:48:95:7a:9a:70:61:db:15:4e:
51:5d:56:5d:88:3c:89:dc:b6:45:53:e7:06:9b:7a:40:1f:cc:
6d:b1:3c:c1:dd:c4:69:b5:a6:3d:d8:56:df:79:da:b6:7a:38:
94:36:bc:e1:18:89:d2:73:1c:87:ae:6f:09:13:6b:78:df:49:
3a:1f:f1:71:61:f9:65:c9:a3:a4:74:15:42:6b:b3:f0:dd:2f:
d4:c3:3b:a8:23:f3:63:b0:fc:7f:71:a8:62:1c:9d:d8:07:0c:
fb:7f:2a:77:a5:2d:7a:cc:63:5a:4b:db:aa:b1:5a:f9:74:d7:
ef:c1:c1:a7:a9:f4:26:71:18:32:e4:30:ae:b0:17:55:39:73:
97:85:ed:ce:62:5d:35:18:13:80:9a:53:93:8b:69:2d:47:89:
cf:35:ea:64:10:6f:c4:0e:35:67:c0:4d:a8:84:ad:22:a5:26:
37:4d:ae:c1:e6:8d:11:f9:e3:e7:78:dc:7c:f8:74:94:77:66:
9f:69:00:57:4e:a9:6d:a7:c0:33:5c:81:8d:a7:5f:65:1a:5e:
fb:3d:46:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:51 2025 by rpki-client