Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/VKknOJmm2moylACRuXhkRp8i5L0.roa
File: VKknOJmm2moylACRuXhkRp8i5L0.roa (raw, json)
Hash identifier: q0b8hung9J9wKYroa9l5VTbG+VoaPNADg/7a8CReAXI=
Subject key identifier: 54:A9:27:38:99:A6:DA:6A:32:94:00:91:B9:78:64:46:9F:22:E4:BD
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 08FE
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/VKknOJmm2moylACRuXhkRp8i5L0.roa
Signing time: Tue 24 Nov 2020 03:12:22 +0000
ROA not before: Tue 24 Nov 2020 03:12:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17809
IP address blocks: 182.155.0.0/16 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2302 (0x8fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Nov 24 03:12:22 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=54A9273899A6DA6A32940091B97864469F22E4BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:45:dd:bb:87:4c:00:b8:33:52:03:19:72:b9:
13:ac:5f:24:01:20:23:57:c4:55:b2:a4:ca:ce:bd:
d9:95:1a:25:af:d5:bb:44:f6:51:cb:66:ad:ce:f5:
97:a5:0c:d4:bb:f8:4c:49:08:d3:e5:b8:b6:b8:08:
ba:48:21:58:d3:d8:71:68:56:bc:78:44:58:f0:a2:
53:91:54:41:13:50:e3:1f:67:11:4f:e8:36:86:a5:
85:09:41:ce:db:84:76:3d:1c:57:00:69:68:a5:57:
2e:59:92:4e:c8:f8:e2:3a:27:17:7d:fd:df:75:92:
5d:f7:6d:51:9c:44:40:22:d1:3b:9d:ce:71:56:e0:
41:e0:6e:ec:f7:c0:e8:1b:8d:85:4d:5c:0a:b9:01:
c5:ea:39:47:41:12:c4:cc:a5:e5:ec:9a:9a:da:69:
5a:51:de:1e:78:fe:8d:21:e2:01:12:1c:db:46:91:
87:9e:8b:7e:3a:23:c2:dc:26:08:87:4d:76:12:99:
5b:c9:90:af:9a:a8:0e:8c:78:03:62:db:86:ce:e0:
46:41:b0:4a:b8:ab:5a:81:75:24:64:03:04:57:ad:
9e:8f:b3:40:24:b6:ea:72:0c:7b:9a:57:b0:55:78:
99:b6:fd:21:fe:fe:d2:00:06:20:09:d2:ac:70:c3:
01:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:A9:27:38:99:A6:DA:6A:32:94:00:91:B9:78:64:46:9F:22:E4:BD
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/VKknOJmm2moylACRuXhkRp8i5L0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8b:b7:66:0e:a6:b3:24:7b:50:b9:57:db:b6:13:9a:e0:1e:ce:
a0:29:9e:e9:7e:85:56:ff:30:c9:65:68:cd:0c:76:72:5e:3d:
7f:6d:65:46:87:6c:41:95:e3:fb:71:e4:8f:48:d8:2e:7a:91:
9c:d9:10:5b:52:dd:70:ce:09:d8:ba:53:cf:bb:cf:3a:53:5c:
18:4d:1e:22:7f:93:c1:75:34:cf:ee:a2:5c:a6:15:10:83:04:
20:33:79:64:c7:e4:94:ef:10:54:d0:d8:d6:86:cb:cb:6f:0e:
da:5a:c4:0a:2a:e0:ec:1e:3d:34:40:f1:5c:0e:f0:1b:38:6c:
91:e1:00:ca:52:38:cf:27:57:99:aa:90:1f:8e:23:a1:60:3b:
56:07:6a:bc:ae:70:02:11:2c:b0:1c:7a:12:60:4d:5e:5d:5d:
35:95:e4:e9:98:00:d4:09:de:c0:e8:58:34:8c:4e:ed:f3:be:
92:f1:a0:5a:29:56:80:8c:ce:f3:26:63:0c:fc:b3:5f:e9:6e:
9f:c2:25:26:38:51:06:bd:b8:de:66:ec:f7:31:5b:09:3c:72:
93:11:3b:05:62:ee:95:84:65:26:70:33:60:5a:cf:4f:20:34:
ff:ed:65:2f:63:35:9a:6f:40:6c:80:b9:63:86:7a:5c:c2:e7:
4e:4c:09:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:53 2023 by rpki-client on console-ams.rpki-client.org