Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/WH-iiO1imGuwsaN5r8nLWZAd50c.roa
File: WH-iiO1imGuwsaN5r8nLWZAd50c.roa (raw, json)
Hash identifier: etZogFoC7jRLOr9Zgo9ATLEhg3TOEpG1I3RndeaSC7I=
Subject key identifier: 58:7F:A2:88:ED:62:98:6B:B0:B1:A3:79:AF:C9:CB:59:90:1D:E7:47
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E6B
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/WH-iiO1imGuwsaN5r8nLWZAd50c.roa
Signing time: Fri 01 Sep 2023 08:49:40 +0000
ROA not before: Fri 01 Sep 2023 08:49:40 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 182.155.160.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3691 (0xe6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:40 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=587FA288ED62986BB0B1A379AFC9CB59901DE747
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:08:04:c4:10:bc:b3:7d:28:74:68:74:3b:48:
8b:61:82:b3:1a:d3:93:1c:03:f8:d1:aa:f3:69:6a:
f4:78:cc:17:a4:03:05:de:b1:d9:5b:e0:cf:26:97:
0e:21:e7:96:a4:45:a2:41:5d:07:c6:90:36:47:6f:
71:64:9b:54:56:d3:a4:8e:26:aa:90:cb:7b:06:df:
02:3e:b2:e5:95:3f:65:45:7f:00:0b:be:ff:73:c7:
41:ad:be:bd:23:b4:4a:92:21:72:75:31:88:1f:d1:
8a:3c:0c:f5:4e:e7:30:6a:86:78:61:44:9e:b7:ef:
54:f9:9a:cb:68:e5:85:20:85:74:87:a4:66:cf:6a:
ea:29:a1:62:72:27:94:c3:35:a3:64:d0:01:82:39:
da:3b:1c:77:a6:5a:07:6a:1a:69:52:97:52:b1:9c:
eb:fd:d1:cb:b1:8b:e4:0b:ff:71:64:63:27:c3:f9:
5b:ea:ab:d7:2f:11:d4:c2:eb:e7:d2:3d:8f:ed:57:
90:ac:ba:07:96:39:5f:7b:c2:10:b6:db:ce:66:39:
56:fd:f4:ad:e3:bb:64:41:8f:41:7a:3a:d6:38:bb:
a2:4a:40:45:05:79:3f:17:3f:01:89:cc:c4:d3:d7:
b3:a7:96:1e:4a:54:c8:17:c0:14:4d:1d:11:cf:db:
ff:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:7F:A2:88:ED:62:98:6B:B0:B1:A3:79:AF:C9:CB:59:90:1D:E7:47
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/WH-iiO1imGuwsaN5r8nLWZAd50c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.160.0/19
Signature Algorithm: sha256WithRSAEncryption
7a:2f:b3:8d:6c:66:56:8e:1d:a2:39:aa:f3:50:66:5b:6d:5e:
c1:af:89:75:5e:38:bf:f2:5a:7f:9c:87:66:13:65:f8:c4:09:
60:cf:c7:83:72:66:3a:c7:d6:48:d6:e0:72:ef:8c:e4:8f:21:
d9:98:1a:75:a8:e8:cf:b0:bf:dc:1f:6d:19:1f:f7:9b:c0:68:
a2:4b:e4:0e:56:f8:3a:be:ff:97:f6:74:54:d6:cd:a6:4c:7f:
68:2e:7c:75:90:ef:b9:11:7a:e1:33:e5:1e:e6:af:cb:68:d7:
e0:25:6f:72:92:71:27:a9:81:94:25:d6:68:31:f1:e2:8d:bf:
77:90:51:d5:34:1b:fd:cd:52:17:58:0b:4d:5b:4a:b6:5b:11:
4a:40:89:e9:d0:f6:c6:47:08:1c:8a:54:98:69:6a:89:b7:48:
17:9c:76:0a:32:8c:71:84:c8:da:85:19:22:4d:ae:ae:28:a1:
5b:88:cb:3e:8f:5d:50:26:a8:ca:c5:f8:aa:9e:96:99:2c:2f:
96:92:14:37:df:7d:d4:72:fa:a1:1c:f2:2f:02:fa:e6:37:26:
28:5d:4b:45:7a:ec:8d:f4:83:36:02:26:f4:d5:ae:e4:be:f9:
69:d9:1e:e4:01:5a:72:65:50:d0:79:50:59:1f:f1:0d:2e:1e:
fd:1c:c2:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:19 2025 by rpki-client