Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/eF5ICoAF8HDwwgtzZOlHh9fsZME.roa
File: eF5ICoAF8HDwwgtzZOlHh9fsZME.roa (raw, json)
Hash identifier: fIuJ5Jq+j+3GxGUOsRiq4VeCOQ//BYAtC67dmScye1o=
Subject key identifier: 78:5E:48:0A:80:05:F0:70:F0:C2:0B:73:64:E9:47:87:D7:EC:64:C1
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D27
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/eF5ICoAF8HDwwgtzZOlHh9fsZME.roa
Signing time: Wed 26 Apr 2023 10:31:36 +0000
ROA not before: Wed 26 Apr 2023 10:31:36 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 182.155.64.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3367 (0xd27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:36 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=785E480A8005F070F0C20B7364E94787D7EC64C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:2a:66:2a:d6:5d:2b:49:ad:b6:65:70:46:b5:
00:10:c2:1e:e4:4c:2a:60:b9:28:b9:04:91:53:3a:
d8:52:38:35:75:35:2e:54:c2:f7:63:bf:a7:fe:51:
84:81:85:b7:cb:da:af:58:07:54:69:91:11:4c:21:
f5:fa:e5:86:f6:7e:19:f4:9f:6d:53:fb:86:ec:2f:
3a:c3:4e:18:e3:63:53:bc:23:8b:ec:c6:78:56:2d:
30:8e:43:bc:7f:27:0c:09:db:2a:d0:4f:3d:12:85:
ae:01:d7:d1:96:29:37:35:21:57:df:49:91:01:2e:
6d:e8:f4:b8:8d:82:d6:dd:9e:a4:87:de:14:ef:2d:
13:d7:f0:a1:da:16:14:22:72:75:ae:e8:82:71:44:
30:41:87:05:d4:7e:fd:d6:ca:8b:41:8b:74:1b:0d:
33:ff:f2:be:be:e5:41:bc:40:13:e1:a8:ad:7a:e9:
d7:2b:a2:f5:ac:ee:d0:6b:70:83:34:ee:c6:fb:ac:
7c:26:48:ae:4b:21:27:b0:45:22:d8:8f:63:ba:4a:
5e:de:b5:37:1f:bc:14:78:20:46:7e:0b:24:63:79:
15:89:3f:9f:94:75:52:ba:bd:c2:11:8f:ea:d8:73:
6b:d5:8e:ec:19:a1:48:4e:25:f1:bd:15:96:ce:51:
8b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:5E:48:0A:80:05:F0:70:F0:C2:0B:73:64:E9:47:87:D7:EC:64:C1
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/eF5ICoAF8HDwwgtzZOlHh9fsZME.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.64.0/19
Signature Algorithm: sha256WithRSAEncryption
b5:b3:f1:40:5c:6e:4d:84:65:b5:2f:85:8c:0a:0a:9f:cd:95:
e0:58:c0:7a:81:83:63:2d:ca:b3:9c:1e:f9:f1:cd:92:b2:bb:
12:d5:03:30:fc:c1:5e:5f:81:50:00:84:1c:89:ac:4c:18:5c:
cf:c9:7d:97:1f:29:2d:93:bc:0f:1a:df:80:9d:f3:e1:a3:bb:
19:40:3c:00:10:e7:ab:0d:5a:9b:51:b1:aa:5d:e2:0d:91:a5:
53:f2:6a:40:14:e0:3e:7f:4a:fd:8a:62:3f:45:19:44:a7:a3:
8a:e8:59:1d:97:da:d3:57:10:25:b1:b2:ef:31:08:57:98:32:
7a:ce:db:ea:01:f6:5d:94:49:94:2b:68:24:5f:9b:5d:c6:ec:
d7:04:0b:09:e3:eb:ed:5a:e8:14:28:fd:2d:ab:be:8e:48:94:
ef:f6:ef:ec:53:f4:bb:68:53:f9:17:6e:f9:4a:a2:98:21:44:
e8:08:8c:23:26:28:43:18:8b:59:fe:42:41:88:2b:a4:e7:a9:
6e:79:95:fa:99:44:ef:d3:37:a1:f9:d2:f2:40:89:8a:7f:91:
19:1b:cb:5e:90:6a:2c:97:9f:11:c7:fd:c4:eb:1e:ae:fe:ed:
19:03:4f:26:e6:17:2d:6e:a9:be:b3:66:52:74:25:4e:c9:97:
a1:37:84:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org