Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/g3bemX0-sg1STFoNTE2x92_EYSs.roa
File: g3bemX0-sg1STFoNTE2x92_EYSs.roa (raw, json)
Hash identifier: lWggcU86VCZFlAhorpc1+65emWKu8IeEINDM/OIuTwc=
Subject key identifier: 83:76:DE:99:7D:3E:B2:0D:52:4C:5A:0D:4C:4D:B1:F7:6F:C4:61:2B
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0CBF
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/g3bemX0-sg1STFoNTE2x92_EYSs.roa
Signing time: Wed 26 Apr 2023 06:24:10 +0000
ROA not before: Wed 26 Apr 2023 06:24:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 182.155.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3263 (0xcbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 06:24:10 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8376DE997D3EB20D524C5A0D4C4DB1F76FC4612B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d1:14:e9:fa:43:08:f8:71:13:b7:f4:30:58:
8d:3f:58:5a:b8:50:0a:d5:ed:f6:6c:2c:14:e8:9a:
b5:4f:57:ef:52:6a:91:52:e3:5f:a1:d7:84:2b:c3:
8a:a6:7e:f3:ec:fa:65:32:09:65:ff:5c:88:b4:24:
87:43:06:84:21:2e:53:50:81:30:35:3d:cf:ad:4c:
4a:57:8a:83:ce:b7:b8:bd:2b:35:09:f0:68:8c:0c:
b6:c4:05:ae:a8:8e:e8:91:55:ac:0b:26:6d:74:fa:
05:f1:70:77:34:75:ee:8a:9c:74:37:31:46:c4:6f:
11:a9:7f:fb:37:74:65:e8:75:c4:9a:30:d3:67:c2:
6c:6e:61:49:f5:55:8a:6d:e8:e0:a1:62:b0:b9:8b:
05:7b:cd:a0:d2:20:c6:24:c5:37:97:f0:a4:e5:06:
7e:07:d1:8d:5e:85:fb:bc:99:fd:fa:88:51:57:bf:
78:a5:e6:ea:98:49:e4:50:7f:6e:fe:3c:6d:42:55:
42:b3:73:7c:fa:07:77:9b:82:da:f4:04:f4:60:75:
ce:b2:8e:ce:12:47:95:dc:d7:5e:1e:49:09:53:4b:
a0:c8:3b:6e:f3:01:1c:94:94:f1:be:1f:d2:16:70:
bd:92:da:60:68:9a:7e:f4:e1:41:88:35:37:15:c8:
6a:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:76:DE:99:7D:3E:B2:0D:52:4C:5A:0D:4C:4D:B1:F7:6F:C4:61:2B
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/g3bemX0-sg1STFoNTE2x92_EYSs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.128.0/17
Signature Algorithm: sha256WithRSAEncryption
6c:c9:b2:98:a5:10:59:9e:4b:76:a2:ae:aa:1b:c9:28:87:7b:
da:f5:3c:5b:63:e3:c0:76:96:c4:07:c7:8c:eb:c8:d6:8f:5e:
3f:95:6f:a0:ee:fb:bf:97:54:c2:b0:d2:99:82:4b:8b:ea:79:
e4:97:76:8d:7f:a1:38:a8:62:c9:f9:3d:7b:8b:69:0d:24:c6:
e0:c0:ee:ab:d9:e6:6b:9f:46:53:84:37:06:9a:8d:a8:34:d2:
fd:36:1f:ca:87:88:7f:7d:d1:33:9d:0f:ea:6a:2a:4b:15:ee:
2b:07:4e:ca:44:55:aa:aa:1a:14:ef:05:68:92:be:d8:ee:b4:
62:a7:d9:e4:fb:7e:65:9a:08:d2:d0:f9:48:4f:48:0c:8a:11:
dc:e9:6f:a4:81:6f:f2:62:9a:21:5a:f4:91:0f:26:96:17:a8:
93:24:07:59:8b:21:5d:9f:1a:6a:02:3c:43:a1:09:cf:4a:6b:
34:3c:f5:f9:a6:6c:b3:32:53:b6:a2:21:ed:22:2a:7e:9c:cf:
71:30:1c:be:a5:00:81:87:d5:44:24:35:55:3b:b6:32:77:cf:
db:e2:6b:24:64:87:b9:9f:6a:21:63:fd:2e:dc:de:1a:b5:d6:
ba:d7:89:0f:10:eb:08:ce:ea:e5:66:fb:42:1d:83:ef:b2:34:
1d:16:4d:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:32:06 2025 by rpki-client