Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/iojgCYyX195ml1MuLLZpi6dflhM.roa
File: iojgCYyX195ml1MuLLZpi6dflhM.roa (raw, json)
Hash identifier: qZ7gFxliXGmdqL95PxZSl0UYRuyEX9+GLo/LY5tr0A0=
Subject key identifier: 8A:88:E0:09:8C:97:D7:DE:66:97:53:2E:2C:B6:69:8B:A7:5F:96:13
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E53
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/iojgCYyX195ml1MuLLZpi6dflhM.roa
Signing time: Fri 01 Sep 2023 08:49:34 +0000
ROA not before: Fri 01 Sep 2023 08:49:34 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 182.155.64.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3667 (0xe53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:34 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8A88E0098C97D7DE6697532E2CB6698BA75F9613
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:46:62:0a:51:e3:78:ac:05:ac:a9:b1:33:59:
1d:a8:63:d4:4d:44:73:ca:bb:16:4b:0e:47:95:86:
84:2b:63:55:63:dc:95:90:78:56:a7:fb:bd:68:ee:
cc:69:43:0e:33:34:0c:e8:e0:ec:b7:5e:b3:c3:3f:
38:32:41:ce:05:9d:38:82:c4:19:96:46:5a:ce:44:
77:73:ec:3e:1c:14:71:3d:fe:3c:87:03:43:07:e8:
21:80:c5:db:92:08:af:4a:18:5b:a8:9f:1b:c9:c9:
49:30:fc:d0:de:0e:c9:62:c5:a9:47:e1:cd:2f:39:
47:fc:24:67:33:c6:d5:60:65:41:ff:f6:d9:69:9f:
d8:ed:e6:ed:64:b3:0d:05:ac:80:90:d4:47:74:94:
5a:3a:48:c5:19:53:e1:a5:e4:ad:ba:85:b7:17:6c:
8e:0e:3e:d0:77:fa:de:53:c4:8e:70:af:6b:ec:97:
49:9c:06:4b:2b:9e:8e:7d:e8:a6:e5:75:fb:4e:52:
20:84:35:10:d9:ec:92:d8:6d:07:81:6d:2f:ea:c3:
67:58:f0:e3:b8:43:6b:19:0e:43:86:64:b2:ad:09:
c8:1c:7d:33:ec:c4:59:9f:cc:2b:62:32:cb:3e:e6:
db:49:20:d6:12:b4:9c:72:4f:bc:dd:28:7a:07:3d:
66:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:88:E0:09:8C:97:D7:DE:66:97:53:2E:2C:B6:69:8B:A7:5F:96:13
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/iojgCYyX195ml1MuLLZpi6dflhM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.64.0/19
Signature Algorithm: sha256WithRSAEncryption
ad:1a:02:66:29:4b:35:69:d3:6e:57:b7:90:bc:80:eb:43:59:
63:c9:7f:1a:f4:8f:49:90:4a:20:ce:b9:85:1e:c7:34:72:45:
bb:16:61:46:4a:3d:ff:1d:08:65:9a:03:61:92:42:8b:5c:2e:
58:52:fe:58:d4:f7:ba:c3:d0:af:9a:0a:27:3e:1d:b3:be:90:
50:70:77:bf:db:62:c6:76:8c:2a:13:08:8f:a8:9d:e6:41:9a:
05:a4:e2:08:9f:81:3a:6c:71:05:30:6c:f1:79:ea:d3:7f:7a:
0f:4b:73:42:4a:88:01:b5:b1:43:64:b5:42:41:26:8c:30:02:
6e:7e:50:83:f5:7f:52:1b:89:86:8f:6a:79:71:5a:0e:cf:fc:
8e:e9:82:9d:64:6e:7e:ca:e5:84:82:8c:b5:02:e1:65:69:15:
de:92:07:b5:f1:f1:32:27:ee:cf:75:6c:9b:a0:61:9a:95:d6:
e3:ef:3c:87:6b:ac:de:03:f8:bc:5e:de:c9:3c:69:33:a8:bb:
84:93:8c:c7:06:00:0b:6c:39:79:cf:78:ee:f2:29:4c:03:a3:
cb:1d:65:90:bc:e7:06:d9:1d:d5:97:0d:d3:85:b2:ee:74:06:
3a:8e:6f:89:52:f3:4d:f2:1b:b1:7d:44:2e:26:db:4e:1d:7b:
3e:1c:a5:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:31:12 2025 by rpki-client