Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/lhRvhX1NjkkMEqnUfUbnrVoHFzI.roa
File: lhRvhX1NjkkMEqnUfUbnrVoHFzI.roa (raw, json)
Hash identifier: ZKtZzP86cTuNla/Ug0mLqSDTWtJN2zKUfYXROSawaGo=
Subject key identifier: 96:14:6F:85:7D:4D:8E:49:0C:12:A9:D4:7D:46:E7:AD:5A:07:17:32
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0BFC
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/lhRvhX1NjkkMEqnUfUbnrVoHFzI.roa
Signing time: Thu 15 Sep 2022 02:37:31 +0000
ROA not before: Thu 15 Sep 2022 02:37:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 182.155.96.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3068 (0xbfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 15 02:37:31 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=96146F857D4D8E490C12A9D47D46E7AD5A071732
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f0:ff:d5:30:c5:66:21:cf:c8:2e:1b:d2:6c:
f6:bc:4c:55:2f:39:05:0c:8a:98:9f:49:c3:1d:d3:
60:a5:a9:71:0d:f0:aa:1f:97:74:35:78:53:b5:f0:
ba:76:61:51:a5:b9:1d:8d:b2:2e:aa:c6:0a:fd:61:
73:10:f9:71:81:7d:03:83:06:65:31:5e:9f:a6:43:
67:b5:eb:e3:f0:7d:af:a9:87:61:f2:c1:5c:23:47:
69:ac:a9:33:a5:de:9d:eb:7b:5f:22:77:98:a0:1d:
7e:3b:9f:75:3f:ba:cc:45:87:2b:b8:a0:e7:a5:e1:
85:35:62:5b:0d:2c:38:cd:6c:fa:fa:af:af:30:97:
e9:6c:21:54:17:ae:b7:e4:8b:39:39:cb:a9:46:1c:
58:34:90:39:33:c1:9c:d1:ac:37:74:e9:b0:c5:81:
ff:78:44:e3:2e:3e:44:0a:fb:e5:1e:01:99:72:64:
d1:ef:ae:95:9a:36:9d:1e:9d:d5:46:e6:49:b6:66:
c1:35:49:71:a1:67:8c:a8:26:86:a1:87:30:88:72:
b0:04:f0:ea:a5:b5:74:56:12:4a:35:a6:93:70:01:
0e:7e:2a:ac:c8:d3:bd:d4:4e:8f:df:a8:ab:e8:8e:
4c:95:39:3c:f4:7c:f2:9e:93:ba:5b:41:c1:c0:76:
24:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:14:6F:85:7D:4D:8E:49:0C:12:A9:D4:7D:46:E7:AD:5A:07:17:32
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/lhRvhX1NjkkMEqnUfUbnrVoHFzI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.96.0/19
Signature Algorithm: sha256WithRSAEncryption
1e:28:00:f3:ae:cb:d6:e3:3d:d0:c1:a4:85:24:11:ca:2e:15:
d2:1c:37:49:d4:d1:97:2f:fd:2f:f9:3d:09:fa:5e:be:30:2c:
0d:b1:6e:5d:8b:18:6e:a7:b3:b5:e2:39:fd:3f:f9:1d:2b:80:
ff:4a:2f:55:8a:f5:4a:14:f8:1f:dd:50:a0:a9:e1:73:d4:13:
93:04:96:41:4b:48:0a:1f:cf:67:cd:3c:f8:6f:85:a5:8a:47:
90:1e:e2:78:fc:4d:ae:4e:84:e0:8f:75:2e:2b:85:9b:1d:82:
76:d2:7c:f7:61:08:f0:d3:88:c5:e9:34:95:6c:7a:cc:bf:cd:
2a:3a:9b:60:12:37:1b:5b:fe:a9:01:6a:9f:a3:fd:0f:5b:94:
44:8f:6b:f5:cd:f6:31:94:43:2d:54:46:f1:3c:ac:df:f1:dd:
43:aa:48:27:19:9e:68:d7:00:ea:e8:1a:0a:f1:87:ee:8c:4e:
e9:47:11:fd:bc:4b:fd:10:6f:1d:33:6e:d7:5f:0f:32:b6:23:
43:e5:f2:7f:4b:cd:61:33:25:85:2b:c9:69:d1:e7:1e:dc:b9:
a1:7e:81:ae:2e:28:27:dc:48:7e:e9:57:b4:a1:92:62:6c:65:
3a:b7:a8:e3:3a:0c:58:c3:06:7a:3b:d6:7f:cf:ec:ab:3c:64:
3a:7e:d1:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:33:01 2025 by rpki-client