Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/nnayxBok8aSRcyAfLxBSSOE3zQY.roa
File: nnayxBok8aSRcyAfLxBSSOE3zQY.roa (raw, json)
Hash identifier: qz5I71Ca2b7DXGO9F47zGp8ibrTfRUVOm+uIo6+qnLg=
Subject key identifier: 9E:76:B2:C4:1A:24:F1:A4:91:73:20:1F:2F:10:52:48:E1:37:CD:06
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0968
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/nnayxBok8aSRcyAfLxBSSOE3zQY.roa
Signing time: Thu 21 Jan 2021 10:20:37 +0000
ROA not before: Thu 21 Jan 2021 10:20:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17809
IP address blocks: 182.155.0.0/16 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2408 (0x968)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Jan 21 10:20:37 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9E76B2C41A24F1A49173201F2F105248E137CD06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:31:17:6d:ba:67:ff:77:86:04:a7:11:8f:69:
fc:99:7a:aa:d7:7d:6c:eb:42:97:2a:7b:54:4c:06:
96:ae:c4:73:17:b9:fe:9a:a9:2b:5d:43:72:10:70:
5c:d5:90:7b:45:c9:01:d5:96:23:f6:d1:26:5f:c2:
51:c3:2e:11:d1:26:24:29:76:b2:a4:b8:11:25:ce:
93:7d:b2:e5:95:8c:80:f3:ad:ef:2b:39:c5:18:3c:
1c:c4:11:b2:9c:c7:5e:36:b8:0f:87:94:37:2e:ac:
3a:cb:38:8f:dd:07:0a:67:81:94:45:0c:0a:7f:bd:
39:23:df:00:43:4e:43:64:50:09:11:ca:8e:d3:1f:
17:34:dd:8f:1b:81:ab:0f:2c:ee:7a:9c:e7:b1:6f:
3f:c1:bc:27:01:3d:df:88:70:a6:2f:55:40:14:09:
11:fb:af:4b:f8:3c:d1:ed:1b:53:fa:d4:6a:8e:95:
3e:a7:3c:21:33:7f:f5:8d:96:7b:f0:d5:1a:96:58:
84:b6:31:d6:c1:27:48:d7:8e:d9:e9:fb:74:f1:a3:
96:9b:ca:36:c1:16:b8:6b:76:68:77:24:fb:61:17:
4a:7f:9c:c4:c7:f9:ee:f5:5b:bc:72:21:8f:07:e5:
09:d9:da:7c:32:99:8d:85:04:3c:05:9b:30:87:e3:
07:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:76:B2:C4:1A:24:F1:A4:91:73:20:1F:2F:10:52:48:E1:37:CD:06
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/nnayxBok8aSRcyAfLxBSSOE3zQY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.0.0/16
Signature Algorithm: sha256WithRSAEncryption
81:b6:fe:d3:9a:53:f9:d6:77:56:43:fa:be:c0:9a:5f:a5:c2:
9b:03:3e:47:1b:48:63:84:33:1a:87:ef:3f:f6:92:41:3c:aa:
64:6b:a3:23:5c:7b:7c:45:23:da:5b:bf:f3:fd:3b:7c:7a:da:
8c:f8:f9:f4:f4:29:c1:e1:04:61:d1:0a:41:93:0b:76:d1:c7:
ff:a7:93:7d:61:cb:77:29:e3:8e:92:29:d8:dd:4a:60:70:bf:
3e:ae:f9:61:0e:d0:48:d0:47:c3:43:e2:10:ad:98:43:2a:91:
e4:e4:02:e6:5c:8f:f7:fd:19:3b:65:7d:de:cb:9e:1d:e7:ed:
4d:b8:cf:0e:ec:6c:a2:9b:42:11:01:74:78:54:c3:98:9f:72:
2c:a3:99:11:29:57:e7:38:79:1c:e8:90:70:f2:25:14:22:a3:
18:01:e4:74:b4:21:7d:9a:39:1c:10:dd:5d:8f:fd:f2:33:76:
76:fe:bb:38:59:8c:6a:dc:50:f9:3e:63:18:cb:d1:f7:71:7b:
d9:57:d9:a7:ae:13:5d:0d:8a:45:ec:44:24:62:da:d2:52:77:
d2:f6:c9:e7:cb:53:e4:f2:e4:0c:38:23:16:e9:c1:0e:eb:2c:
69:78:e3:49:ca:10:61:92:6d:7c:69:19:d6:93:94:6e:87:9e:
6f:9d:97:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:53 2023 by rpki-client on console-ams.rpki-client.org