Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/yeKuBJY-M8-GifXFrQ0zMzx5X-c.roa
File: yeKuBJY-M8-GifXFrQ0zMzx5X-c.roa (raw, json)
Hash identifier: Z8n1I0Phud0MBQQ6a2tjGgTt+lOxi67Q7QPBwzU/Bqs=
Subject key identifier: C9:E2:AE:04:96:3E:33:CF:86:89:F5:C5:AD:0D:33:33:3C:79:5F:E7
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0B08
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/yeKuBJY-M8-GifXFrQ0zMzx5X-c.roa
Signing time: Thu 16 Dec 2021 06:40:57 +0000
ROA not before: Thu 16 Dec 2021 06:40:57 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17809
IP address blocks: 182.155.0.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2824 (0xb08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Dec 16 06:40:57 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C9E2AE04963E33CF8689F5C5AD0D33333C795FE7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f5:a0:b4:47:3f:1c:eb:66:08:11:e0:ea:49:
88:35:53:14:17:b2:77:c4:35:ca:24:9e:8b:f1:a4:
ac:95:dd:bf:a5:f0:ab:8f:50:a4:56:37:2b:1a:c6:
35:b8:7f:1f:75:51:f3:33:de:48:c0:33:7c:73:51:
da:56:cb:68:72:23:d6:05:19:94:e2:c5:0f:ca:b0:
79:87:86:e6:f6:2e:b0:98:f1:9d:dc:76:b8:50:ac:
62:f8:b2:3e:c8:6d:d6:fd:6e:27:a6:f0:95:b3:f9:
fb:28:65:e7:0a:4f:60:13:b6:ce:9e:e6:88:0b:b0:
81:e5:2e:b0:44:74:a6:29:71:36:85:d6:94:64:eb:
a0:68:1f:ae:56:99:90:f7:fc:4b:41:68:19:9b:57:
28:3f:60:64:0a:14:16:a8:36:6c:3e:9c:34:33:6e:
2f:94:38:92:84:ea:97:bc:46:3c:05:cc:a1:26:5c:
92:1a:4e:82:d5:2c:65:17:68:63:43:15:7a:2a:e7:
bb:a0:5a:78:43:ba:f4:4d:77:77:54:b1:54:81:92:
86:3c:73:ee:24:fa:c8:58:72:df:f5:0d:83:67:56:
6a:c7:c9:f7:2c:d9:7e:fb:71:30:60:d0:b9:e6:ca:
99:f2:88:9c:18:d1:97:d4:48:2f:cf:8b:1b:21:99:
95:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:E2:AE:04:96:3E:33:CF:86:89:F5:C5:AD:0D:33:33:3C:79:5F:E7
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/yeKuBJY-M8-GifXFrQ0zMzx5X-c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.0.0/19
Signature Algorithm: sha256WithRSAEncryption
aa:83:fc:67:d9:20:a3:13:16:57:63:57:03:8d:ae:bf:73:e9:
74:81:7b:56:c3:8a:d2:d2:94:8a:f4:e3:1e:1a:2b:4c:8f:68:
62:b9:a7:0d:00:8c:f0:07:11:33:fd:9e:eb:69:eb:4c:9c:f1:
55:d6:56:83:78:93:1b:f1:40:72:06:4a:22:fc:c7:ad:b3:5d:
97:86:53:f0:93:95:b1:9d:41:97:42:0b:11:c6:95:2d:39:39:
89:01:62:c8:8f:ba:25:4c:ce:97:ae:ff:29:3a:e0:f8:20:27:
eb:cf:93:71:90:7f:e8:55:b7:44:a6:27:d7:72:3d:36:56:6a:
49:91:e9:b8:6f:c0:c7:08:b8:93:ec:5f:f6:57:fb:6a:98:f3:
ce:fb:04:22:d9:d9:8a:ba:6d:9c:c8:ca:39:6d:c4:d1:da:56:
0c:91:46:34:07:dd:16:0c:d1:8a:00:ac:3a:8f:fe:ad:b6:de:
b6:ef:7c:16:52:c1:e3:42:45:58:3c:1e:7b:03:1f:83:0e:16:
3f:5a:83:6f:33:a8:10:8c:d6:cc:0e:c5:40:fc:ea:cf:32:5d:
c4:18:d1:fb:24:12:fe:d2:87:56:47:07:de:d3:51:dd:6e:ec:
0b:d2:af:34:ce:85:45:db:75:64:ff:93:70:7b:2b:02:b3:d8:
e5:29:8c:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:53 2023 by rpki-client on console-ams.rpki-client.org