Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/z9zaZyKpFTtBcuvTqHlcddueEDY.roa
File: z9zaZyKpFTtBcuvTqHlcddueEDY.roa (raw, json)
Hash identifier: 5DmS2FecKfTTui+5tPPhu51d08EdwSjQnCdAYtg/ghU=
Subject key identifier: CF:DC:DA:67:22:A9:15:3B:41:72:EB:D3:A8:79:5C:75:DB:9E:10:36
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D25
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/z9zaZyKpFTtBcuvTqHlcddueEDY.roa
Signing time: Wed 26 Apr 2023 10:31:35 +0000
ROA not before: Wed 26 Apr 2023 10:31:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 182.155.32.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3365 (0xd25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:35 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CFDCDA6722A9153B4172EBD3A8795C75DB9E1036
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:fb:8e:7b:a9:c6:b3:99:99:ea:fe:bf:39:30:
cb:f6:2e:c1:78:98:f5:7a:45:4a:5d:e0:a6:ad:02:
4a:be:4b:15:50:ae:38:82:63:75:93:7f:59:b9:d8:
5f:f7:8b:7e:07:16:d3:7a:82:69:5a:22:13:ed:d6:
9b:c7:47:4d:10:14:48:a0:6f:c5:cd:df:d6:24:f9:
cd:3c:f5:ab:7f:89:71:4b:7a:e5:bb:1e:45:59:0f:
10:b2:b5:81:d7:01:aa:63:00:84:bf:6a:99:a4:ef:
9b:27:7e:1f:23:0b:36:6f:3c:49:60:2d:e9:fe:c5:
8b:58:c1:41:25:3e:d7:6c:da:62:60:00:f4:1f:ef:
8a:6e:b2:42:eb:b4:df:95:a3:08:ef:17:5c:a3:91:
e8:f9:f0:99:ec:03:a6:ad:68:73:3b:b9:41:b4:0d:
85:a9:6e:8d:6c:bb:50:a8:aa:67:6a:b0:df:d1:ea:
2f:30:b9:10:2d:e9:fa:a8:b9:97:7d:58:c0:0f:43:
0a:a0:5d:3d:04:30:d7:b5:a4:4c:2c:c8:ef:89:dd:
46:bc:6f:29:8e:84:5c:65:21:58:39:b6:ca:de:62:
ce:00:33:b2:43:c9:81:98:ab:db:76:2b:f2:db:24:
43:19:78:91:8d:50:fc:47:2d:79:9d:8f:7f:78:fe:
48:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:DC:DA:67:22:A9:15:3B:41:72:EB:D3:A8:79:5C:75:DB:9E:10:36
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/z9zaZyKpFTtBcuvTqHlcddueEDY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.32.0/19
Signature Algorithm: sha256WithRSAEncryption
33:c8:c9:69:70:24:f3:0c:d6:3a:00:0a:6e:b1:6b:c9:fd:76:
bc:ae:9e:fe:c0:f1:9c:94:82:b9:86:21:1e:e7:76:8b:4a:4b:
d0:0e:04:81:e1:c6:b4:72:04:bd:20:2f:03:a9:69:2d:02:16:
77:fe:31:cf:24:40:78:c4:85:12:14:81:dc:c4:10:87:b0:6e:
dc:4d:b3:af:8c:a4:28:39:3b:63:3e:a9:ce:6c:64:68:5f:81:
35:80:f5:d9:6e:3c:c1:be:6f:07:e8:5b:fe:a8:c8:03:9e:1e:
de:50:d7:32:29:f8:58:48:66:2d:ce:2b:ca:d9:63:95:3c:ba:
92:f4:2d:cf:34:6a:6f:c3:38:9c:52:d3:86:df:4f:aa:c4:11:
8e:65:cc:14:7b:00:93:1b:47:1d:6a:c3:3a:07:a9:07:f4:a3:
31:7f:f9:eb:6a:97:ff:38:4d:0e:99:8e:2d:90:a7:6d:e7:3f:
e5:42:2c:df:71:db:81:41:d0:f3:3f:ca:68:6b:5d:07:98:4f:
99:73:e2:d0:ab:fc:7c:ac:73:17:59:83:bd:55:04:d7:97:72:
3e:b3:a3:5d:19:dd:54:7a:04:2e:a9:00:05:13:fc:96:f3:da:
50:09:6a:3f:9b:08:c1:fa:3b:4a:68:01:7a:21:a6:6a:cb:d9:
49:5b:a9:19
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDSUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA0MjYx
MDMxMzVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKENGRENEQTY3MjJBOTE1
M0I0MTcyRUJEM0E4Nzk1Qzc1REI5RTEwMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCo+457qcazmZnq/r85MMv2LsF4mPV6RUpd4KatAkq+SxVQrjiC
Y3WTf1m52F/3i34HFtN6gmlaIhPt1pvHR00QFEigb8XN39Yk+c089at/iXFLeuW7
HkVZDxCytYHXAapjAIS/apmk75snfh8jCzZvPElgLen+xYtYwUElPtds2mJgAPQf
74puskLrtN+VowjvF1yjkej58JnsA6ataHM7uUG0DYWpbo1su1CoqmdqsN/R6i8w
uRAt6fqouZd9WMAPQwqgXT0EMNe1pEwsyO+J3Ua8bymOhFxlIVg5tsreYs4AM7JD
yYGYq9t2K/LbJEMZeJGNUPxHLXmdj394/khxAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUz9zaZyKpFTtBcuvTqHlcddueEDYwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvejl6YVp5S3BGVHRCY3V2VHFIbGNk
ZHVlRURZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBbabIDAN
BgkqhkiG9w0BAQsFAAOCAQEAM8jJaXAk8wzWOgAKbrFryf12vK6e/sDxnJSCuYYh
Hud2i0pL0A4EgeHGtHIEvSAvA6lpLQIWd/4xzyRAeMSFEhSB3MQQh7Bu3E2zr4yk
KDk7Yz6pzmxkaF+BNYD12W48wb5vB+hb/qjIA54e3lDXMin4WEhmLc4rytljlTy6
kvQtzzRqb8M4nFLTht9PqsQRjmXMFHsAkxtHHWrDOgepB/SjMX/562qX/zhNDpmO
LZCnbec/5UIs33HbgUHQ8z/KaGtdB5hPmXPi0Kv8fKxzF1mDvVUE15dyPrOjXRnd
VHoELqkABRP8lvPaUAlqP5sIwfo7SmgBeiGmasvZSVupGQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org