Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EASPNET/2oYEIs-CEySnCPs6u1q-8_Dkilc.roa
File: 2oYEIs-CEySnCPs6u1q-8_Dkilc.roa (raw, json)
Hash identifier: uuv+lde0wo2QgEfRFtGQqag60mqHkJpEdxHRsLhNp+c=
Subject key identifier: DA:86:04:22:CF:82:13:24:A7:08:FB:3A:BB:5A:BE:F3:F0:E4:8A:57
Certificate issuer: /CN=552B16164C361040D88F32D36509448CF3BB9D25
Certificate serial: 0773
Authority key identifier: 55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/2oYEIs-CEySnCPs6u1q-8_Dkilc.roa
Signing time: Tue 29 Sep 2020 10:00:11 +0000
ROA not before: Tue 29 Sep 2020 10:00:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10135
IP address blocks: 115.85.144.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1907 (0x773)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=552B16164C361040D88F32D36509448CF3BB9D25
Validity
Not Before: Sep 29 10:00:11 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DA860422CF821324A708FB3ABB5ABEF3F0E48A57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:19:14:0d:aa:3e:f6:df:9f:c1:f7:e3:c5:3f:
88:a6:88:68:53:7c:76:41:c2:2f:8c:03:2b:ed:97:
2e:8d:06:c4:4a:cd:62:cd:57:bd:4b:e9:87:4a:b9:
0f:97:8c:35:8a:fe:53:fb:3b:4e:89:62:d5:f8:bc:
48:72:46:61:62:b6:33:0b:67:14:5f:26:7b:2d:85:
c5:fd:b0:28:9a:f8:2b:47:77:af:21:07:1b:22:1a:
8e:72:15:39:18:e8:59:c0:bc:77:ef:0a:16:da:42:
6b:9c:05:f2:a6:34:70:c5:9c:a6:3e:9d:b0:63:37:
dc:da:64:78:a0:6a:20:37:63:b0:44:af:b7:5f:a2:
4c:71:d6:29:ad:2a:8b:de:35:10:f3:d9:3b:37:4f:
31:f7:b5:ce:ee:2e:fe:5e:8c:8f:a4:01:bb:60:a7:
45:8d:f3:56:26:4a:7e:cc:d2:d4:98:a7:52:3c:ad:
a2:6e:47:0d:79:cf:ae:7f:bc:82:3e:6e:17:c1:67:
b5:61:08:4d:d8:7c:b3:cb:39:99:7c:d3:0b:cf:96:
13:6e:37:1e:3c:e5:17:6d:f0:c8:f3:38:a0:41:f2:
82:57:77:ce:82:15:c8:f8:0b:93:d3:f6:b9:6e:eb:
fb:f4:97:db:2c:39:f6:c7:e2:3e:64:8f:94:87:76:
be:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:86:04:22:CF:82:13:24:A7:08:FB:3A:BB:5A:BE:F3:F0:E4:8A:57
X509v3 Authority Key Identifier:
keyid:55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/2oYEIs-CEySnCPs6u1q-8_Dkilc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.85.144.0/20
Signature Algorithm: sha256WithRSAEncryption
63:67:ea:56:be:70:35:6d:7c:33:a1:c1:b2:42:17:ab:c7:93:
99:bc:99:08:bc:db:df:70:df:94:4e:41:29:84:ec:42:fe:db:
82:7a:4e:39:64:c3:94:16:06:30:3f:9f:4d:f8:99:bf:d5:71:
84:1b:e9:d2:3d:ea:92:8a:f6:75:b3:16:2d:48:6b:18:3c:69:
02:fb:e5:06:ca:79:ba:be:bc:b4:ac:37:3d:cf:1d:10:e2:b6:
62:57:d6:68:dc:82:bb:3a:80:2b:7a:20:64:7d:29:c8:3a:b8:
ba:8b:b1:cf:4a:6d:e6:72:41:25:3c:27:10:12:e8:1e:ef:20:
a6:68:72:1e:b9:18:85:3c:fb:13:89:b0:93:b8:4c:79:ca:29:
57:aa:1e:12:0a:86:ba:71:d0:eb:ff:fd:88:51:74:29:9c:6b:
e1:1b:ce:75:42:8e:6b:d3:2c:26:47:7a:82:42:4d:9d:8a:6b:
2e:f3:67:60:a8:8f:fb:59:79:5e:9b:e0:0b:fc:bf:4d:ae:83:
0a:3e:7d:21:39:41:15:2e:be:cb:d0:11:bf:bb:a7:9b:ed:e8:
2e:94:ec:3b:40:87:f1:6d:2e:19:ef:c2:11:8a:1f:fb:6f:20:
01:8c:9c:9f:83:6b:28:1c:59:36:e6:d3:cb:a1:db:61:d2:76:
bc:3c:78:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org