Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EASPNET/509d3-zki-2cdAnysjd3Lxi1ylw.roa
File: 509d3-zki-2cdAnysjd3Lxi1ylw.roa (raw, json)
Hash identifier: MpgPDpqfNHMR/UROxCf1fZm1m3E8Wazr3d1PjwNQ+bM=
Subject key identifier: E7:4F:5D:DF:EC:E4:8B:ED:9C:74:09:F2:B2:37:77:2F:18:B5:CA:5C
Certificate issuer: /CN=552B16164C361040D88F32D36509448CF3BB9D25
Certificate serial: 0A41
Authority key identifier: 55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/509d3-zki-2cdAnysjd3Lxi1ylw.roa
Signing time: Thu 15 Sep 2022 02:50:14 +0000
ROA not before: Thu 15 Sep 2022 02:50:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 10135
IP address blocks: 49.128.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2625 (0xa41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=552B16164C361040D88F32D36509448CF3BB9D25
Validity
Not Before: Sep 15 02:50:14 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E74F5DDFECE48BED9C7409F2B237772F18B5CA5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d7:2a:33:8f:88:2e:43:cc:72:56:1c:dd:c1:
89:b8:32:c2:26:85:46:b5:50:2d:89:76:a0:de:0a:
9d:00:5f:6f:1f:67:c6:99:d6:a6:ca:ae:3e:07:10:
08:8d:58:fc:54:21:b3:cf:bd:b9:34:99:0b:ed:3d:
d0:16:be:e6:d3:82:c9:5f:19:1c:d2:a3:40:42:c1:
97:02:d8:ed:7c:82:dc:5d:90:a2:35:56:b4:b0:90:
c2:b2:14:ff:e0:2c:ca:c0:0b:df:49:5e:33:cc:86:
54:15:c7:18:a6:ec:a4:f9:8c:e1:6a:9f:f8:47:30:
93:45:c7:82:db:44:6b:75:6e:64:64:e5:d7:81:e2:
6e:32:0d:92:b4:c4:7c:a6:a8:47:21:e4:34:86:c1:
55:e5:6e:10:9d:1f:c5:94:9c:3f:78:2c:cb:83:05:
8c:5a:ae:86:58:46:30:00:c6:46:1e:cb:8e:8c:d3:
b2:c8:2f:3f:78:f4:18:ec:4a:7e:3d:54:c0:20:40:
18:d9:ff:d3:7f:a1:a7:55:d1:a0:4b:aa:cd:8f:de:
0e:55:e4:b6:87:a6:f4:af:d6:f8:8d:42:4f:8d:d6:
ed:d6:02:9d:72:97:1c:9f:78:b5:11:23:4c:28:c2:
d6:cb:e1:21:99:ea:cf:1b:e1:b8:fc:a1:34:8e:cf:
d3:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:4F:5D:DF:EC:E4:8B:ED:9C:74:09:F2:B2:37:77:2F:18:B5:CA:5C
X509v3 Authority Key Identifier:
keyid:55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/509d3-zki-2cdAnysjd3Lxi1ylw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.128.112.0/20
Signature Algorithm: sha256WithRSAEncryption
37:22:56:80:eb:b5:7d:d2:15:df:ef:f8:a3:39:f6:07:bf:ec:
86:48:b2:79:69:ee:09:8c:aa:5b:e9:df:6a:4b:c1:b9:cc:b0:
04:e1:32:c5:aa:de:68:4d:8d:85:29:f2:0b:77:89:f1:b2:a3:
bc:57:cf:03:f2:45:ce:03:cc:85:2a:ec:16:b1:6b:f0:60:66:
78:5e:76:49:18:ee:d1:fe:75:28:4b:88:50:90:23:bb:32:b0:
aa:61:90:20:ba:d2:4b:d6:37:05:e2:e6:11:02:3a:ff:d1:8e:
a9:15:bc:74:74:98:a6:79:1d:a8:df:60:85:63:c0:2c:b4:32:
6b:e4:6b:3e:42:6a:45:19:12:30:e4:9b:5d:23:59:e2:54:2a:
7c:e5:60:52:79:ba:e6:1b:00:ab:5f:21:b5:eb:f0:b4:2d:3e:
cb:39:9d:5d:0d:51:95:66:d7:11:4b:d9:22:4b:6a:9e:22:04:
8c:93:bf:5b:38:ff:4f:05:4a:40:4e:c3:4b:c7:fc:cd:dc:43:
ec:5e:4f:4f:62:89:88:c2:82:6d:03:b6:33:f4:69:bf:b1:74:
f9:0e:86:8e:a1:71:42:3f:ec:33:2a:fc:86:0f:0f:44:01:a2:
ab:95:0f:e1:4c:8e:30:72:9f:e6:8b:9e:89:cc:06:72:d7:ef:
77:af:1b:3a
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCkEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTUy
QjE2MTY0QzM2MTA0MEQ4OEYzMkQzNjUwOTQ0OENGM0JCOUQyNTAeFw0yMjA5MTUw
MjUwMTRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEU3NEY1RERGRUNFNDhC
RUQ5Qzc0MDlGMkIyMzc3NzJGMThCNUNBNUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDM1yozj4guQ8xyVhzdwYm4MsImhUa1UC2JdqDeCp0AX28fZ8aZ
1qbKrj4HEAiNWPxUIbPPvbk0mQvtPdAWvubTgslfGRzSo0BCwZcC2O18gtxdkKI1
VrSwkMKyFP/gLMrAC99JXjPMhlQVxxim7KT5jOFqn/hHMJNFx4LbRGt1bmRk5deB
4m4yDZK0xHymqEch5DSGwVXlbhCdH8WUnD94LMuDBYxaroZYRjAAxkYey46M07LI
Lz949BjsSn49VMAgQBjZ/9N/oadV0aBLqs2P3g5V5LaHpvSv1viNQk+N1u3WAp1y
lxyfeLURI0wowtbL4SGZ6s8b4bj8oTSOz9O/AgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQU509d3+zki+2cdAnysjd3Lxi1ylwwHwYDVR0jBBgwFoAUVSsWFkw2EEDYjzLT
ZQlEjPO7nSUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRUFTUE5F
VC9WU3NXRmt3MkVFRFlqekxUWlFsRWpQTzduU1UuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL1ZTc1dGa3cyRUVEWWp6TFRaUWxFalBPN25TVS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0VBU1BORVQvNTA5ZDMtemtpLTJjZEFu
eXNqZDNMeGkxeWx3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BDGAcDANBgkqhkiG9w0BAQsFAAOCAQEANyJWgOu1fdIV3+/4ozn2B7/shkiyeWnu
CYyqW+nfakvBucywBOEyxareaE2NhSnyC3eJ8bKjvFfPA/JFzgPMhSrsFrFr8GBm
eF52SRju0f51KEuIUJAjuzKwqmGQILrSS9Y3BeLmEQI6/9GOqRW8dHSYpnkdqN9g
hWPALLQya+RrPkJqRRkSMOSbXSNZ4lQqfOVgUnm65hsAq18htevwtC0+yzmdXQ1R
lWbXEUvZIktqniIEjJO/Wzj/TwVKQE7DS8f8zdxD7F5PT2KJiMKCbQO2M/Rpv7F0
+Q6GjqFxQj/sMyr8hg8PRAGiq5UP4UyOMHKf5oueicwGctfvd68bOg==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:27:55 2025 by rpki-client