Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EASPNET/CslweUGpp2FxFcMBu-SWlJnMVBc.roa
File: CslweUGpp2FxFcMBu-SWlJnMVBc.roa (raw, json)
Hash identifier: A8Y0Z+v6oTRfrylUSuGDbFH9zm++claUOttUrwtTdEM=
Subject key identifier: 0A:C9:70:79:41:A9:A7:61:71:15:C3:01:BB:E4:96:94:99:CC:54:17
Certificate issuer: /CN=552B16164C361040D88F32D36509448CF3BB9D25
Certificate serial: 08B5
Authority key identifier: 55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/CslweUGpp2FxFcMBu-SWlJnMVBc.roa
Signing time: Sun 07 Feb 2021 11:54:34 +0000
ROA not before: Sun 07 Feb 2021 11:54:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10135
IP address blocks: 49.128.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2229 (0x8b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=552B16164C361040D88F32D36509448CF3BB9D25
Validity
Not Before: Feb 7 11:54:34 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0AC9707941A9A7617115C301BBE4969499CC5417
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ed:89:73:ce:3b:1e:66:78:53:a4:c1:2b:8f:
15:c5:c6:2a:45:8f:59:af:d1:e7:3e:a3:4a:a9:4f:
4d:c6:61:f6:31:cd:0f:f1:49:e4:28:32:08:06:90:
31:e4:a4:75:d3:97:06:32:8f:cd:fc:11:b4:5d:19:
79:dc:af:0b:58:a5:13:88:6b:09:73:bf:37:16:a5:
4f:ed:e8:52:b8:61:bc:a5:e8:ea:45:f1:ad:d1:06:
d1:46:70:8c:15:f1:f0:da:2a:ea:c0:d1:11:f6:35:
44:53:53:f8:7f:b7:ec:c2:8f:07:6d:82:8a:5e:61:
51:49:60:79:50:50:33:92:f0:b2:43:26:84:75:ea:
be:71:83:f3:43:f3:86:de:3a:b7:d8:6e:6a:da:82:
d7:7a:c0:b5:61:ca:83:05:12:12:fb:00:46:f6:38:
71:1f:11:8e:8c:06:bd:7a:33:1f:01:7f:4f:c2:ba:
69:57:27:72:df:88:3c:f9:4d:6e:17:e1:26:02:10:
13:e8:f8:f4:13:92:ef:b8:49:2f:35:97:ef:bd:f6:
54:4e:4b:d5:a0:fc:88:dc:d9:eb:53:db:0b:6d:66:
64:be:be:ff:e3:fb:45:54:df:cb:d5:7a:d3:10:3f:
30:cc:08:60:d6:c0:18:47:16:12:3a:16:8b:a1:10:
a1:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:C9:70:79:41:A9:A7:61:71:15:C3:01:BB:E4:96:94:99:CC:54:17
X509v3 Authority Key Identifier:
keyid:55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/CslweUGpp2FxFcMBu-SWlJnMVBc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.128.112.0/20
Signature Algorithm: sha256WithRSAEncryption
14:96:40:1e:c5:f9:7c:35:db:c4:02:ad:b3:da:a3:ff:11:79:
6f:cc:e3:54:58:8e:38:00:2c:96:9f:01:25:72:0d:57:c9:d0:
31:fe:6e:a1:e7:ca:11:26:c2:d7:f6:cf:50:7b:4a:36:dc:7e:
bf:60:57:7e:df:3f:46:e2:68:91:ec:3a:48:45:77:39:d1:39:
1a:a8:b2:ca:e2:16:84:ab:4a:ab:83:12:3f:15:16:40:e8:f1:
1a:c4:d2:b7:c3:d0:b2:5c:6c:63:cb:b3:d0:63:61:e0:04:49:
11:50:b6:c2:56:4e:b5:0e:fb:ad:b0:54:90:63:e3:cc:c0:f1:
f6:28:42:23:96:b5:df:2d:0f:be:50:02:61:d4:90:d5:dd:67:
3e:f8:31:9d:02:26:06:d4:a6:0c:08:d7:03:d3:85:47:9f:61:
70:76:9e:71:02:6e:27:a3:42:1f:79:13:f9:e9:1f:80:9f:98:
21:d3:2c:3b:6d:0f:a1:94:05:f1:c3:b7:0d:1a:cb:8f:33:1d:
26:d8:ed:34:3d:86:7e:63:df:5f:7f:36:8f:ed:e1:43:02:f6:
8b:c7:53:ad:78:f8:2b:d3:07:4e:53:4a:8a:af:41:ad:ce:2a:
f4:41:52:9b:1b:4a:d4:ce:02:97:f7:c8:56:b5:d6:24:5c:bb:
f3:43:86:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org