Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EASPNET/LYK0SMedRg7IFNNN2dkR2T7UT9w.roa
File: LYK0SMedRg7IFNNN2dkR2T7UT9w.roa (raw, json)
Hash identifier: 23mmY61xEXANhyHIvMqod/XZtAo9xQpPAHXy+XZW+2E=
Subject key identifier: 2D:82:B4:48:C7:9D:46:0E:C8:14:D3:4D:D9:D9:11:D9:3E:D4:4F:DC
Certificate issuer: /CN=552B16164C361040D88F32D36509448CF3BB9D25
Certificate serial: 0955
Authority key identifier: 55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/LYK0SMedRg7IFNNN2dkR2T7UT9w.roa
Signing time: Wed 29 Sep 2021 02:52:41 +0000
ROA not before: Wed 29 Sep 2021 02:52:41 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 10135
IP address blocks: 61.64.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2389 (0x955)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=552B16164C361040D88F32D36509448CF3BB9D25
Validity
Not Before: Sep 29 02:52:41 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2D82B448C79D460EC814D34DD9D911D93ED44FDC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b0:39:50:92:30:f0:f1:10:21:a7:2b:38:17:
64:8a:d3:27:64:57:26:54:cb:d0:22:b9:01:ce:f7:
57:d8:f5:72:35:38:44:40:d1:83:03:54:dd:3b:54:
26:35:5b:6a:04:d1:0e:5e:5d:4e:82:cb:69:ac:5c:
f8:bf:d0:12:d0:8a:85:13:c3:10:4a:e7:93:0f:3f:
fd:b7:77:a0:a0:db:ac:72:b4:51:d0:c7:71:06:8b:
f6:b7:7e:bb:4d:dd:28:c0:3b:72:61:bf:a7:d9:a8:
33:3e:eb:88:39:b4:4f:0e:1e:e9:52:cb:c2:7b:cb:
3f:4d:e2:5d:f5:39:bb:64:35:60:1d:6c:1b:12:2b:
f7:1a:c1:83:bb:ac:ee:2b:10:d4:ce:39:02:b3:f4:
27:cb:0b:1e:87:3b:c4:92:59:96:5f:ea:5c:bf:9b:
37:3f:be:f0:33:2a:c2:64:a7:9e:a0:a5:f1:d6:81:
23:e7:96:b9:69:76:59:a7:7c:1d:2a:0b:98:97:18:
6b:92:4e:f6:52:e6:7f:cd:94:76:06:fa:db:5a:86:
98:43:e8:08:e7:92:0f:b3:dc:f0:77:40:66:3e:61:
3e:4a:1e:fc:ec:7d:a2:77:f2:82:43:fb:54:e2:f9:
04:99:fb:e5:9e:c7:13:9b:bd:db:61:6c:41:73:0b:
dc:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:82:B4:48:C7:9D:46:0E:C8:14:D3:4D:D9:D9:11:D9:3E:D4:4F:DC
X509v3 Authority Key Identifier:
keyid:55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/LYK0SMedRg7IFNNN2dkR2T7UT9w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.64.48.0/20
Signature Algorithm: sha256WithRSAEncryption
20:d2:9d:b4:2b:d0:09:45:63:ad:94:03:dd:4f:8e:30:31:52:
df:a1:56:5b:36:2d:5a:04:b5:4b:42:cc:30:eb:db:a5:b9:6d:
a0:9a:5c:7d:10:b5:0a:dd:ac:19:49:94:1b:88:57:f4:13:af:
3c:07:3a:9b:f9:ac:9b:3e:3c:ae:3c:d1:e2:b4:77:1a:ce:15:
8e:16:b1:da:6f:21:ed:79:84:96:32:78:9c:de:77:fe:e5:09:
52:c2:f0:4c:87:e9:39:11:3f:d6:2b:c3:74:20:16:fa:01:a5:
bb:89:a6:dc:69:fa:eb:2d:6a:cd:05:52:1d:47:6c:51:85:90:
26:23:f6:6a:93:c0:10:95:01:43:e5:15:a6:e8:11:23:aa:1e:
28:1c:46:39:af:29:7b:a3:55:7b:e6:95:2a:18:81:de:b1:88:
17:f7:40:16:f4:d2:58:63:13:a0:0e:b5:d2:2e:b2:ed:e0:8b:
33:f6:79:4f:fe:b3:95:f2:59:07:63:b3:be:70:59:65:7f:5c:
6a:01:1a:5f:64:06:7a:fa:66:13:a3:d9:e7:06:73:42:1c:97:
ce:35:6a:8d:12:84:c7:e2:fa:3f:76:3d:23:79:02:ba:ef:75:
2c:f6:9d:f7:85:65:fd:32:7b:a2:7a:89:bc:15:1d:75:96:58:
d6:df:67:c7
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCVUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTUy
QjE2MTY0QzM2MTA0MEQ4OEYzMkQzNjUwOTQ0OENGM0JCOUQyNTAeFw0yMTA5Mjkw
MjUyNDFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDJEODJCNDQ4Qzc5RDQ2
MEVDODE0RDM0REQ5RDkxMUQ5M0VENDRGREMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDJsDlQkjDw8RAhpys4F2SK0ydkVyZUy9AiuQHO91fY9XI1OERA
0YMDVN07VCY1W2oE0Q5eXU6Cy2msXPi/0BLQioUTwxBK55MPP/23d6Cg26xytFHQ
x3EGi/a3frtN3SjAO3Jhv6fZqDM+64g5tE8OHulSy8J7yz9N4l31ObtkNWAdbBsS
K/cawYO7rO4rENTOOQKz9CfLCx6HO8SSWZZf6ly/mzc/vvAzKsJkp56gpfHWgSPn
lrlpdlmnfB0qC5iXGGuSTvZS5n/NlHYG+ttahphD6Ajnkg+z3PB3QGY+YT5KHvzs
faJ38oJD+1Ti+QSZ++WexxObvdthbEFzC9xFAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQULYK0SMedRg7IFNNN2dkR2T7UT9wwHwYDVR0jBBgwFoAUVSsWFkw2EEDYjzLT
ZQlEjPO7nSUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRUFTUE5F
VC9WU3NXRmt3MkVFRFlqekxUWlFsRWpQTzduU1UuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL1ZTc1dGa3cyRUVEWWp6TFRaUWxFalBPN25TVS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0VBU1BORVQvTFlLMFNNZWRSZzdJRk5O
TjJka1IyVDdVVDl3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BD1AMDANBgkqhkiG9w0BAQsFAAOCAQEAINKdtCvQCUVjrZQD3U+OMDFS36FWWzYt
WgS1S0LMMOvbpbltoJpcfRC1Ct2sGUmUG4hX9BOvPAc6m/msmz48rjzR4rR3Gs4V
jhax2m8h7XmEljJ4nN53/uUJUsLwTIfpORE/1ivDdCAW+gGlu4mm3Gn66y1qzQVS
HUdsUYWQJiP2apPAEJUBQ+UVpugRI6oeKBxGOa8pe6NVe+aVKhiB3rGIF/dAFvTS
WGMToA610i6y7eCLM/Z5T/6zlfJZB2OzvnBZZX9cagEaX2QGevpmE6PZ5wZzQhyX
zjVqjRKEx+L6P3Y9I3kCuu91LPad94Vl/TJ7onqJvBUddZZY1t9nxw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org