Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EASPNET/QA5Y3XjOxDzeh7DAM3kRRtEcIr4.roa
File: QA5Y3XjOxDzeh7DAM3kRRtEcIr4.roa (raw, json)
Hash identifier: O1GbvSqOMTJD+55ar2IHMqn8b1IJpaw9cTZVjq7EiqY=
Subject key identifier: 40:0E:58:DD:78:CE:C4:3C:DE:87:B0:C0:33:79:11:46:D1:1C:22:BE
Certificate issuer: /CN=552B16164C361040D88F32D36509448CF3BB9D25
Certificate serial: 0774
Authority key identifier: 55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/QA5Y3XjOxDzeh7DAM3kRRtEcIr4.roa
Signing time: Tue 29 Sep 2020 10:00:11 +0000
ROA not before: Tue 29 Sep 2020 10:00:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10135
IP address blocks: 202.168.192.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1908 (0x774)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=552B16164C361040D88F32D36509448CF3BB9D25
Validity
Not Before: Sep 29 10:00:11 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=400E58DD78CEC43CDE87B0C033791146D11C22BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f8:33:df:e1:46:e6:7c:ab:af:83:0b:14:4c:
f2:f7:c3:eb:28:bb:0f:2c:2e:c6:14:0d:3a:5b:60:
cf:e6:c3:8c:17:01:db:5b:f5:27:14:01:67:24:e4:
30:2f:50:19:22:2f:22:68:60:fc:3e:62:16:27:c0:
52:c4:bd:92:c3:f1:be:7a:6f:4f:5b:a6:ad:fd:08:
9b:2c:fd:66:ae:72:e3:c1:90:c0:85:a9:4d:e3:cf:
be:9b:ac:e6:71:ad:02:af:62:01:4f:67:1a:c0:df:
4f:81:cc:d4:e2:e7:b8:c5:9e:a7:49:69:41:da:4d:
f8:fe:2b:e6:3d:bf:6f:2c:f2:9a:8f:22:cd:59:7f:
53:de:73:cc:58:60:92:dd:8a:24:09:90:5b:29:55:
85:60:9f:74:bb:bb:43:9c:f4:b1:64:28:d6:1b:20:
f6:a7:35:b8:11:d5:06:c4:0e:71:59:06:40:c7:00:
b6:35:31:b8:60:fa:fe:53:13:d3:eb:1d:cd:47:af:
1b:8b:44:5b:06:42:03:f2:b6:3e:ae:20:f0:69:85:
25:a7:10:49:83:1c:b2:43:7b:c7:2b:7d:09:6e:5a:
f2:c3:1f:25:d2:7b:6b:16:77:17:9f:e6:ae:01:2c:
a4:8b:2f:eb:28:9f:32:42:bd:79:2c:f3:dc:b4:c9:
21:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:0E:58:DD:78:CE:C4:3C:DE:87:B0:C0:33:79:11:46:D1:1C:22:BE
X509v3 Authority Key Identifier:
keyid:55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/QA5Y3XjOxDzeh7DAM3kRRtEcIr4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.168.192.0/20
Signature Algorithm: sha256WithRSAEncryption
da:c1:32:32:c7:35:13:eb:c0:50:e1:d5:dd:fc:0c:22:b1:3f:
bf:24:b7:aa:bf:e2:b0:75:06:ce:e3:94:10:fa:ca:fc:c4:bc:
f7:bb:30:c6:bf:82:3e:15:a0:36:6a:5c:27:6b:50:e2:8d:36:
9e:e7:52:fb:f9:5f:79:60:bc:91:0f:23:24:68:78:09:a1:95:
2e:0c:7b:60:3f:71:ce:ad:e0:68:7c:41:b4:22:ae:ba:cd:be:
4a:a3:74:08:37:b3:64:ad:d8:52:d5:ae:8c:cf:71:9b:e8:86:
02:9a:ab:8d:8a:11:f7:97:8a:1d:03:09:61:65:8b:54:33:c6:
d7:f2:82:0a:4c:7b:88:a9:49:69:9c:8b:d2:20:f7:f8:4d:05:
14:80:6c:f9:42:25:ad:6e:99:e0:81:b8:ec:05:34:ce:3e:ed:
b7:02:b3:b5:de:dc:2b:2a:ab:4e:9e:7c:52:22:f0:a8:7a:3e:
93:ea:9d:2c:22:f8:b8:4e:6f:f7:f4:4d:ff:c2:7f:70:76:ec:
12:39:fb:15:3c:a0:6c:63:3e:e2:5b:27:6f:fa:b8:f5:2c:c4:
87:e3:fd:07:9d:a5:73:16:a9:f2:57:ef:d7:b6:41:42:ee:86:
31:b0:8c:46:dd:9d:01:f1:ed:09:a4:19:86:91:d9:06:6c:af:
af:17:08:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org