Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EASPNET/R6cO1FUEKtkwZ-27OZKheallFK0.roa
File: R6cO1FUEKtkwZ-27OZKheallFK0.roa (raw, json)
Hash identifier: fiWK7qP9n1SGjJM4Yn2Jf2TXYUIz78aTSUu59XJjrrU=
Subject key identifier: 47:A7:0E:D4:55:04:2A:D9:30:67:ED:BB:39:92:A1:79:A9:65:14:AD
Certificate issuer: /CN=552B16164C361040D88F32D36509448CF3BB9D25
Certificate serial: 0953
Authority key identifier: 55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/R6cO1FUEKtkwZ-27OZKheallFK0.roa
Signing time: Wed 29 Sep 2021 02:52:40 +0000
ROA not before: Wed 29 Sep 2021 02:52:40 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 10135
IP address blocks: 49.128.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2387 (0x953)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=552B16164C361040D88F32D36509448CF3BB9D25
Validity
Not Before: Sep 29 02:52:40 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=47A70ED455042AD93067EDBB3992A179A96514AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:1b:c0:09:c9:d8:25:19:31:d2:12:8e:c8:90:
9f:68:af:98:74:0a:ee:05:de:6d:27:44:d5:ab:00:
08:d0:c9:0a:3c:14:a3:33:f0:b4:d0:52:c1:4a:f8:
f1:96:4e:ac:85:02:06:c2:5c:b4:ab:1b:84:1f:8b:
21:b8:c2:a0:c4:cd:f5:95:03:bd:4a:05:d5:06:ab:
77:ef:e5:0d:9c:74:bc:fa:70:9f:20:fa:da:e0:8c:
b8:f0:f4:ce:48:68:d4:5d:78:25:5e:45:87:bd:95:
e8:19:31:53:0e:7a:7a:4f:1c:10:41:4e:3a:e9:89:
5d:a0:8d:b8:94:48:5e:8a:8b:1d:bb:c4:bc:96:b9:
83:d5:26:e6:7b:0a:f6:9e:c0:b3:fa:8f:9b:da:89:
33:37:fc:3e:ec:5d:c8:e1:0a:47:70:5d:c3:17:aa:
40:53:38:3a:86:fe:47:25:4b:d5:f9:96:98:93:f4:
14:0e:3c:df:9b:dc:4c:8a:41:a6:bf:d0:0b:fe:b8:
69:b5:bf:52:a9:9f:f7:8f:1f:99:15:c8:ce:d6:0e:
bd:b1:c5:28:41:d9:d9:01:a9:59:18:c6:10:75:2f:
2e:30:86:f8:ce:bf:9d:96:2f:33:f2:cf:c1:64:08:
8d:57:c4:37:e9:56:82:4d:01:46:be:62:64:f3:28:
08:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:A7:0E:D4:55:04:2A:D9:30:67:ED:BB:39:92:A1:79:A9:65:14:AD
X509v3 Authority Key Identifier:
keyid:55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/R6cO1FUEKtkwZ-27OZKheallFK0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.128.112.0/20
Signature Algorithm: sha256WithRSAEncryption
54:7e:72:0b:f5:5d:57:24:7f:18:4e:6a:c2:a6:03:ae:6c:83:
f7:d9:f8:dc:0d:63:6e:11:32:f4:f7:5a:47:c0:83:2d:5d:0f:
14:83:76:84:a7:bc:f2:7c:0d:eb:17:81:53:ec:64:bd:12:92:
c9:c3:d1:b0:90:9d:29:73:5a:78:ab:02:e0:e4:dd:6c:7a:05:
13:0c:d4:67:b6:4f:1e:24:0a:e3:08:d6:80:13:78:8b:5e:ed:
ad:1c:8f:60:ad:47:e6:52:9d:12:de:31:1c:c8:11:51:17:ea:
07:fd:0e:46:b6:29:a7:e4:1a:e3:67:45:d7:e0:81:e7:ce:15:
9c:c2:31:53:69:72:ad:c5:c2:2a:16:32:c1:ca:a3:be:e2:b0:
61:81:f8:fa:5a:51:23:74:4f:73:a9:46:37:0c:6d:41:39:d4:
4f:c0:5c:80:8b:40:e8:5e:4e:fa:f0:e7:b4:ac:aa:24:54:c5:
9c:af:10:f0:f1:02:2c:64:7b:65:87:84:b9:5d:27:38:f1:4f:
16:e3:fc:14:40:ba:5a:27:8a:d7:a8:c8:cf:99:7a:7f:e0:02:
23:0b:40:83:dc:d6:59:70:ec:88:73:7f:c0:74:92:06:31:43:
f9:53:07:a2:a1:b0:02:5e:58:05:41:4b:f7:34:ac:a2:9d:cb:
6a:fa:3c:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:44 2025 by rpki-client