Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EASPNET/RMLpfmsib1ur-BP7wxt1LWAQul0.roa
File: RMLpfmsib1ur-BP7wxt1LWAQul0.roa (raw, json)
Hash identifier: n1kdk4FzGg8OMIdeSOWWJArFDGlZJ5cEix/tJ4rqLEk=
Subject key identifier: 44:C2:E9:7E:6B:22:6F:5B:AB:F8:13:FB:C3:1B:75:2D:60:10:BA:5D
Certificate issuer: /CN=552B16164C361040D88F32D36509448CF3BB9D25
Certificate serial: 0B37
Authority key identifier: 55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/RMLpfmsib1ur-BP7wxt1LWAQul0.roa
Signing time: Fri 01 Sep 2023 08:38:52 +0000
ROA not before: Fri 01 Sep 2023 08:38:52 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 10135
IP address blocks: 49.128.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2871 (0xb37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=552B16164C361040D88F32D36509448CF3BB9D25
Validity
Not Before: Sep 1 08:38:52 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=44C2E97E6B226F5BABF813FBC31B752D6010BA5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9d:69:b5:24:28:02:2b:b3:f5:1d:fd:f3:ca:
9f:00:38:59:2c:ca:ff:43:f6:d0:c9:25:e7:58:13:
89:71:aa:a6:78:d6:e2:7f:b6:de:43:69:9b:6a:33:
e6:96:8f:d6:f4:d5:95:c1:49:e5:25:d2:27:e3:5f:
96:90:00:ed:62:9a:fd:e2:52:7d:a7:6d:65:5a:20:
d3:df:e5:88:09:e7:28:22:79:51:6b:e5:64:eb:b6:
4c:8a:6b:5c:1a:88:e0:0d:5f:21:0b:fb:f0:17:04:
99:b0:1b:dd:1b:96:b0:5c:6d:e1:b5:2a:04:46:23:
db:41:c7:20:17:21:29:00:16:11:f7:97:98:47:a2:
2c:e7:43:ad:ab:55:6e:24:b6:e7:9a:6a:1b:2c:01:
6d:36:ba:83:52:08:5a:57:e9:d8:a3:8c:f4:3a:46:
7f:5b:bf:2c:51:c2:1f:f8:f6:ac:d3:9d:5c:56:27:
33:30:bc:cb:2a:0a:db:58:c4:95:51:99:ad:73:5e:
50:3f:c6:40:38:ce:63:ec:b6:91:41:7b:22:e5:1a:
08:d9:85:f0:6c:84:13:bd:66:47:c8:4d:37:2e:18:
f6:fb:b7:df:19:95:a5:59:2b:11:82:d1:b8:c4:0b:
52:94:04:8e:73:c8:75:6a:09:d2:ee:51:0f:96:2f:
7d:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:C2:E9:7E:6B:22:6F:5B:AB:F8:13:FB:C3:1B:75:2D:60:10:BA:5D
X509v3 Authority Key Identifier:
keyid:55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/RMLpfmsib1ur-BP7wxt1LWAQul0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.128.112.0/20
Signature Algorithm: sha256WithRSAEncryption
72:4e:38:29:e6:16:c3:a0:d0:fc:46:14:d1:4b:ef:24:a2:09:
93:77:a1:01:d5:9b:44:16:b5:4f:32:00:8e:22:64:9f:2c:3e:
db:b6:70:bb:a1:98:76:e0:f1:9a:cc:4b:94:89:ab:b0:26:d1:
3b:e7:44:53:6e:76:26:cb:fb:18:d3:a8:ce:8a:48:21:61:fd:
14:97:c9:57:10:70:ca:35:41:89:19:a3:d6:5a:2c:87:64:b9:
24:c1:82:68:0d:cc:ce:89:0a:8d:be:da:6c:e7:bc:c8:2b:81:
9f:a9:07:10:f3:81:d1:0b:b5:5a:99:7b:21:4a:2e:03:d6:d0:
6b:77:1a:13:03:96:a7:4c:83:6e:92:a8:5e:52:9e:36:95:64:
cc:1f:8b:1f:04:20:80:2b:1c:86:d2:c1:cd:8a:66:06:c1:e3:
ec:30:b4:c4:69:57:ed:9a:81:cc:c9:eb:14:15:84:1c:a0:df:
db:97:8d:d3:92:94:8b:6c:a7:13:c7:b9:32:54:0f:1d:0d:bd:
9a:d6:2e:46:40:88:61:3d:a1:3b:39:6f:c5:ed:f1:ad:60:34:
79:2e:bc:1d:78:02:cd:59:64:54:43:cd:6e:1b:57:28:45:61:
75:a4:ba:55:ac:95:1c:3a:31:00:85:fd:67:fb:40:6d:3e:c5:
2b:88:86:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:31:34 2025 by rpki-client