Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EASPNET/iZqz4t2ktAy6b-sLGinXq2BKMLc.roa
File: iZqz4t2ktAy6b-sLGinXq2BKMLc.roa (raw, json)
Hash identifier: 9B5O02sSaHNdiC/PEyR0auWFW4yz64f+aKifkFNvqf8=
Subject key identifier: 89:9A:B3:E2:DD:A4:B4:0C:BA:6F:EB:0B:1A:29:D7:AB:60:4A:30:B7
Certificate issuer: /CN=552B16164C361040D88F32D36509448CF3BB9D25
Certificate serial: 08B1
Authority key identifier: 55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/iZqz4t2ktAy6b-sLGinXq2BKMLc.roa
Signing time: Sun 07 Feb 2021 11:54:32 +0000
ROA not before: Sun 07 Feb 2021 11:54:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10135
IP address blocks: 61.64.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2225 (0x8b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=552B16164C361040D88F32D36509448CF3BB9D25
Validity
Not Before: Feb 7 11:54:32 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=899AB3E2DDA4B40CBA6FEB0B1A29D7AB604A30B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:1c:6f:4e:c0:09:d1:2c:bb:af:a2:58:df:1e:
26:58:c8:f0:81:14:b6:0d:72:41:93:dd:bf:77:ab:
f8:db:76:3c:f4:5c:aa:92:07:dd:16:ff:7b:c8:84:
49:1b:25:f9:c2:b3:a2:45:86:ef:19:ca:8c:d1:cd:
cd:27:76:bd:70:d8:fb:e6:60:91:33:0b:44:ce:75:
85:af:87:03:a5:68:31:22:d7:7a:5d:cc:d3:11:68:
78:98:b2:22:0d:4b:e2:59:94:07:f8:39:75:1b:d8:
09:12:b6:16:c9:3c:1e:14:ea:ec:1b:46:ad:3e:af:
f7:bf:a1:d5:e7:b8:21:31:b7:4d:e1:5c:66:e2:52:
34:11:38:42:9b:c9:1c:34:0b:e5:d0:1e:ad:db:93:
7b:87:c3:e9:e1:b6:eb:36:83:a2:1b:8f:e6:df:01:
74:3f:d1:49:0c:e8:46:fa:7a:87:4b:f3:74:b6:5c:
82:06:19:d0:f6:37:54:ad:69:ee:5a:a1:59:ab:49:
ad:d4:24:7d:fd:51:d8:08:65:3d:25:f8:2b:03:39:
b6:45:88:5a:6b:0a:64:0a:0d:5a:2e:82:5e:35:f9:
80:88:fb:63:db:d7:20:2d:b4:34:c1:4a:77:dc:c7:
0e:73:7a:93:5b:66:d4:10:fa:11:c0:00:c6:0c:a1:
0c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:9A:B3:E2:DD:A4:B4:0C:BA:6F:EB:0B:1A:29:D7:AB:60:4A:30:B7
X509v3 Authority Key Identifier:
keyid:55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/iZqz4t2ktAy6b-sLGinXq2BKMLc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.64.48.0/20
Signature Algorithm: sha256WithRSAEncryption
2b:02:68:de:6e:01:21:6b:b9:05:18:8e:17:c2:9d:e7:a8:63:
fa:a7:5f:dc:ff:3a:d3:19:c9:f9:6e:3e:d2:57:ef:69:c3:bf:
5e:8a:2b:59:2e:14:6b:c5:5e:5e:b6:e1:5d:f7:59:b3:78:4d:
73:e8:2f:1b:ea:02:ea:be:9e:0a:a7:30:13:ea:59:c3:e7:eb:
a5:c0:be:79:c6:66:1d:97:30:e3:69:7b:03:da:92:a3:00:65:
57:06:71:09:ba:52:20:1f:6e:96:da:96:d2:5e:b3:9f:97:1d:
d8:b0:d5:d6:31:ab:e0:0b:fe:03:49:d6:2a:55:82:9d:68:8c:
db:81:b9:f7:54:3e:c3:ef:d1:bb:23:6d:bd:05:0f:71:f3:a3:
4b:72:7d:97:96:0d:53:6a:23:60:ae:dc:21:1d:5a:14:bd:9d:
46:05:f6:ae:ef:88:19:82:08:79:f5:19:98:50:bb:89:8f:99:
97:ca:2b:c5:90:8d:02:cd:56:bc:f3:2a:11:16:00:79:78:38:
e1:9b:56:51:37:c1:23:cd:b5:63:da:cf:04:06:93:c6:05:1d:
8c:c7:f3:63:af:32:89:bc:fe:42:2f:e0:d9:13:27:71:99:09:
9b:d7:88:5e:cb:10:e8:6b:4c:d1:58:71:b6:bf:d2:d7:9d:e3:
32:83:95:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org