Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EASPNET/kpbF0XSsSDvDEZ6ICZF90ZpIoys.roa
File: kpbF0XSsSDvDEZ6ICZF90ZpIoys.roa (raw, json)
Hash identifier: WHiN4Wy2RImW1vrMw0At4sMK0OQ0JgDLB3n+QDXYLM0=
Subject key identifier: 92:96:C5:D1:74:AC:48:3B:C3:11:9E:88:09:91:7D:D1:9A:48:A3:2B
Certificate issuer: /CN=552B16164C361040D88F32D36509448CF3BB9D25
Certificate serial: 0775
Authority key identifier: 55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/kpbF0XSsSDvDEZ6ICZF90ZpIoys.roa
Signing time: Tue 29 Sep 2020 10:00:11 +0000
ROA not before: Tue 29 Sep 2020 10:00:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10135
IP address blocks: 61.64.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1909 (0x775)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=552B16164C361040D88F32D36509448CF3BB9D25
Validity
Not Before: Sep 29 10:00:11 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9296C5D174AC483BC3119E8809917DD19A48A32B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a5:33:9d:fb:06:8e:1a:1a:05:a7:5d:67:23:
52:47:8a:eb:36:40:1e:61:dd:ca:93:53:53:a4:ae:
c8:c1:d7:d1:58:4a:54:d6:30:3d:68:96:36:e8:8b:
42:41:13:05:93:8d:fe:b6:7e:1d:c2:db:d1:05:40:
7c:05:64:b0:b6:5d:3e:6a:e6:5c:22:14:7b:28:7c:
59:c8:55:a8:22:30:cc:ca:e4:68:cb:d2:53:28:f6:
48:c3:39:f3:84:03:d2:67:62:66:91:49:68:91:0e:
2f:e7:24:24:98:9c:83:59:fd:08:d5:1d:00:71:34:
c3:b9:03:18:ec:05:ef:e3:aa:76:59:a4:0a:23:09:
02:be:ae:6d:64:85:ac:a9:79:a8:5b:5b:57:a9:43:
14:eb:63:35:91:2b:06:f2:eb:29:b0:2f:8b:1b:b9:
57:4f:32:13:ca:f0:42:7c:53:57:69:19:66:0d:be:
76:e5:57:9f:e7:1f:1f:8e:3c:1f:ac:ef:d3:fc:65:
e1:77:b2:28:6f:a3:bd:0d:31:61:2f:da:75:e3:d2:
f5:95:fa:d6:36:50:2e:57:80:5b:55:1c:da:0d:b8:
55:11:20:b7:e2:a7:d3:36:21:db:00:af:37:37:8a:
a2:aa:3b:29:ba:44:18:5c:96:5e:d8:69:16:cd:89:
85:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:96:C5:D1:74:AC:48:3B:C3:11:9E:88:09:91:7D:D1:9A:48:A3:2B
X509v3 Authority Key Identifier:
keyid:55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/kpbF0XSsSDvDEZ6ICZF90ZpIoys.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.64.48.0/20
Signature Algorithm: sha256WithRSAEncryption
5e:d2:18:a9:17:a6:f7:ad:ce:9a:cd:76:72:2d:b8:99:57:a0:
06:18:2d:35:71:37:3a:8d:33:71:38:a2:70:c8:ab:5c:c3:27:
1b:19:a4:db:85:18:ec:67:a7:39:ca:85:70:22:f2:0b:63:64:
14:82:a5:d2:16:45:54:74:2c:34:80:aa:9c:d9:7e:39:2d:65:
24:bf:68:26:4f:12:e9:f0:2e:ee:e3:68:75:65:0d:39:7f:2f:
3e:59:64:db:8b:8b:a4:d8:a1:16:6b:70:00:2c:e4:7f:71:12:
09:f3:ca:82:44:43:f4:31:c7:80:3d:ec:9e:ed:ba:ab:96:5d:
56:29:6f:4f:68:29:6c:36:a2:73:c2:81:24:bb:98:37:66:26:
26:a5:16:2e:de:37:aa:39:f7:88:8d:d5:fe:9d:1a:aa:d6:b3:
6a:90:07:41:1e:97:d1:c0:c4:10:85:db:e0:11:e7:8c:a5:06:
cb:7a:fd:0c:76:9d:9c:b7:24:08:43:c5:cb:2e:4c:b7:1c:c7:
12:af:58:61:3d:c8:33:ee:90:88:f3:68:1d:fd:83:3f:be:00:
1c:21:66:d6:7b:a5:8c:c6:83:65:9c:7b:a7:01:ae:25:fd:c4:
30:cb:ef:db:48:3c:0e:15:4a:90:f9:d9:41:ca:ef:3a:80:1a:
4c:15:4f:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org