Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EASPNET/yllHQv4Q3WSidWXdAWRs7DJDm4o.roa
File: yllHQv4Q3WSidWXdAWRs7DJDm4o.roa (raw, json)
Hash identifier: upUfwub2ZXwIWHtLWWoHlMk0NzKd7aT3zKVLjCzrZRQ=
Subject key identifier: CA:59:47:42:FE:10:DD:64:A2:75:65:DD:01:64:6C:EC:32:43:9B:8A
Certificate issuer: /CN=552B16164C361040D88F32D36509448CF3BB9D25
Certificate serial: 0771
Authority key identifier: 55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/yllHQv4Q3WSidWXdAWRs7DJDm4o.roa
Signing time: Tue 29 Sep 2020 10:00:11 +0000
ROA not before: Tue 29 Sep 2020 10:00:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10135
IP address blocks: 49.128.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1905 (0x771)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=552B16164C361040D88F32D36509448CF3BB9D25
Validity
Not Before: Sep 29 10:00:11 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CA594742FE10DD64A27565DD01646CEC32439B8A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a4:69:1b:36:68:1a:fe:c1:da:7a:29:a3:d0:
0e:1b:86:5d:5a:c5:08:08:f6:24:66:e7:0a:7f:d1:
9f:65:b1:27:5a:c7:94:95:f2:84:46:86:9b:61:2b:
1c:f9:4a:98:81:77:06:36:e2:d8:d9:c0:63:3d:9f:
86:b3:2a:f4:96:54:17:24:c9:f8:a7:90:79:d0:96:
e3:a2:b1:1b:01:bf:bd:95:05:10:c0:5b:6c:2e:41:
e7:00:84:dc:ac:bb:4f:5d:b5:54:6f:aa:aa:fc:63:
3b:fb:c8:4c:d8:bc:f0:1a:d5:71:e5:45:cc:e2:d5:
45:8c:c2:7d:28:5a:ad:d5:28:80:0b:b9:e9:8f:3e:
65:60:fb:e1:6f:d7:da:bf:99:52:2b:1d:fc:71:2b:
b9:1a:14:3c:a5:d3:42:cf:35:7a:cc:d7:b2:50:33:
da:04:df:2a:fb:55:c2:dd:c4:2b:89:9f:f0:8e:61:
ca:1d:1d:62:b9:d8:82:73:4d:43:ae:17:2c:64:4e:
81:98:d7:1c:b8:37:af:7d:be:8d:a9:0a:58:24:e0:
2e:d9:b2:e0:7c:41:69:af:7f:c8:d9:54:82:dd:11:
28:bd:4c:7e:6f:e3:2e:1e:59:07:ca:6f:24:43:30:
35:79:28:d3:a4:2c:3f:c2:c4:9c:37:6d:f0:b5:61:
b3:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:59:47:42:FE:10:DD:64:A2:75:65:DD:01:64:6C:EC:32:43:9B:8A
X509v3 Authority Key Identifier:
keyid:55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/yllHQv4Q3WSidWXdAWRs7DJDm4o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.128.112.0/20
Signature Algorithm: sha256WithRSAEncryption
8a:35:3e:37:34:8d:f5:b2:e1:2f:85:f1:b6:94:b8:7b:94:56:
8b:3a:b9:89:b7:20:42:23:c5:16:8d:0c:53:23:94:7b:6c:4f:
22:fd:38:4d:7f:32:09:78:c2:9c:ca:9c:fc:d9:2d:a5:f9:5f:
22:5f:86:1d:2b:38:87:3e:de:07:91:51:01:33:d8:5b:09:45:
d4:9a:22:47:6b:9c:0a:ba:53:eb:ab:52:71:45:59:96:d7:30:
2a:07:cf:a4:4a:76:18:6d:66:99:d7:52:5a:bb:5f:a2:6f:70:
17:de:c8:ff:e8:61:8a:fc:b8:9a:d8:c5:71:cc:08:6b:52:a1:
29:b4:e8:10:ea:c2:43:01:d9:d0:da:e3:79:da:dc:bf:5b:2d:
59:70:f3:83:90:96:e6:e1:67:a0:d1:b2:67:3f:99:39:d4:61:
32:77:09:f0:a6:30:d7:64:dd:7d:ff:cc:e4:2f:00:32:0f:d4:
07:5f:ef:ca:d3:ba:01:1c:c9:3d:8e:30:a1:62:f6:ba:c9:d5:
24:db:a2:d8:8e:3f:d5:d4:26:1e:b6:06:7d:4a:c4:91:93:94:
e5:71:cd:e0:0e:29:0e:3b:fe:c2:39:e9:bc:31:86:3d:0d:a0:
e0:05:f5:94:a0:36:12:4f:8b:78:6a:e2:40:f9:6f:82:aa:ba:
d8:ab:63:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org