Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/VKc--ZpYpghBGDrC8kCq3ggW-K0.roa
File: VKc--ZpYpghBGDrC8kCq3ggW-K0.roa (raw, json)
Hash identifier: RUzPAh/ny/7y/ocvpBweR1dXGCxP9fpLc9w6l1T+rPY=
Subject key identifier: 54:A7:3E:F9:9A:58:A6:08:41:18:3A:C2:F2:40:AA:DE:08:16:F8:AD
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 09E8
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/VKc--ZpYpghBGDrC8kCq3ggW-K0.roa
Signing time: Sun 07 Feb 2021 12:39:27 +0000
ROA not before: Sun 07 Feb 2021 12:39:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131150
IP address blocks: 163.32.240.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2536 (0x9e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 7 12:39:27 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=54A73EF99A58A60841183AC2F240AADE0816F8AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a6:17:68:11:c4:6d:8e:ef:3b:8d:27:bb:dd:
b5:1d:b8:0a:63:ef:4b:d8:ee:00:f1:89:8f:fc:ba:
3f:96:8e:2f:b5:09:f2:21:ad:88:cd:95:d9:4d:ec:
49:03:30:66:ff:6b:28:18:bc:4c:4d:9d:0f:77:5d:
a7:71:76:2a:0a:c6:ad:c6:47:84:9c:7d:dd:67:50:
57:ed:d6:e5:26:08:a2:6a:91:8d:8c:a9:0d:03:61:
8f:ea:cf:f6:d9:4c:b5:85:41:5d:0b:73:5f:23:d3:
ae:f4:24:1f:cb:9c:db:85:74:2f:6c:f6:49:ef:9c:
33:b4:de:ec:7b:09:73:fd:ee:c6:d7:ed:e3:88:5c:
be:bc:8d:e4:e8:26:0d:b6:2f:78:aa:ce:90:7e:82:
bb:0b:eb:61:f9:d2:c1:e9:78:4e:49:a7:5f:cb:83:
4b:02:f3:26:f8:b8:24:3f:4f:c8:1a:a3:e9:7a:12:
04:59:2c:c6:43:80:67:e3:ba:8f:04:e5:6d:32:82:
14:b2:ca:2e:02:8b:0c:b4:87:93:fc:31:7a:b3:d3:
7e:ea:2c:c5:70:07:14:33:f7:57:c3:c9:8e:90:d6:
9b:09:3f:02:58:ab:d3:ab:94:7c:fb:36:de:4e:f0:
e5:ae:5b:8c:24:fc:5d:18:bd:59:5e:10:ff:d7:f4:
00:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:A7:3E:F9:9A:58:A6:08:41:18:3A:C2:F2:40:AA:DE:08:16:F8:AD
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/VKc--ZpYpghBGDrC8kCq3ggW-K0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.32.240.0/22
Signature Algorithm: sha256WithRSAEncryption
16:06:86:37:45:a4:a5:b8:fa:b5:df:6d:5d:98:5d:2e:fc:21:
13:ae:5f:75:0f:97:ca:d3:ca:39:74:ff:51:0a:2e:c3:7d:03:
bb:b3:e8:51:5d:e8:78:cf:13:2c:52:fc:84:1d:7e:72:f0:f4:
9e:1c:b8:a3:ae:4b:09:e0:ed:17:01:ed:ce:29:7a:c3:4e:23:
9a:07:a7:cd:81:06:aa:51:52:ed:7f:5f:7f:d2:5a:4d:69:2b:
25:34:46:c0:f1:26:dd:d5:a9:0c:57:a4:96:85:93:7b:8c:d8:
71:bc:16:99:13:7a:2c:88:74:33:b6:97:83:d9:bd:80:8f:9d:
6a:b1:7f:74:94:0e:9c:dc:e4:d0:b8:42:d2:3c:7a:2b:85:1d:
48:79:aa:ad:1f:27:c8:47:46:46:69:dd:9c:cd:c5:8f:f2:79:
41:58:2d:7a:7f:80:7f:38:01:67:f3:fb:10:83:64:2b:53:0f:
5d:d7:91:51:20:ce:e8:80:63:ea:ae:32:4c:12:1f:44:97:a4:
4f:64:6c:c9:29:55:30:ff:e9:42:08:08:0f:f7:82:56:9a:df:
71:e4:06:38:bb:9a:f9:ef:b3:a2:2b:63:8c:4c:02:4d:06:05:
95:9c:6c:22:d0:1d:db:ef:19:ed:34:2a:59:6a:72:d5:80:c2:
46:1a:ac:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:51:57 2025 by rpki-client