Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/5HKzkUgeuXtiHuaIpZIi_tr0MEU.roa
File: 5HKzkUgeuXtiHuaIpZIi_tr0MEU.roa (raw, json)
Hash identifier: O2BvRKz4evKZYpuMYBsBBR8Av6gpJ2OADa9ecebB6gY=
Subject key identifier: E4:72:B3:91:48:1E:B9:7B:62:1E:E6:88:A5:92:22:FE:DA:F4:30:45
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0AE8
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/5HKzkUgeuXtiHuaIpZIi_tr0MEU.roa
Signing time: Thu 15 Sep 2022 02:40:56 +0000
ROA not before: Thu 15 Sep 2022 02:40:56 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18042
IP address blocks: 119.14.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2792 (0xae8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 15 02:40:56 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E472B391481EB97B621EE688A59222FEDAF43045
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6a:3f:50:70:86:6c:dc:d3:b3:ae:d2:6a:5c:
8d:f7:17:01:36:d5:cb:63:77:4f:34:87:f2:5f:3f:
14:3e:4c:02:24:3f:dc:7b:0b:9a:9f:82:55:3c:95:
56:11:a2:54:84:aa:5c:ef:30:b9:81:7b:dc:f4:2a:
8d:6a:a5:f1:76:ea:0f:b4:33:18:17:a7:11:52:48:
62:9b:66:c1:dd:5b:13:9a:49:21:76:09:a3:47:e7:
97:e6:ce:c5:5d:fd:5b:60:8e:1c:2f:39:c6:1a:da:
2b:d7:94:07:06:4a:dc:0e:d9:41:4c:44:ff:a0:57:
0a:2b:15:8e:84:99:b9:48:d4:c5:0a:ac:f5:87:9b:
b4:ed:38:e2:2e:c2:ea:6d:c9:9b:85:62:c2:ec:9a:
55:e2:84:96:61:3e:d5:e4:a0:e6:d6:48:52:aa:bf:
19:e0:a6:4a:b4:9a:16:27:26:20:82:b5:fe:03:c1:
c3:99:55:ed:76:96:d1:0c:c9:ce:81:28:d8:31:c4:
75:0e:51:76:79:2f:6e:14:58:0a:da:71:82:90:35:
97:ed:50:f7:6d:b1:31:91:69:2d:af:a0:28:7d:0c:
49:dc:5f:cc:58:4c:b4:b1:13:49:63:fc:3f:3b:d4:
6b:ff:99:89:ff:9b:4a:83:80:51:f1:84:d6:43:04:
27:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:72:B3:91:48:1E:B9:7B:62:1E:E6:88:A5:92:22:FE:DA:F4:30:45
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/5HKzkUgeuXtiHuaIpZIi_tr0MEU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.14.128.0/17
Signature Algorithm: sha256WithRSAEncryption
9a:53:18:a2:aa:52:1a:bf:98:75:8b:30:ca:5e:51:70:c0:09:
cd:9e:a4:f4:50:f8:41:a7:a5:5c:5c:cc:ee:c1:01:fb:b6:62:
4a:c9:5c:66:d7:09:b6:43:b1:3b:19:ce:56:12:72:b0:a8:e3:
5e:cd:2b:a8:6c:58:4c:f6:4f:93:10:43:3a:1b:18:e8:04:71:
2d:cc:f3:dd:a1:b4:0e:eb:96:27:27:12:da:95:8d:1f:67:f7:
c2:ba:4a:10:5d:00:87:2c:b1:58:30:26:02:73:63:c7:ca:04:
78:5e:37:56:91:e8:0f:43:0b:c6:79:3f:49:7f:1c:a0:c6:b9:
95:20:ac:12:d3:b1:c3:2c:f3:79:39:fb:3c:9a:e4:7c:13:b2:
1a:75:2f:e8:7c:71:49:fd:ef:e5:6d:51:3f:d5:15:4b:9a:38:
ec:c1:0c:93:66:b8:b3:47:2b:14:70:10:b3:a5:d6:89:14:49:
fd:8a:b4:f7:32:41:37:53:b1:df:6f:53:9a:b3:bd:5e:77:cc:
0a:62:49:ab:84:48:7a:a4:02:0f:82:64:49:f7:3c:b9:e0:39:
70:d1:19:fa:e4:ab:f2:08:bd:e2:96:16:97:37:49:46:98:f9:
61:4e:d8:80:e6:fd:76:41:57:fc:71:29:f5:5c:d2:c9:f2:45:
a8:b9:ec:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:57:29 2025 by rpki-client