Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/1XvCRHZPneXZ1_yDTZ7ybApDF_E.roa
File: 1XvCRHZPneXZ1_yDTZ7ybApDF_E.roa (raw, json)
Hash identifier: II6a52CqOEeZKvNAt3nCa/QqSshgbv6boB3hWrMui+4=
Subject key identifier: D5:7B:C2:44:76:4F:9D:E5:D9:D7:FC:83:4D:9E:F2:6C:0A:43:17:F1
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0946
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/1XvCRHZPneXZ1_yDTZ7ybApDF_E.roa
Signing time: Wed 03 Mar 2021 01:59:36 +0000
ROA not before: Wed 03 Mar 2021 01:59:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18042
IP address blocks: 122.99.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2374 (0x946)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Mar 3 01:59:36 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D57BC244764F9DE5D9D7FC834D9EF26C0A4317F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3b:15:14:1e:68:fe:72:56:ed:8c:7f:c2:f8:
c2:e0:0a:ae:6c:83:eb:59:f6:1f:08:d5:e7:e3:aa:
ae:d3:78:7b:80:dc:37:86:f0:89:f7:6f:89:72:5a:
a5:30:d1:00:f5:fd:e0:c8:52:00:9a:f8:f8:d1:6e:
64:76:fa:63:fa:90:9d:df:3a:48:4f:6a:dc:88:37:
62:d3:b4:0c:a5:58:3c:b3:e0:76:16:38:04:1e:0d:
70:40:c5:c6:69:0f:1e:51:d6:b7:b3:db:5d:e9:52:
ae:21:86:62:8f:eb:2d:e2:e5:af:c1:63:f6:10:26:
a9:46:e4:d5:0d:ce:03:1b:e9:3b:6e:9b:62:85:66:
18:f0:f2:30:b7:4c:07:ad:4d:f2:3f:d1:ba:67:a9:
aa:17:b3:02:ef:35:b8:7a:1d:26:5d:1f:81:f4:dc:
7c:77:c3:d8:e8:be:51:93:70:6a:69:fc:4a:82:d1:
97:31:0c:02:05:28:9c:32:dc:96:22:11:b3:77:a6:
38:20:ba:5e:53:88:a2:66:f3:17:0c:1f:76:d0:11:
ff:cd:96:ac:7c:ab:5c:89:c2:d8:69:e1:7b:0d:5c:
e3:dd:fa:ee:87:36:05:07:d5:5d:05:3f:c0:b7:98:
e8:5e:59:a2:7c:1e:07:aa:67:09:36:20:dc:a7:da:
11:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:7B:C2:44:76:4F:9D:E5:D9:D7:FC:83:4D:9E:F2:6C:0A:43:17:F1
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/1XvCRHZPneXZ1_yDTZ7ybApDF_E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.99.0.0/18
Signature Algorithm: sha256WithRSAEncryption
43:89:82:e4:b0:86:f5:8b:7c:7d:e9:d1:92:c8:1f:83:cb:82:
0e:79:70:24:44:31:fc:0a:5e:9b:a8:2f:0b:1f:03:95:72:da:
87:ce:5a:16:f8:1d:e1:2a:ae:c6:d6:9c:61:80:ee:b2:13:ee:
8f:3e:ea:e1:23:8e:d3:98:2e:c9:2c:10:47:d2:0c:83:10:6a:
23:94:4a:cb:31:d0:1f:4f:d8:f2:e7:a0:14:57:35:87:c9:7d:
a8:e0:32:85:49:04:e9:a1:2a:87:47:05:86:a9:af:9e:0f:80:
18:09:81:63:42:89:95:c7:91:4d:9d:ff:df:1c:60:5f:e4:b9:
35:4e:e4:f1:63:83:7f:c1:07:e0:81:ea:e2:7f:47:0e:fe:b2:
d9:7e:45:55:8d:ed:2d:5b:82:cd:29:b3:fe:93:f4:08:62:b9:
55:ba:e7:45:29:38:1b:1d:53:40:ea:28:44:2b:4d:5f:fe:84:
58:15:49:5f:37:53:39:71:25:86:ac:2e:e0:4d:7c:c1:44:ef:
b0:0d:01:bc:15:d5:0f:89:76:6e:56:79:49:7f:f4:9a:5a:23:
b9:f1:f5:72:d3:41:61:49:b5:30:9f:8e:fd:66:92:27:53:9c:
20:6f:02:76:0c:b0:30:83:cd:dc:83:ee:06:aa:0e:e1:17:81:
b6:92:b8:64
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICCUYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5
QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yMTAzMDMw
MTU5MzZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEQ1N0JDMjQ0NzY0RjlE
RTVEOUQ3RkM4MzREOUVGMjZDMEE0MzE3RjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCjOxUUHmj+clbtjH/C+MLgCq5sg+tZ9h8I1efjqq7TeHuA3DeG
8In3b4lyWqUw0QD1/eDIUgCa+PjRbmR2+mP6kJ3fOkhPatyIN2LTtAylWDyz4HYW
OAQeDXBAxcZpDx5R1rez213pUq4hhmKP6y3i5a/BY/YQJqlG5NUNzgMb6Ttum2KF
Zhjw8jC3TAetTfI/0bpnqaoXswLvNbh6HSZdH4H03Hx3w9jovlGTcGpp/EqC0Zcx
DAIFKJwy3JYiEbN3pjggul5TiKJm8xcMH3bQEf/Nlqx8q1yJwthp4XsNXOPd+u6H
NgUH1V0FP8C3mOheWaJ8HgeqZwk2INyn2hFRAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU1XvCRHZPneXZ1/yDTZ7ybApDF/EwHwYDVR0jBBgwFoAUmZu+Ex3100bydifM
T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H
L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HLzFYdkNSSFpQbmVYWjFfeURU
Wjd5YkFwREZfRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ6
YwAwDQYJKoZIhvcNAQELBQADggEBAEOJguSwhvWLfH3p0ZLIH4PLgg55cCREMfwK
XpuoLwsfA5Vy2ofOWhb4HeEqrsbWnGGA7rIT7o8+6uEjjtOYLsksEEfSDIMQaiOU
Sssx0B9P2PLnoBRXNYfJfajgMoVJBOmhKodHBYapr54PgBgJgWNCiZXHkU2d/98c
YF/kuTVO5PFjg3/BB+CB6uJ/Rw7+stl+RVWN7S1bgs0ps/6T9AhiuVW650UpOBsd
U0DqKEQrTV/+hFgVSV83UzlxJYasLuBNfMFE77ANAbwV1Q+Jdm5WeUl/9JpaI7nx
9XLTQWFJtTCfjv1mkidTnCBvAnYMsDCDzdyD7gaqDuEXgbaSuGQ=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:20 2025 by rpki-client