Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/1rCRSfXLhmOlSmBTFFMOGyXITEo.roa
File: 1rCRSfXLhmOlSmBTFFMOGyXITEo.roa (raw, json)
Hash identifier: UlaBNw/d7hi2raB5yQKBKKSEYZ4iD4+1TdybJHO4Lwk=
Subject key identifier: D6:B0:91:49:F5:CB:86:63:A5:4A:60:53:14:53:0E:1B:25:C8:4C:4A
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 08FD
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/1rCRSfXLhmOlSmBTFFMOGyXITEo.roa
Signing time: Sun 07 Feb 2021 11:54:16 +0000
ROA not before: Sun 07 Feb 2021 11:54:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9416
IP address blocks: 119.14.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2301 (0x8fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Feb 7 11:54:16 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D6B09149F5CB8663A54A605314530E1B25C84C4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:55:88:7e:b9:ff:af:2e:6d:35:d9:19:86:d8:
2b:85:17:c3:03:ce:e0:c2:ea:ed:13:91:fe:4e:db:
26:f8:88:91:95:4e:ab:41:d8:5f:68:c8:c5:95:77:
a2:9b:70:7d:66:01:3b:32:c8:db:01:83:8a:69:15:
46:49:f7:cc:4b:c0:b7:f0:82:42:26:79:46:c6:56:
ac:bb:b8:0f:dd:83:e6:7d:dd:93:4e:a2:f5:e2:d1:
f6:8a:fe:9a:1a:ca:0b:b7:84:d1:00:4a:67:b2:dd:
0b:d4:54:86:22:80:f5:bd:b5:75:a3:41:cc:b3:b6:
50:1c:bd:5f:65:06:7d:4b:df:df:c3:39:2f:71:c7:
b7:a2:79:36:a8:49:31:7e:e5:87:47:28:eb:9c:c0:
34:96:7c:7b:ce:c9:89:68:2c:a8:6b:d4:55:91:13:
fd:86:7c:01:5e:40:d8:f9:2b:20:df:e1:65:ce:62:
79:36:69:95:f3:0c:40:78:de:57:c6:c3:5e:91:98:
b9:90:9a:67:56:56:d2:5c:48:c6:74:c7:eb:55:51:
a7:08:a4:78:21:45:a9:b9:5f:35:f1:45:0b:98:ba:
cb:49:38:18:dc:11:fd:12:b5:b4:e1:b0:39:1a:33:
1e:1f:cd:73:b0:cc:ab:5b:c9:b4:2f:a4:99:0b:ed:
d2:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:B0:91:49:F5:CB:86:63:A5:4A:60:53:14:53:0E:1B:25:C8:4C:4A
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/1rCRSfXLhmOlSmBTFFMOGyXITEo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.14.0.0/17
Signature Algorithm: sha256WithRSAEncryption
0b:3e:f6:3f:a8:d0:51:31:87:37:ba:88:9f:77:e1:ce:54:39:
73:7c:e6:52:5c:10:41:18:0f:43:21:72:77:2b:9e:83:87:7b:
fb:b8:83:57:10:36:c7:b9:84:24:1c:8b:68:68:f4:45:10:7f:
a6:2c:eb:b0:db:e0:59:8f:e4:94:0a:1b:6e:b7:c4:86:7e:af:
22:d5:5f:f7:3a:33:e2:21:89:c9:c7:c4:ff:c5:42:3b:24:1c:
d7:99:a7:42:2c:0a:33:65:a9:92:b9:49:a9:a4:42:81:37:58:
42:f9:ab:39:d3:a9:cf:6f:fb:eb:33:96:3a:cd:48:5a:33:77:
63:dd:05:0e:61:33:f2:33:c0:dc:fd:e2:6c:c8:df:20:be:94:
2f:28:43:39:26:3a:4c:65:34:b7:10:9b:2e:25:ff:34:79:2e:
c1:21:71:fd:20:2c:91:b0:f9:e5:05:af:58:3e:4f:04:15:bf:
d9:65:af:2f:ce:78:cd:89:82:a8:25:08:23:a1:9e:38:64:66:
21:7a:b4:8e:60:a2:97:b8:30:e9:c7:ee:4e:2d:ea:20:c3:ff:
22:4e:a9:b5:cf:00:6b:48:7a:42:0c:e5:33:21:b4:b0:62:1e:
65:cf:80:81:b4:da:f4:bd:76:f8:7a:31:94:58:69:56:27:8b:
d0:f7:65:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org