Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/7jMBRW4diouva6i5MupRJ1HjPso.roa
File: 7jMBRW4diouva6i5MupRJ1HjPso.roa (raw, json)
Hash identifier: eguWhf1WGRiFig+jU3/Np2nyrpHC3ALBDLCC93B2zrg=
Subject key identifier: EE:33:01:45:6E:1D:8A:8B:AF:6B:A8:B9:32:EA:51:27:51:E3:3E:CA
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 09EE
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/7jMBRW4diouva6i5MupRJ1HjPso.roa
Signing time: Wed 29 Sep 2021 02:40:35 +0000
ROA not before: Wed 29 Sep 2021 02:40:35 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9416
IP address blocks: 122.99.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2542 (0x9ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 29 02:40:35 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EE3301456E1D8A8BAF6BA8B932EA512751E33ECA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:77:ba:0b:40:91:42:5a:ce:c8:d8:d6:2d:e0:
c1:50:f6:18:ec:a2:da:59:c8:0a:74:41:e7:33:a7:
ba:5a:f8:d1:6b:7d:59:24:1b:27:b1:8f:7a:f3:de:
45:05:fd:eb:40:68:b1:0e:fb:48:d4:30:6d:81:e6:
d0:48:ea:26:eb:92:fa:b0:dd:c9:68:e0:52:38:e9:
91:2a:54:b1:b8:4b:57:11:24:cc:df:b5:63:29:d2:
f2:c2:6f:e7:34:68:8c:74:d4:2e:c8:ae:55:e6:c4:
68:78:f4:2a:ae:67:c7:9f:ef:d4:7d:73:19:93:60:
df:b3:df:3e:6d:97:71:16:3a:d9:b6:4d:70:55:28:
50:58:62:d4:89:c2:c8:e7:0e:ce:4a:9f:2d:50:d4:
bc:d7:80:1b:18:84:c4:d7:04:f9:3d:bb:c4:f9:84:
9b:98:75:02:0f:e9:d4:3d:34:c2:ce:67:8c:be:fe:
db:f8:db:f3:b9:e3:ee:fe:9f:5e:06:ed:a0:93:21:
1b:e5:72:5f:02:4d:82:6d:06:43:38:b2:e9:72:78:
89:56:d4:cb:5d:d3:ce:d2:6b:7b:64:2f:e7:67:9f:
6e:77:b9:f0:1c:ac:d9:14:50:b3:10:68:6b:d2:64:
ca:82:84:53:a9:29:0b:44:c4:52:05:f0:87:27:aa:
08:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:33:01:45:6E:1D:8A:8B:AF:6B:A8:B9:32:EA:51:27:51:E3:3E:CA
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/7jMBRW4diouva6i5MupRJ1HjPso.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.99.0.0/18
Signature Algorithm: sha256WithRSAEncryption
52:84:5d:a6:26:0b:b1:ac:43:3d:ab:82:79:e7:dc:ed:2a:7f:
df:dc:5d:87:8b:fe:de:32:80:01:b2:11:17:26:f5:8f:8a:a1:
af:98:3d:c4:34:10:a3:d1:3a:7d:0c:e8:e3:a0:44:fd:1b:eb:
fe:26:c9:89:e7:1b:6e:e6:9a:05:42:01:60:e5:b1:77:5c:91:
ff:61:94:1f:b2:c8:50:b5:a8:d8:ab:d3:bc:3c:6b:cc:b8:73:
24:07:cb:db:2c:49:cf:d4:7f:bb:6a:00:6f:8e:71:4e:e3:b7:
21:73:e2:fa:e9:0a:8f:61:47:17:41:ef:ab:bc:db:e6:ba:e0:
31:b5:30:04:6d:d9:fa:14:28:83:1f:78:6c:a7:20:e6:e5:4e:
f4:13:ce:da:77:32:0c:b5:d3:87:6d:80:29:5a:15:3c:16:b3:
b0:5c:13:d4:8f:48:fc:71:5e:b9:da:68:e7:3b:13:14:db:30:
37:1c:2d:13:5f:84:15:e0:54:35:ff:47:17:e8:8d:f4:ff:56:
8f:f7:b6:19:a9:53:b8:d5:3a:f3:8e:ab:77:8a:3c:86:51:49:
5e:74:da:87:a6:90:72:96:bd:68:50:27:23:ab:d0:05:97:46:
76:24:b2:23:a6:5e:42:37:55:00:74:0d:9f:db:27:17:5a:74:
d7:93:6e:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org