Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/7xPTWeL1rXfUIAHQ8DGPV8nZeqE.roa
File: 7xPTWeL1rXfUIAHQ8DGPV8nZeqE.roa (raw, json)
Hash identifier: WwK3FdSu6iOkXrV10YK2NLSiT3iT4d0FaRTSBP15ygs=
Subject key identifier: EF:13:D3:59:E2:F5:AD:77:D4:20:01:D0:F0:31:8F:57:C9:D9:7A:A1
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0913
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/7xPTWeL1rXfUIAHQ8DGPV8nZeqE.roa
Signing time: Sun 07 Feb 2021 13:07:43 +0000
ROA not before: Sun 07 Feb 2021 13:07:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 123.252.48.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2323 (0x913)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Feb 7 13:07:43 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EF13D359E2F5AD77D42001D0F0318F57C9D97AA1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:82:0b:82:95:83:ba:26:e3:22:0b:3e:95:a3:
b5:bb:ee:99:c9:e3:03:12:17:ca:48:7e:43:76:b7:
ea:19:f7:f2:8f:99:16:e5:6b:b0:88:c6:b5:b1:8d:
89:43:a3:84:86:e9:c3:a6:72:72:f5:f6:af:ec:73:
ad:b3:a6:e5:bc:49:27:df:45:9d:65:c2:f6:f4:de:
43:d1:b3:6c:72:ed:92:ef:29:68:21:bb:bb:b0:41:
4b:dd:14:46:d8:61:44:cd:b4:f5:34:86:73:2d:7d:
02:e5:08:e5:b7:dc:3d:7e:1e:6a:75:58:fe:6c:0c:
5f:bf:78:3b:55:d3:3f:35:2a:cf:b7:39:5b:a0:2e:
4c:a3:99:fa:0e:a5:e3:71:08:9b:f4:75:38:9b:3e:
6e:07:ff:61:f4:1b:60:e3:47:5a:c1:f1:56:7c:7b:
c5:28:26:9c:17:00:38:c9:e8:59:2b:32:4b:e7:e9:
a7:bb:b2:77:1e:c3:29:e6:24:57:c3:04:d0:64:eb:
bd:6a:d0:17:b2:09:75:b7:bb:d3:f1:1b:70:1b:d1:
de:ea:e0:f4:6a:0a:40:19:30:30:b8:50:7e:49:b1:
e4:17:75:60:ef:07:a0:77:dc:2d:0a:fa:dc:5c:33:
fe:f0:59:75:60:f1:24:56:33:64:82:9e:dd:cc:eb:
41:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:13:D3:59:E2:F5:AD:77:D4:20:01:D0:F0:31:8F:57:C9:D9:7A:A1
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/7xPTWeL1rXfUIAHQ8DGPV8nZeqE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.252.48.0/20
Signature Algorithm: sha256WithRSAEncryption
20:be:51:44:87:e0:3a:95:43:a6:b9:29:22:df:e3:df:3c:a7:
34:b3:e0:0c:50:56:bb:ca:a3:c4:79:50:53:8c:ee:b8:4f:8d:
a8:7c:2e:da:48:42:3b:55:2c:41:7d:96:58:b2:d2:e8:d4:16:
0d:6f:db:27:c7:bf:4b:1a:e4:e8:f2:00:c7:6a:36:c3:29:5e:
e4:e4:57:e0:01:3b:39:dc:79:23:d8:99:dc:f8:81:6a:e1:b5:
73:94:a0:a1:45:69:90:9d:fa:01:27:80:b5:16:dc:cc:c0:96:
a4:b7:c0:3c:01:66:16:b3:86:0d:e2:70:00:8f:49:a9:b5:7a:
35:c0:4c:f6:25:1e:7e:27:6e:bf:3b:4f:45:5a:6f:36:20:75:
32:71:61:f3:a1:34:e7:1d:6c:e1:74:f1:66:59:0c:59:97:8d:
39:24:eb:37:ac:61:3c:01:7e:66:1b:e2:53:d4:6a:6d:07:c7:
ba:d3:f4:72:de:d5:8b:b1:48:06:ce:d4:7b:63:b3:3a:97:ab:
01:1d:63:c9:ed:ba:94:ca:06:a8:74:3e:13:53:77:0d:76:73:
bf:65:51:ee:b5:ff:75:5e:dc:59:89:70:a2:da:32:ec:e8:ba:
52:52:17:d0:8c:4c:52:4a:cc:e0:9c:04:4c:a2:2f:e5:cf:0e:
b3:42:1d:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org