Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/8-czXvl1U-crxb1f-evCPMWcCrI.roa
File: 8-czXvl1U-crxb1f-evCPMWcCrI.roa (raw, json)
Hash identifier: AxqL1tIqIN6KESQcz2Nb3pwATwfc1LuQbNGawg3JftA=
Subject key identifier: F3:E7:33:5E:F9:75:53:E7:2B:C5:BD:5F:F9:EB:C2:3C:C5:9C:0A:B2
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0AE8
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/8-czXvl1U-crxb1f-evCPMWcCrI.roa
Signing time: Thu 15 Sep 2022 02:40:53 +0000
ROA not before: Thu 15 Sep 2022 02:40:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9416
IP address blocks: 220.157.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2792 (0xae8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 15 02:40:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F3E7335EF97553E72BC5BD5FF9EBC23CC59C0AB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:eb:66:05:45:31:41:d5:ec:c4:c5:5f:6f:cb:
f7:b7:3b:37:a6:82:c9:a8:b0:33:bd:14:08:de:78:
c9:f8:88:94:7d:a5:77:b4:28:4f:72:5a:8d:aa:e2:
6d:6f:9f:a1:24:f9:e3:09:a1:d3:e6:cd:1b:93:59:
b6:88:11:2c:55:1c:e2:f1:3f:a7:8b:03:e4:25:80:
6e:f9:ab:b2:73:db:2c:fb:0f:ce:e2:90:92:d5:db:
e8:82:4c:ac:6d:57:3f:39:07:ba:8a:0f:8b:c0:b4:
38:70:8d:1b:74:66:16:9e:fe:c8:33:36:7d:5d:57:
bc:dc:08:99:8e:39:82:66:f5:0f:6b:48:44:65:5a:
69:d2:2d:e2:bf:42:cc:a9:52:6e:0f:dd:84:fe:92:
b7:1b:a5:ce:62:60:27:53:15:0f:25:96:46:3e:35:
3c:63:cf:2b:fe:a0:79:b3:1b:86:9b:8d:ce:37:37:
90:02:9f:f3:1a:ba:28:16:0c:e3:49:cb:a8:92:ee:
ea:2c:5c:fa:36:2b:56:80:b8:7b:a4:cd:b0:95:83:
79:73:d9:6e:34:69:ac:13:a9:6c:88:98:29:cd:d0:
60:65:cc:c9:d8:0d:ff:59:48:92:a0:c1:03:ea:7e:
0f:8f:e5:20:c1:a9:2a:db:9a:53:cd:fb:78:7b:a5:
01:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:E7:33:5E:F9:75:53:E7:2B:C5:BD:5F:F9:EB:C2:3C:C5:9C:0A:B2
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/8-czXvl1U-crxb1f-evCPMWcCrI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.157.112.0/20
Signature Algorithm: sha256WithRSAEncryption
41:a5:0b:be:21:4d:97:af:3e:b5:4d:42:01:14:73:2f:1e:ff:
7f:e5:70:82:d4:c6:90:1d:70:29:ca:7c:22:64:b3:8c:82:b4:
b3:94:4b:4d:b1:00:3f:82:7b:9c:12:8f:9f:bd:9a:bf:da:44:
af:7f:90:2f:a4:3b:54:61:d7:09:d3:2c:29:79:8b:64:17:3f:
b8:9a:61:6e:23:8a:d4:bd:c3:60:50:6b:e8:60:b7:31:43:23:
e5:4b:53:6f:6b:a0:cf:f2:38:b2:9b:06:23:ea:d7:5d:91:e0:
bc:ef:35:8f:74:53:f0:e8:de:20:30:9f:6a:2e:b1:17:f2:a9:
ca:3a:f2:82:83:53:d5:a1:1b:1b:df:bd:f7:5c:0c:a5:df:f1:
88:9a:81:70:69:93:6d:f7:6d:db:cd:b2:0a:9e:44:0c:c9:78:
cc:75:19:2f:1e:38:d0:ff:47:03:8c:66:07:19:8a:6a:31:12:
73:78:c2:2e:70:4a:0a:2a:1e:c6:eb:8c:67:2b:87:f2:e1:6a:
4a:36:4d:27:ae:54:9e:f7:59:84:39:b9:a3:c3:6f:9c:85:d0:
8a:f1:55:7c:4b:fc:9c:48:d2:2d:6d:2d:b4:af:76:fa:83:2e:
b8:b6:e2:5f:09:b6:35:ce:4b:8f:e4:11:69:d7:4f:85:88:23:
f8:dd:93:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org