Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/ALaZeUTmW9iA9ZhEQ1VGNaFswQk.roa
File: ALaZeUTmW9iA9ZhEQ1VGNaFswQk.roa (raw, json)
Hash identifier: +zOJoXRdw+KsLlcDn2VT3KSjcSsaeouCsVEqItXUiTI=
Subject key identifier: 00:B6:99:79:44:E6:5B:D8:80:F5:98:44:43:55:46:35:A1:6C:C1:09
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0BF1
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/ALaZeUTmW9iA9ZhEQ1VGNaFswQk.roa
Signing time: Fri 01 Sep 2023 09:11:46 +0000
ROA not before: Fri 01 Sep 2023 09:11:46 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18042
IP address blocks: 124.155.128.0/19 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3057 (0xbf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 1 09:11:46 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=00B6997944E65BD880F5984443554635A16CC109
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0b:1f:06:4a:24:f0:fc:1e:bc:c1:54:16:56:
ec:5d:85:e6:7e:60:ae:22:82:a2:ac:d4:cb:d7:58:
65:e6:a2:e3:95:74:d5:7c:da:bd:4d:c8:4c:6f:8a:
bc:c9:7a:5a:d5:02:51:1c:fa:8a:18:c9:33:28:e4:
37:16:b7:94:66:ee:f1:2f:a0:d4:ab:e9:af:24:75:
61:a1:1e:67:4c:3b:fe:59:62:81:88:56:59:73:a5:
76:52:40:97:f8:78:8e:a5:1e:f2:25:30:a1:a0:0d:
38:27:eb:2c:1e:bf:2d:3e:87:02:ac:c7:12:e3:66:
94:f7:c7:2b:9e:48:3f:a2:2d:82:2a:c1:94:70:23:
30:3f:0b:7a:45:cb:8e:66:06:00:4a:d2:f6:44:e6:
10:3d:4a:89:74:97:6a:3f:a2:9d:85:0e:aa:03:34:
54:f6:55:9a:c1:d7:57:ce:1f:8d:29:53:8c:cf:85:
f5:18:59:a3:27:2e:2a:9c:6b:17:83:e6:30:37:99:
8f:ac:72:a8:27:7e:af:86:31:0a:00:66:b6:f4:7a:
31:f2:a1:49:c4:c5:90:49:b2:09:1a:ac:c7:e5:8d:
8a:c8:2c:84:69:58:6d:fa:1c:a1:12:2c:5d:fb:61:
e9:70:28:1a:de:5d:03:29:6c:eb:ec:45:52:65:3b:
bd:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:B6:99:79:44:E6:5B:D8:80:F5:98:44:43:55:46:35:A1:6C:C1:09
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/ALaZeUTmW9iA9ZhEQ1VGNaFswQk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.155.128.0/19
Signature Algorithm: sha256WithRSAEncryption
53:2d:e6:3c:04:7b:5c:94:37:0e:35:46:e5:89:1c:8c:ed:ed:
f3:84:27:f0:17:fd:09:89:80:87:07:83:a8:80:75:38:98:87:
96:22:55:57:61:a3:ab:61:8a:f7:d8:51:9f:73:96:7d:0a:35:
84:42:ea:46:19:b1:62:ba:e8:37:cb:50:f5:a6:23:92:f4:bc:
a6:7a:b6:45:7a:95:39:fa:bc:b3:e5:a1:e1:97:08:4c:e5:7d:
ca:a6:17:8a:cf:db:b5:be:2d:e6:5f:fa:57:ff:55:8c:f0:c7:
c0:c1:ca:31:df:cd:6b:6f:34:f2:4a:80:fa:e6:02:d8:41:7a:
30:d8:dc:bb:1d:9d:a3:8d:7f:37:33:fb:ab:1f:70:92:6f:a9:
82:ee:74:c8:d9:c3:5e:eb:28:5c:b4:45:53:64:74:2d:41:b9:
59:14:f4:a2:bc:9e:96:49:a2:c8:c5:0d:7d:20:eb:e3:81:31:
28:a4:f3:b6:60:f6:c4:d4:65:7f:bf:d3:1d:31:77:0a:bc:38:
fa:6b:2e:7b:31:df:f9:c8:2d:64:68:1d:51:fc:91:76:fe:5f:
ca:a0:1e:21:bf:f8:3f:84:3b:72:2a:ca:ea:5d:5d:c5:eb:7a:
b8:17:99:c8:75:c5:fd:8c:f2:f1:51:0a:f1:a1:2e:8c:58:98:
9b:f0:a5:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:37:39 2025 by rpki-client