Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/Ac4RSYO4W1aBIxjhQdxQigvAkm0.roa
File: Ac4RSYO4W1aBIxjhQdxQigvAkm0.roa (raw, json)
Hash identifier: ErH1ofxh+oWw5yfcCyfdv0zBcHfMQsAjNABvuf0XB68=
Subject key identifier: 01:CE:11:49:83:B8:5B:56:81:23:18:E1:41:DC:50:8A:0B:C0:92:6D
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 08FB
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/Ac4RSYO4W1aBIxjhQdxQigvAkm0.roa
Signing time: Sun 07 Feb 2021 11:54:15 +0000
ROA not before: Sun 07 Feb 2021 11:54:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9416
IP address blocks: 115.43.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2299 (0x8fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Feb 7 11:54:15 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=01CE114983B85B56812318E141DC508A0BC0926D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:81:69:14:1c:65:b3:1f:60:87:06:fb:dd:51:
3a:86:dd:45:be:b5:48:fc:a4:44:69:ed:98:69:8b:
98:32:58:38:19:7b:bc:c3:c7:de:3d:93:af:34:17:
78:1a:78:ea:c6:28:31:58:6d:5b:83:9f:c0:d7:08:
18:e2:9e:d0:10:19:f2:99:b9:6e:f9:04:e5:cb:b6:
72:3a:09:bf:f0:61:86:59:93:df:ac:0c:c7:cf:31:
cc:64:05:ac:20:00:c7:67:20:89:92:68:12:2e:67:
21:54:07:a3:a7:25:8c:cf:9e:48:e6:c0:60:a3:1d:
4f:ac:bc:91:b3:92:a8:b7:af:6e:e9:9d:64:aa:2c:
4a:16:d2:5a:fb:91:ea:79:e0:87:20:f6:83:ee:6d:
89:9a:cd:40:d4:f7:f4:d8:04:40:c8:6b:eb:4e:39:
93:48:eb:e9:a0:d0:b2:dd:28:31:bb:84:9d:3f:4d:
fb:de:cf:f3:c8:a7:19:f2:26:d8:7d:b0:a7:fd:aa:
10:a3:26:7a:62:54:d2:0a:e2:ae:96:db:7b:2b:aa:
c3:88:fa:5f:24:b9:d2:e6:f7:cc:e6:e1:bc:2e:bc:
cf:6a:53:a9:3a:1e:22:d9:8d:9e:07:c9:b0:db:84:
e5:58:cc:25:26:82:19:13:91:1f:7d:f9:d5:35:8e:
6d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:CE:11:49:83:B8:5B:56:81:23:18:E1:41:DC:50:8A:0B:C0:92:6D
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/Ac4RSYO4W1aBIxjhQdxQigvAkm0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.43.128.0/17
Signature Algorithm: sha256WithRSAEncryption
1b:26:b8:d0:36:98:91:bb:a5:58:e5:84:18:47:08:83:a3:38:
92:31:af:5c:ab:2d:e1:68:e1:4a:78:18:1d:a4:28:01:fe:86:
3e:dc:80:12:5a:c7:63:a7:2a:fd:07:07:2b:85:3f:b6:03:c8:
4a:bd:ce:fb:bc:56:6c:74:57:fa:45:58:19:b4:8c:28:1f:4c:
60:bb:7b:47:b5:13:3e:cf:22:f6:c6:d0:5c:17:f8:cc:cc:98:
1b:71:d2:d5:82:2f:29:98:da:4e:e6:b4:f8:d4:7f:ab:c8:f3:
34:0f:34:28:86:5d:c0:26:cf:3a:c4:1b:44:99:99:09:28:91:
3e:a4:ee:62:71:3d:74:f1:3e:76:3f:c8:88:6d:ab:c1:52:78:
c1:47:df:8b:ea:fa:82:ed:34:a2:db:72:0b:cf:b7:1a:bd:05:
f0:ec:c0:88:a6:47:40:b4:28:72:f6:a1:41:c6:e0:1f:24:c6:
99:db:bc:2d:ea:53:39:40:0d:ec:33:75:dd:23:ad:0a:d1:f9:
de:ad:16:4d:cb:1d:a3:0b:f2:26:51:d9:d8:da:0b:7b:20:61:
47:3e:b3:8d:99:03:4f:30:10:4b:16:f1:c0:66:bf:07:a4:81:
85:e4:90:41:cc:e8:10:dc:c3:98:d3:33:08:10:4c:ec:59:cf:
69:58:0b:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:14 2025 by rpki-client