Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/DRGCfqvKLwof2x3eGewVGmPiWlM.roa
File: DRGCfqvKLwof2x3eGewVGmPiWlM.roa (raw, json)
Hash identifier: Fs7TvJ0XI8vVd98SSX+SInn+TJUa8LIzMBh2jokMJKk=
Subject key identifier: 0D:11:82:7E:AB:CA:2F:0A:1F:DB:1D:DE:19:EC:15:1A:63:E2:5A:53
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0AE8
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/DRGCfqvKLwof2x3eGewVGmPiWlM.roa
Signing time: Thu 15 Sep 2022 02:40:50 +0000
ROA not before: Thu 15 Sep 2022 02:40:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18042
IP address blocks: 119.14.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2792 (0xae8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 15 02:40:50 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0D11827EABCA2F0A1FDB1DDE19EC151A63E25A53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7c:f5:42:79:1f:e0:63:bf:37:bc:fe:fb:fa:
2f:5a:51:15:6d:55:32:31:00:78:60:38:1c:c6:33:
0c:cc:4b:13:4a:a8:f8:76:22:6e:7e:05:10:a7:52:
18:b4:ed:14:c2:13:b1:1d:d3:66:ae:73:d5:fd:5c:
03:73:31:aa:ae:15:33:66:1c:8f:d7:fe:f2:b0:16:
1e:67:91:58:9d:8a:14:10:74:fd:79:ad:1e:9f:2c:
a3:03:01:6f:a0:ae:80:00:d8:8a:c2:64:d1:f4:f7:
1b:6a:23:67:7f:52:f5:b5:4b:cf:2a:f6:70:3f:78:
01:63:f3:aa:22:0d:5d:12:5e:12:7c:1f:95:24:5b:
54:03:55:dd:cd:03:04:7d:24:06:14:56:1f:fc:3f:
7f:5c:39:75:18:de:f7:9f:bc:74:09:ec:7d:df:04:
62:00:6d:c6:cb:6a:e0:88:a7:ae:37:8a:14:40:40:
fc:b0:22:97:13:88:79:94:1e:90:87:e7:8c:e9:12:
1d:78:5c:28:6a:6b:78:9d:96:00:d7:47:47:f1:68:
f8:2e:2b:84:76:f4:82:87:f5:bb:8b:54:25:f5:cd:
88:9f:85:14:97:59:b3:9d:82:7d:81:38:bb:d1:18:
a2:94:0f:79:61:b4:da:7e:7b:1b:d7:2e:6b:e0:63:
8b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:11:82:7E:AB:CA:2F:0A:1F:DB:1D:DE:19:EC:15:1A:63:E2:5A:53
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/DRGCfqvKLwof2x3eGewVGmPiWlM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.14.0.0/16
Signature Algorithm: sha256WithRSAEncryption
0f:ee:05:7a:13:7d:47:c6:4f:da:92:6f:cc:10:3c:04:4a:e9:
cd:0b:06:b0:f0:80:20:e8:2e:03:f7:5a:a2:31:3e:e3:7a:c7:
dd:9e:19:38:2a:3c:38:82:1a:6a:88:b6:a1:69:6d:9e:7c:72:
ea:39:43:11:83:bd:cf:45:af:c6:d2:9e:84:36:10:a2:67:ac:
d9:aa:a2:d0:d2:c9:b0:70:cf:68:c5:26:37:8a:2b:53:67:b1:
da:97:c1:d5:45:95:a6:97:8b:41:6b:d1:42:a2:ee:19:20:ed:
56:7e:41:cf:24:c0:d6:75:a9:6f:af:88:76:b0:2c:5e:b9:90:
83:ef:8a:e0:90:86:15:eb:16:d2:6a:e1:eb:c8:fd:55:69:ab:
5a:03:69:6e:ee:c6:e1:a6:58:cc:71:f3:fa:ea:e2:58:fb:0e:
91:10:5b:26:df:c1:f0:d1:6a:e5:b8:44:32:5b:0b:00:77:14:
87:cc:4b:9b:69:7e:c1:04:1d:0f:b9:aa:e3:d6:a5:c6:da:d0:
3b:e3:f4:7b:8c:43:47:36:ef:62:f8:e4:9c:68:3c:cf:85:2f:
5d:c8:75:1b:a6:22:c1:6f:29:28:65:1d:61:0f:32:19:67:7c:
80:dd:cb:d1:d7:dc:61:ea:1c:11:ea:7c:c8:0f:21:7a:cd:fe:
05:b3:17:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org