Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/GxaxNyhTDBrwD805ekkRXQVpPxI.roa
File: GxaxNyhTDBrwD805ekkRXQVpPxI.roa (raw, json)
Hash identifier: BFVNCSH7XlhFqKzUmqwpoQWUROflvuAb9Gnp1J2GRKc=
Subject key identifier: 1B:16:B1:37:28:53:0C:1A:F0:0F:CD:39:7A:49:11:5D:05:69:3F:12
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 08AA
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/GxaxNyhTDBrwD805ekkRXQVpPxI.roa
Signing time: Fri 27 Nov 2020 00:50:39 +0000
ROA not before: Fri 27 Nov 2020 00:50:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 123.252.64.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2218 (0x8aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Nov 27 00:50:39 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1B16B13728530C1AF00FCD397A49115D05693F12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e7:cc:48:e4:18:c4:3b:ec:c6:cf:23:ba:45:
a9:3a:de:7f:4e:f3:e2:82:2c:9d:eb:1e:ad:b2:13:
5c:c3:d8:ae:be:95:da:e4:96:b7:5b:89:ba:ff:4f:
d1:4c:b1:55:7a:06:65:6d:11:d3:e4:07:47:34:a3:
30:65:3f:fd:95:c6:d6:13:c0:2e:af:78:61:14:01:
c1:95:3d:d8:26:8b:77:78:2a:61:c1:0f:95:b4:87:
13:77:ca:a7:b0:99:c1:23:f8:c7:4f:07:9d:56:20:
f5:1a:f0:26:85:07:69:30:d0:92:db:57:9f:b0:5a:
1d:5a:a0:cb:b5:e2:07:cf:41:1b:db:d6:29:f0:33:
02:23:35:98:e5:b9:e3:47:30:54:c6:ec:c2:03:9d:
5c:22:ac:2f:4e:91:a5:1e:e0:6f:53:5a:74:cd:ca:
b5:e9:27:9d:a1:01:7b:88:a2:7a:f5:45:9e:89:18:
da:28:e0:4b:be:66:e8:a1:16:5c:de:7b:7f:f2:33:
32:14:c2:ad:74:0b:f0:af:2b:cd:da:9a:f2:ae:b7:
34:31:47:85:c7:b7:7b:2c:cb:0f:0e:7a:42:88:36:
4f:09:73:9d:f6:0e:99:8e:67:a3:70:8a:4d:06:7c:
a0:4f:4f:44:35:5b:18:8d:e5:0d:91:96:1e:3c:e6:
f7:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:16:B1:37:28:53:0C:1A:F0:0F:CD:39:7A:49:11:5D:05:69:3F:12
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/GxaxNyhTDBrwD805ekkRXQVpPxI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.252.64.0/18
Signature Algorithm: sha256WithRSAEncryption
44:3a:81:85:03:1b:fb:78:cd:8e:7c:2c:7e:a1:2c:cd:c0:21:
02:40:c4:52:34:ea:0a:bd:5f:92:97:73:08:9d:44:73:ea:b6:
ff:25:63:28:85:3c:74:ff:61:0e:cb:20:11:b8:05:ce:d0:a2:
ea:5d:19:cc:98:8f:75:88:10:34:b9:37:e3:d6:e2:97:eb:2c:
93:f2:a6:c7:5f:dc:3b:66:5d:a6:14:21:a9:20:d3:c5:4b:be:
b3:e7:7e:b3:1f:b5:9d:de:4d:bc:c2:e8:d1:4a:fb:83:80:85:
23:54:7c:a8:23:08:dc:72:f0:44:5e:33:e3:c7:04:c4:52:20:
23:84:53:b1:ae:e5:d9:e8:f3:8d:0d:8a:16:9e:24:50:93:23:
8b:0b:84:89:5e:0b:02:a7:10:80:ce:9c:43:8d:ac:55:15:ca:
7e:b7:81:60:a8:1b:dd:82:84:be:83:42:00:1d:5c:6c:28:4c:
b4:92:77:36:77:f9:9c:a9:e6:54:ed:91:cc:06:f7:d4:90:13:
e8:23:4e:d2:32:0a:ed:f4:e0:9f:b7:dc:bc:bc:38:69:38:b3:
34:fa:f9:ba:d5:fc:2f:3a:05:33:a6:b0:31:9f:fa:a9:19:71:
f9:19:56:91:1f:c5:e8:4e:9b:b3:11:ca:12:eb:f4:57:43:4e:
d6:4a:a2:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org