Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/HlJs05xOoavcLLgPQ76J9_Vl7ew.roa
File: HlJs05xOoavcLLgPQ76J9_Vl7ew.roa (raw, json)
Hash identifier: McqJtF158UVc2WHbv7os4GbE0Q359oIFGctsEvdM/AE=
Subject key identifier: 1E:52:6C:D3:9C:4E:A1:AB:DC:2C:B8:0F:43:BE:89:F7:F5:65:ED:EC
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 09ED
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/HlJs05xOoavcLLgPQ76J9_Vl7ew.roa
Signing time: Wed 29 Sep 2021 02:40:34 +0000
ROA not before: Wed 29 Sep 2021 02:40:34 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18042
IP address blocks: 122.99.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2541 (0x9ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 29 02:40:34 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1E526CD39C4EA1ABDC2CB80F43BE89F7F565EDEC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:19:9e:e8:12:7c:50:98:d0:b5:55:c7:30:c9:
33:9b:fb:05:e7:8a:85:25:3d:6b:bd:2b:5e:9d:be:
02:21:1d:0b:86:2c:6e:59:4a:98:ee:80:60:28:c7:
5e:55:66:ff:b2:45:49:36:6f:91:b0:06:71:cb:a5:
5a:37:38:2a:b2:d2:19:68:18:2f:bb:d5:8d:54:cd:
c8:fa:9e:92:e8:16:e2:7d:c6:f5:ba:38:99:bb:bf:
bd:c0:06:c0:c0:fd:99:82:8f:89:24:87:7d:1c:c1:
87:ea:ba:a5:7f:9f:0c:96:3e:22:fc:02:1f:c7:f5:
8d:7f:84:f0:57:f2:dd:25:1e:59:3a:7c:c4:61:0a:
7f:68:fb:c6:8a:64:7c:4f:8a:92:83:de:64:8c:fa:
93:43:5d:74:8b:44:63:7e:63:55:bd:fe:da:21:8d:
15:1e:59:e0:6c:98:7c:a9:86:02:15:6f:4d:bc:c6:
b7:8a:78:30:9f:16:02:65:8f:dd:7a:4b:d3:84:d4:
29:d3:81:a6:d9:e0:c5:0a:c2:7c:ec:3a:8b:f7:e0:
a1:37:9b:87:a9:3e:b8:ca:c9:ab:c8:16:32:68:12:
e4:2c:d6:62:21:1c:78:f4:a4:b6:85:9b:29:43:0f:
30:f6:dc:b9:2c:64:23:1b:f1:38:9d:6e:b8:31:af:
bc:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:52:6C:D3:9C:4E:A1:AB:DC:2C:B8:0F:43:BE:89:F7:F5:65:ED:EC
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/HlJs05xOoavcLLgPQ76J9_Vl7ew.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.99.0.0/18
Signature Algorithm: sha256WithRSAEncryption
95:68:36:d3:d6:a1:03:ca:26:fe:75:26:a6:77:51:c4:9f:31:
f3:69:a5:b7:4c:b6:e9:cf:1a:04:0a:1e:c0:c5:c0:a8:8e:e5:
5a:a1:7d:7c:dc:da:78:ba:1f:21:27:2f:0d:51:46:c3:b6:7d:
3e:30:46:c2:09:96:28:d2:46:3d:af:8b:83:55:93:7c:f3:d1:
8b:fa:14:dd:63:0b:05:78:3e:d9:43:77:cd:bc:02:97:d4:83:
99:1e:14:11:75:e1:4b:35:0f:df:c2:28:ca:43:42:98:a3:42:
c7:cf:e0:b3:1c:c3:44:aa:cb:ba:1f:34:ab:54:2e:8f:52:ef:
6f:cb:83:c4:b3:ae:12:52:cf:39:b9:c4:b4:1a:60:04:ce:b1:
31:e1:6b:4c:b1:0f:ad:59:a5:8c:b2:1a:5c:b9:b9:cf:85:ef:
c9:ea:8a:56:e9:80:21:10:b0:e5:3c:ea:79:af:4a:fb:bf:9e:
8e:1e:42:1b:cc:d3:1c:05:4a:11:db:91:bc:cd:10:c4:66:7f:
c5:ee:c8:0f:de:c6:42:44:48:2a:15:21:81:11:6c:be:55:c8:
3d:b2:77:85:2d:34:b0:e0:59:61:c9:ad:29:61:2a:2d:fd:bf:
17:12:6c:63:cd:29:4e:82:5a:9f:e7:88:e8:87:65:18:1f:b6:
70:f4:8a:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org