Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/Hm7Hzc4Rd7Rt573NAE-YvWVwGBs.roa
File: Hm7Hzc4Rd7Rt573NAE-YvWVwGBs.roa (raw, json)
Hash identifier: 99J0Oyh2IJki1oj2e9V8bktNqrCEm7g9Vf1yW6wY0bQ=
Subject key identifier: 1E:6E:C7:CD:CE:11:77:B4:6D:E7:BD:CD:00:4F:98:BD:65:70:18:1B
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 09EA
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/Hm7Hzc4Rd7Rt573NAE-YvWVwGBs.roa
Signing time: Wed 29 Sep 2021 02:40:34 +0000
ROA not before: Wed 29 Sep 2021 02:40:34 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18042
IP address blocks: 124.155.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2538 (0x9ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 29 02:40:34 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1E6EC7CDCE1177B46DE7BDCD004F98BD6570181B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:aa:0b:fc:d1:35:07:a8:c2:b3:2f:aa:6a:3c:
15:e0:af:87:20:5e:9b:52:20:3c:be:8e:8d:20:f0:
86:20:bc:3c:d3:1d:41:19:f7:7e:22:3e:07:5f:0b:
3f:d2:fe:cd:23:38:4a:10:31:18:cd:8f:f4:31:66:
39:79:31:f1:bf:67:26:28:01:6d:d6:71:0c:6c:e5:
e1:41:67:f2:2e:ee:96:61:64:bf:59:75:58:b4:d8:
76:6f:41:6d:35:a2:c4:f7:44:f6:ff:1e:11:4c:74:
c3:9b:2f:f1:be:e6:39:0a:51:60:29:80:6a:b4:54:
ad:e8:36:ff:e7:74:9a:60:bf:e4:4b:df:a5:c5:c9:
3b:6a:79:2e:6b:26:27:17:41:f0:9c:ec:ea:c7:67:
5e:52:76:c1:f1:c0:cb:2e:c2:a9:89:25:fd:ae:eb:
f5:00:6c:dc:8a:5b:70:cc:9e:3b:19:1f:26:bf:88:
04:d1:c7:8b:03:ef:1a:1b:35:1c:81:23:e8:f2:52:
03:81:97:23:2b:07:ee:6e:43:68:6a:68:e8:32:34:
d5:01:33:1c:10:de:d4:86:b0:68:70:5b:6c:a8:fd:
32:c6:32:6d:c8:32:2c:c5:27:f5:57:a8:5c:65:c1:
f9:69:9b:38:f0:3a:2f:cc:b2:29:d9:3d:1d:57:6e:
fd:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:6E:C7:CD:CE:11:77:B4:6D:E7:BD:CD:00:4F:98:BD:65:70:18:1B
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/Hm7Hzc4Rd7Rt573NAE-YvWVwGBs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.155.128.0/19
Signature Algorithm: sha256WithRSAEncryption
a9:4f:be:6c:00:bb:89:97:60:65:af:d8:6a:9d:20:e8:60:93:
8f:b4:6b:6d:18:94:c1:4a:45:36:90:9f:c1:c4:f4:8b:44:03:
f0:89:31:92:34:e5:de:47:4e:d7:0a:f9:d1:55:7c:40:47:05:
17:92:0c:67:04:c5:1e:b0:ef:b7:7e:e4:0c:0d:79:78:c3:b9:
f4:6a:65:d9:a4:15:21:e8:62:e8:30:9e:bb:9b:af:85:3f:ac:
aa:dd:0a:54:14:08:01:73:48:94:9c:74:05:0e:34:3e:d1:39:
fe:4d:89:ee:9a:92:30:e4:99:e3:cb:cb:b5:68:93:7a:98:06:
98:2b:be:2b:b4:77:6b:be:1d:21:f3:c2:aa:82:a6:f1:44:bf:
b1:c5:59:e6:72:07:3a:1f:77:63:c5:35:33:ef:66:09:0c:f2:
77:d0:14:d6:25:f5:64:74:15:d9:93:9a:0c:6f:c3:6f:2c:99:
1d:e3:80:5f:79:b3:c6:04:92:d9:ff:b6:a7:e6:82:85:f3:69:
03:58:f0:bd:f4:24:66:a5:79:a1:e5:2d:12:db:15:4f:7a:aa:
15:72:ff:42:79:8a:63:1f:84:d1:3a:ec:18:b5:c3:66:d8:49:
32:33:5a:39:e2:c9:38:1d:05:8f:90:f7:c4:76:18:ca:d1:8f:
d6:56:0e:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org