Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/I4wX6Wl1QXfsKlw4JEl4Uvqu_8Q.roa
File: I4wX6Wl1QXfsKlw4JEl4Uvqu_8Q.roa (raw, json)
Hash identifier: 5hSR+HbuGZef/8PhhD3IOTK78eG52hPu4YPnkF4fbS0=
Subject key identifier: 23:8C:17:E9:69:75:41:77:EC:2A:5C:38:24:49:78:52:FA:AE:FF:C4
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 09F5
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/I4wX6Wl1QXfsKlw4JEl4Uvqu_8Q.roa
Signing time: Wed 29 Sep 2021 02:40:36 +0000
ROA not before: Wed 29 Sep 2021 02:40:36 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9416
IP address blocks: 123.252.0.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2549 (0x9f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 29 02:40:36 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=238C17E969754177EC2A5C3824497852FAAEFFC4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:a0:fb:87:df:5e:5f:b6:f7:f5:78:21:f3:57:
cc:96:ae:b2:9d:36:0e:2e:4c:d4:90:d5:ad:46:30:
7d:ad:b4:6a:87:9f:d8:e2:e0:ce:1d:27:8f:83:2f:
14:20:d8:6d:67:2d:f3:9c:5d:ca:45:e0:7d:a2:53:
c2:c0:5e:c4:8c:83:b9:b0:bf:96:a3:e9:41:b8:ac:
44:5c:d6:c6:64:7c:f0:3e:26:7c:d1:07:31:62:05:
ce:93:14:bb:a7:06:2a:28:d0:14:a9:30:33:d9:fe:
43:52:bb:7b:f0:df:f3:a8:a7:9e:ef:ed:07:ac:24:
83:ae:06:83:a7:8d:f4:14:8b:dc:4d:0a:be:40:7e:
20:20:40:0d:dd:18:42:4a:14:e0:09:fc:15:53:b3:
ff:25:cd:85:31:03:40:50:0b:01:08:d7:4d:9a:1b:
98:dd:56:3c:b7:90:2d:62:5c:8e:2e:79:85:4a:7f:
21:4b:39:22:05:5a:11:d6:7f:12:91:4e:02:fd:04:
b1:0e:90:8d:0a:43:4e:e5:2c:23:ad:27:32:c7:bb:
9f:a1:b2:d2:2d:cb:34:f3:30:4a:a6:6b:89:aa:74:
42:2f:68:dc:8e:d8:52:b5:d8:68:34:8d:3e:20:e4:
1d:a8:c8:74:a9:0b:ae:bc:cc:90:57:b4:b3:0f:25:
73:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:8C:17:E9:69:75:41:77:EC:2A:5C:38:24:49:78:52:FA:AE:FF:C4
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/I4wX6Wl1QXfsKlw4JEl4Uvqu_8Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.252.0.0/18
Signature Algorithm: sha256WithRSAEncryption
4b:6d:db:d1:2e:6f:07:6d:c9:99:d9:9f:86:af:e9:61:ab:40:
b4:dc:54:b2:2f:99:7f:27:79:31:27:08:5c:91:11:3d:22:1e:
90:db:d6:36:bd:06:e5:ae:d7:28:5e:d5:2f:1b:9e:14:d0:bc:
5a:1a:62:6d:c0:f3:7d:27:d7:7c:2a:57:00:5c:c7:79:43:46:
ae:ba:91:d2:d9:8b:4b:35:ec:e3:f9:b3:48:f3:5f:27:a9:2b:
b0:58:94:d1:a8:1e:b4:4b:48:01:43:d4:27:98:08:f8:ea:a8:
1d:a2:3c:de:bd:24:a9:95:9b:c1:7b:62:4d:d9:73:3f:9b:ae:
ca:d8:db:d2:da:97:97:fc:2d:7a:8d:4d:30:72:d9:c9:fb:79:
d2:71:2f:b1:f1:d4:ab:c6:69:bf:13:60:40:ce:ff:06:9f:c5:
45:9a:c2:dd:c3:d8:34:c2:e9:3f:df:8f:3c:40:70:25:8d:13:
99:bd:6e:49:25:ab:65:9a:65:c9:dc:c2:cc:81:ca:62:79:72:
78:dd:b5:57:d4:d8:f0:bf:22:76:68:e1:2d:25:1a:b8:40:df:
c5:d3:85:48:9b:ac:4e:6c:46:f0:29:0d:ef:29:d6:b7:ff:7a:
17:9f:9e:95:38:b3:bd:84:a9:cc:e3:7c:65:cf:d8:8f:f2:30:
12:3c:38:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org