Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/Ilioqwtaq2Et1j1fr9DF7QAvhWQ.roa
File: Ilioqwtaq2Et1j1fr9DF7QAvhWQ.roa (raw, json)
Hash identifier: AqDc9NOztv0b/tXKnXmFGJNAja/Vum5U/FciSIoM6dc=
Subject key identifier: 22:58:A8:AB:0B:5A:AB:61:2D:D6:3D:5F:AF:D0:C5:ED:00:2F:85:64
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0911
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/Ilioqwtaq2Et1j1fr9DF7QAvhWQ.roa
Signing time: Sun 07 Feb 2021 13:07:42 +0000
ROA not before: Sun 07 Feb 2021 13:07:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 123.252.0.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2321 (0x911)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Feb 7 13:07:42 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2258A8AB0B5AAB612DD63D5FAFD0C5ED002F8564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:6f:fd:bf:64:8e:2a:bd:a4:1c:1d:d1:98:3c:
42:4d:95:b4:8f:13:dd:db:d4:9e:d5:da:99:3d:6c:
47:94:b4:bc:84:2f:eb:66:70:e7:29:49:56:46:1c:
b7:08:26:fa:04:10:da:c9:f6:55:13:74:d0:7a:48:
17:53:f9:82:ee:8f:e1:50:aa:85:37:63:04:3c:ee:
ed:ea:19:e9:3a:3c:c0:73:d5:97:9e:96:04:c2:7d:
5a:8b:38:89:51:5f:48:29:35:f8:7a:00:24:d7:44:
d8:48:5c:34:e1:59:66:d9:72:98:c5:8f:14:44:4f:
05:73:8f:58:85:72:81:0d:3c:cc:6f:32:40:cb:08:
a6:ce:72:9f:1f:13:1d:21:76:ec:15:4e:32:66:6b:
2b:12:4b:94:db:b6:06:1f:3d:62:17:09:15:89:2f:
53:40:59:66:bd:a6:0c:d2:4e:79:39:f6:08:02:3c:
6b:2c:f0:b4:48:9b:f0:cf:6e:8a:f8:52:38:b2:b4:
ac:35:06:cf:71:5f:dc:04:44:46:e6:24:75:7c:96:
85:27:f1:53:8d:de:f5:e3:e4:c1:de:46:85:87:c5:
36:42:1b:db:d9:76:68:76:54:dd:26:e7:6c:b4:6c:
71:04:ad:f4:3d:cd:1b:cd:56:5d:d9:61:9b:df:7b:
bd:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:58:A8:AB:0B:5A:AB:61:2D:D6:3D:5F:AF:D0:C5:ED:00:2F:85:64
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/Ilioqwtaq2Et1j1fr9DF7QAvhWQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.252.0.0/19
Signature Algorithm: sha256WithRSAEncryption
92:ec:cd:c0:f2:97:2c:a9:e5:2c:38:6e:65:a4:07:2d:2a:a0:
2a:cf:78:b4:52:9f:e7:ec:c8:0f:11:fc:ee:6f:b0:3f:93:a8:
f1:2b:11:a6:f2:67:9f:00:85:37:64:d2:6d:39:84:4e:7f:21:
08:ac:53:2f:58:af:b3:d4:4a:9c:73:0c:d7:92:85:f0:d0:3b:
9e:96:63:96:de:48:b5:4c:d8:b0:fa:7f:c0:0d:7c:38:29:50:
3b:8e:64:ee:3d:7e:50:dd:03:5b:75:fb:b2:82:f1:06:22:83:
7c:a1:1b:f8:01:37:59:cf:5e:5a:90:09:a1:8c:70:d6:e4:00:
a1:a5:b6:4d:f2:da:af:24:b4:92:0f:89:96:23:6e:a0:66:af:
7b:02:19:8e:70:bb:ae:78:1a:41:c8:45:a5:ac:91:01:c1:b0:
70:64:99:77:16:e9:60:f5:ea:f7:80:2b:ab:37:b0:25:d5:aa:
d4:eb:93:16:0a:b0:08:9e:f4:f3:d2:ea:3f:57:d2:1b:8b:ff:
93:7e:26:9d:25:cf:22:44:ff:3a:07:65:ec:05:bc:1c:36:ef:
51:e0:50:77:e3:a8:0f:b2:e8:d9:68:05:0d:c6:90:4f:e7:23:
58:db:00:2a:82:0d:e2:0e:24:e0:b3:83:8c:d1:db:a3:63:f8:
a5:1b:bc:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org