Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/Iy0SX5BQGU5gej3uQLRYGrPUfrg.roa
File: Iy0SX5BQGU5gej3uQLRYGrPUfrg.roa (raw, json)
Hash identifier: TzhgRQ9LzoQg4O3hlhhd/0J4sve11DI8uB53ISMfnpg=
Subject key identifier: 23:2D:12:5F:90:50:19:4E:60:7A:3D:EE:40:B4:58:1A:B3:D4:7E:B8
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0AE8
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/Iy0SX5BQGU5gej3uQLRYGrPUfrg.roa
Signing time: Thu 15 Sep 2022 02:40:51 +0000
ROA not before: Thu 15 Sep 2022 02:40:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9416
IP address blocks: 123.252.0.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2792 (0xae8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 15 02:40:51 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=232D125F9050194E607A3DEE40B4581AB3D47EB8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:39:62:4c:9a:62:88:13:ef:84:d7:31:09:b8:
bf:ab:40:c0:bb:88:4d:91:94:c7:05:e0:c9:ed:66:
2d:45:26:25:a7:26:0a:cb:28:0b:ef:48:bc:c6:93:
bb:72:2c:8a:3e:3b:88:47:0e:5d:77:89:83:b0:7b:
6c:4e:7f:9c:37:09:29:f5:93:9b:e7:c1:e8:9b:5c:
59:16:85:e8:21:6f:13:dd:20:1b:b5:f1:68:fe:43:
24:f8:01:2f:2e:49:cd:c3:92:5c:01:bd:12:e0:06:
ae:aa:63:c3:41:28:68:2d:54:8e:96:d6:15:e6:a9:
77:fd:b9:e3:5c:5e:67:d1:6a:c6:a1:09:22:83:84:
e9:4d:dd:84:3c:ac:f7:cd:01:b7:e6:e4:e8:55:2d:
91:15:4d:c2:e2:6d:62:e0:0b:1f:a9:75:dd:35:8c:
c3:21:ae:68:74:49:06:4f:a9:0f:f9:22:ea:65:28:
ee:01:a8:b7:0a:19:8e:d4:41:19:2b:bc:db:e6:24:
64:99:50:45:fe:c6:9b:53:00:b7:41:1c:a6:f5:d3:
05:eb:71:66:02:dc:86:20:fe:6d:40:5f:91:96:53:
74:97:76:6a:f4:f1:24:90:2a:90:d4:f5:90:05:b6:
9f:fb:1c:9c:43:5e:e5:29:1d:7d:4a:d9:59:61:56:
62:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:2D:12:5F:90:50:19:4E:60:7A:3D:EE:40:B4:58:1A:B3:D4:7E:B8
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/Iy0SX5BQGU5gej3uQLRYGrPUfrg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.252.0.0/18
Signature Algorithm: sha256WithRSAEncryption
6a:52:6d:11:63:68:ac:f9:16:ed:0e:7d:a2:cb:3f:57:e5:8f:
f5:5d:eb:54:7c:53:d4:8e:0b:09:9f:c2:84:a0:92:36:e8:6d:
89:af:00:a5:60:89:7f:5d:d9:86:9c:45:69:13:6d:85:35:fb:
08:46:5e:fb:43:3b:c7:32:6c:bd:71:e8:6b:ed:85:f5:b7:3e:
09:7a:25:be:f3:42:c0:09:b0:76:3e:57:c9:74:2e:25:f9:63:
ed:12:c3:4e:31:d7:d5:7a:8c:3e:be:3d:e6:71:f2:15:4a:39:
a7:73:c2:98:b4:7e:9d:80:d5:ec:e0:f8:9d:0d:c7:aa:29:12:
69:b5:2b:19:83:14:a0:3f:36:ce:2d:f0:bf:66:e3:cf:f5:76:
7d:54:29:26:0b:6c:e4:3c:d8:31:0e:ef:b9:78:9f:89:12:1e:
59:0a:fe:df:32:f4:f9:36:4d:1d:28:1a:fd:a8:75:71:62:ce:
eb:b0:80:66:68:93:e1:37:41:be:e7:56:8d:ce:4f:46:bf:e2:
ea:c4:9a:de:fb:21:70:7a:69:df:20:01:5c:6f:99:c8:b1:86:
a7:e5:c2:c1:fb:e4:44:dc:bc:24:df:1b:c7:41:1c:63:f2:f1:
c2:7e:65:e2:f2:da:ec:2d:26:83:38:54:35:46:44:50:f1:a3:
89:a7:ef:36
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICCugwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5
QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yMjA5MTUw
MjQwNTFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDIzMkQxMjVGOTA1MDE5
NEU2MDdBM0RFRTQwQjQ1ODFBQjNENDdFQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCpOWJMmmKIE++E1zEJuL+rQMC7iE2RlMcF4MntZi1FJiWnJgrL
KAvvSLzGk7tyLIo+O4hHDl13iYOwe2xOf5w3CSn1k5vnweibXFkWheghbxPdIBu1
8Wj+QyT4AS8uSc3DklwBvRLgBq6qY8NBKGgtVI6W1hXmqXf9ueNcXmfRasahCSKD
hOlN3YQ8rPfNAbfm5OhVLZEVTcLibWLgCx+pdd01jMMhrmh0SQZPqQ/5IuplKO4B
qLcKGY7UQRkrvNvmJGSZUEX+xptTALdBHKb10wXrcWYC3IYg/m1AX5GWU3SXdmr0
8SSQKpDU9ZAFtp/7HJxDXuUpHX1K2VlhVmJ9AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUIy0SX5BQGU5gej3uQLRYGrPUfrgwHwYDVR0jBBgwFoAUmZu+Ex3100bydifM
T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H
L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL0l5MFNYNUJRR1U1Z2VqM3VR
TFJZR3JQVWZyZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ7
/AAwDQYJKoZIhvcNAQELBQADggEBAGpSbRFjaKz5Fu0OfaLLP1flj/Vd61R8U9SO
CwmfwoSgkjbobYmvAKVgiX9d2YacRWkTbYU1+whGXvtDO8cybL1x6GvthfW3Pgl6
Jb7zQsAJsHY+V8l0LiX5Y+0Sw04x19V6jD6+PeZx8hVKOadzwpi0fp2A1ezg+J0N
x6opEmm1KxmDFKA/Ns4t8L9m48/1dn1UKSYLbOQ82DEO77l4n4kSHlkK/t8y9Pk2
TR0oGv2odXFizuuwgGZok+E3Qb7nVo3OT0a/4urEmt77IXB6ad8gAVxvmcixhqfl
wsH75ETcvCTfG8dBHGPy8cJ+ZeLy2uwtJoM4VDVGRFDxo4mn7zY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org