Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/Ktluw8gxMtfNfuBhMje9x4RuYI4.roa
File: Ktluw8gxMtfNfuBhMje9x4RuYI4.roa (raw, json)
Hash identifier: cf3jpHk9qyvL6/Lr8w2JDiXPtxB9x5XXGpbeu5aUqPo=
Subject key identifier: 2A:D9:6E:C3:C8:31:32:D7:CD:7E:E0:61:32:37:BD:C7:84:6E:60:8E
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0942
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/Ktluw8gxMtfNfuBhMje9x4RuYI4.roa
Signing time: Wed 03 Mar 2021 01:58:34 +0000
ROA not before: Wed 03 Mar 2021 01:58:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9416
IP address blocks: 119.14.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2370 (0x942)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Mar 3 01:58:34 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2AD96EC3C83132D7CD7EE0613237BDC7846E608E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3d:29:08:5f:3a:e0:1e:d6:53:9a:54:d5:8e:
7f:63:f6:b5:6b:fe:f6:50:58:7f:d7:b5:d1:64:c4:
9d:1a:08:84:de:0a:2c:4b:50:39:7c:b2:df:b6:19:
c0:01:4e:56:da:c8:53:51:40:28:46:7f:cb:25:1d:
6e:d3:ad:d3:06:7d:11:e6:00:cd:87:ec:75:92:83:
62:05:6d:d8:03:f9:f8:9d:5c:04:d3:c7:30:e1:06:
07:74:c3:7a:18:23:19:36:d9:10:94:68:76:19:71:
a6:ec:a1:1e:aa:26:ab:bb:a4:18:95:2a:a6:ca:50:
7d:56:46:5f:e4:c7:8b:df:94:4c:b2:80:81:ac:f4:
09:b0:fa:61:43:eb:a7:60:6f:d4:7f:3b:aa:21:6e:
16:ab:e9:37:dd:da:11:c6:d7:a9:b5:81:af:98:81:
32:2c:d3:ef:cd:de:5d:81:0c:13:f6:ce:4d:1f:3e:
dc:76:89:f4:5a:d6:96:6b:1d:28:ef:76:0b:83:ce:
6e:85:3b:d8:15:d5:68:23:80:98:90:db:35:1f:38:
03:fe:6a:9f:01:9f:61:70:d6:c1:17:0b:2b:9e:02:
ee:52:3a:0a:bb:a7:fa:7f:9c:90:58:95:82:c3:bd:
72:1d:f5:bc:3f:e7:64:80:3d:e6:98:25:96:bb:3a:
b7:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:D9:6E:C3:C8:31:32:D7:CD:7E:E0:61:32:37:BD:C7:84:6E:60:8E
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/Ktluw8gxMtfNfuBhMje9x4RuYI4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.14.0.0/16
Signature Algorithm: sha256WithRSAEncryption
78:b4:aa:25:70:6c:a4:29:b1:de:d7:fc:47:29:b2:d7:01:20:
09:98:ec:d3:15:84:6e:7d:f7:01:53:09:e6:4e:3f:82:3f:6b:
b3:67:06:a1:9c:68:6e:65:5c:2b:87:55:47:07:d6:bd:e8:e9:
c1:bb:6b:e3:a2:95:72:48:0c:16:68:0a:26:b0:ae:4d:d5:43:
74:a7:34:60:4c:4c:d7:f2:54:8a:cd:bf:b5:99:51:57:a3:43:
a0:f3:5a:65:8f:5c:51:95:4b:54:a9:23:1c:0a:6e:75:36:29:
c7:04:28:71:55:13:d1:81:c2:19:ca:3c:7b:37:bc:b3:7b:d4:
09:3e:ff:e9:41:3b:de:51:cc:d9:80:e0:ad:a9:aa:b5:2b:3c:
12:3d:dc:50:3e:60:d2:61:b5:c0:38:cc:49:49:6f:27:89:41:
97:c8:66:4f:82:07:b0:92:7b:f9:2c:ea:8e:4d:91:f8:a4:f5:
f9:72:d0:e5:ee:0c:c8:21:30:30:2c:3b:98:3f:69:13:61:c8:
de:81:6a:3e:1c:4d:d8:59:42:5e:6f:ca:13:a9:49:8c:40:10:
6a:95:9b:8e:f8:15:45:46:aa:76:e8:34:1e:82:ec:f2:39:0d:
1f:9b:3a:7b:1f:ff:93:47:3d:96:21:90:70:38:02:f6:7f:3e:
b0:1c:8c:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org