Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/NIf5fJm6jNu5iNHyaR1cczKJQ_I.roa
File: NIf5fJm6jNu5iNHyaR1cczKJQ_I.roa (raw, json)
Hash identifier: KOKwoU/EcIpy5Dva/IKIqULCWlkv4x1/kECc6vOnNFw=
Subject key identifier: 34:87:F9:7C:99:BA:8C:DB:B9:88:D1:F2:69:1D:5C:73:32:89:43:F2
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 094B
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/NIf5fJm6jNu5iNHyaR1cczKJQ_I.roa
Signing time: Wed 03 Mar 2021 02:05:04 +0000
ROA not before: Wed 03 Mar 2021 02:05:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9416
IP address blocks: 123.252.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2379 (0x94b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Mar 3 02:05:04 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3487F97C99BA8CDBB988D1F2691D5C73328943F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:79:62:9b:c5:9b:5e:7a:54:91:b1:c7:d3:40:
b8:65:dc:35:3b:06:7d:b2:1d:ca:ea:a5:35:07:41:
7e:fa:21:da:ed:e3:f5:ae:a4:4b:ca:92:8a:1b:18:
ad:18:29:5c:2c:ea:6a:a8:82:a4:4c:ff:10:e9:e6:
a3:d1:8b:8c:27:eb:ef:e2:8a:05:ba:df:a2:69:cb:
93:7f:bf:b0:89:67:8c:b6:07:d8:39:a3:29:b9:ba:
aa:41:ad:ec:64:59:97:f0:0e:c2:c2:dd:01:53:54:
28:ab:3d:e9:04:5d:3d:2a:4e:d2:94:bb:5a:bd:0e:
1d:e8:8a:23:99:5d:c4:46:e2:15:75:e7:d9:ba:e6:
9d:de:6e:53:3c:b9:18:ef:bc:15:74:8c:41:65:ef:
91:b2:ee:89:08:bd:f6:10:14:52:24:15:4e:f1:ce:
34:a7:18:3b:09:e0:45:42:28:e5:d3:92:b1:4e:dd:
02:26:ec:0b:58:42:04:60:36:b7:1c:e6:c4:fc:87:
f6:fe:f8:9c:61:2d:5f:fe:66:d4:e7:6e:09:bb:f9:
19:b2:c5:10:4e:ee:a8:76:d9:ee:14:ec:d9:6c:60:
05:c6:d5:d3:35:3b:86:b5:60:40:d8:be:13:85:ef:
9a:38:97:76:4e:6c:3c:1a:63:d4:b9:4b:91:08:c0:
bd:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:87:F9:7C:99:BA:8C:DB:B9:88:D1:F2:69:1D:5C:73:32:89:43:F2
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/NIf5fJm6jNu5iNHyaR1cczKJQ_I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.252.0.0/17
Signature Algorithm: sha256WithRSAEncryption
95:6d:08:37:15:ed:27:8b:07:8f:35:4d:23:d4:08:aa:37:1f:
47:8b:ba:79:86:c1:32:1e:8c:0c:fe:1b:99:aa:6b:9c:89:21:
07:d0:84:d9:42:d9:70:1e:4a:d3:4c:65:e0:77:e1:5d:a2:7b:
a4:50:6a:11:da:86:f3:5c:a2:3f:68:2f:2c:02:3b:42:47:3a:
ad:21:2d:07:f7:b1:dd:e8:87:c6:57:e8:2d:67:7a:cd:ea:98:
88:42:42:6f:3f:c5:90:c0:12:45:65:eb:2f:14:f5:d8:09:ec:
38:a9:ad:24:fe:13:49:93:51:0a:6c:eb:56:28:37:a2:0b:86:
75:b8:e4:ea:0f:72:8a:ff:c9:e9:d4:1e:a9:4e:40:02:91:50:
88:06:10:8f:d8:90:f3:24:ac:64:48:71:bc:bc:61:cc:9d:92:
fb:4c:45:70:30:09:cb:10:df:23:f2:15:d2:bd:31:de:3a:b1:
a8:0d:ce:38:0f:a0:08:3c:1d:bd:32:00:e4:80:d8:19:46:93:
09:a7:5b:5f:4d:3f:5f:26:d8:46:8c:d1:ee:63:3a:a7:43:de:
04:76:52:cf:4c:eb:d6:e7:bb:9c:f5:ff:41:a9:85:17:ff:05:
38:f0:f8:2a:3c:d4:0d:f9:f5:de:66:ca:d0:a5:7d:19:cd:95:
e3:6e:c1:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org