Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/OybOPDC88wyP5ZZEqZkys2Kcq7I.roa
File: OybOPDC88wyP5ZZEqZkys2Kcq7I.roa (raw, json)
Hash identifier: NGhik6R9lJqhzfZCcYfr+miQQmtOYwQtkwcmr3QxhVA=
Subject key identifier: 3B:26:CE:3C:30:BC:F3:0C:8F:E5:96:44:A9:99:32:B3:62:9C:AB:B2
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 09E6
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/OybOPDC88wyP5ZZEqZkys2Kcq7I.roa
Signing time: Wed 29 Sep 2021 02:40:32 +0000
ROA not before: Wed 29 Sep 2021 02:40:32 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18042
IP address blocks: 220.157.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2534 (0x9e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 29 02:40:32 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3B26CE3C30BCF30C8FE59644A99932B3629CABB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:02:98:d2:c9:b8:1a:fc:34:09:a9:2c:68:8c:
a3:10:36:d9:1e:2e:ac:f9:cb:e8:53:fc:0b:9d:44:
83:52:0e:2c:83:8c:36:9d:c0:7e:6a:ab:90:8d:c4:
c8:0b:de:69:aa:6c:58:8d:c2:21:af:e7:32:cb:eb:
7f:12:88:00:a6:9c:4b:51:2e:d9:d7:b6:75:1e:db:
06:f8:d0:04:5c:43:9d:77:23:76:53:ed:c3:3d:5d:
cb:0f:ac:bc:67:de:70:8e:d0:40:3a:f7:7b:05:d0:
4c:0c:ff:a1:c1:84:f8:5d:0a:53:95:b3:f2:d5:71:
d3:3a:b3:e6:73:40:f6:5f:6d:ff:ab:62:c7:75:33:
94:9c:36:61:73:3b:2e:6c:9e:de:c5:a9:21:29:6f:
40:39:b6:16:d4:ba:02:36:19:72:22:7d:76:c4:1e:
da:8d:54:05:0e:e4:b1:ef:6b:e1:8e:0e:e1:ad:f9:
9e:65:6e:66:6a:27:00:bf:76:75:22:cb:81:4e:24:
02:60:d8:63:cb:f5:bb:d3:60:5c:dc:72:b2:4a:7b:
9f:22:0e:1a:b8:6f:29:3b:e2:66:c5:ac:4e:76:6c:
cd:a6:ee:4f:b8:5b:85:d4:77:c0:95:84:73:4d:d1:
c5:39:0c:bd:4c:96:13:e9:38:32:01:65:58:58:a4:
8f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:26:CE:3C:30:BC:F3:0C:8F:E5:96:44:A9:99:32:B3:62:9C:AB:B2
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/OybOPDC88wyP5ZZEqZkys2Kcq7I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.157.112.0/20
Signature Algorithm: sha256WithRSAEncryption
16:f0:fe:71:67:8b:b9:77:5e:b8:a5:9f:28:e4:5d:30:bc:8d:
41:27:9d:a3:2c:84:1e:12:cf:90:5d:ea:06:1f:f7:b0:1c:b6:
a3:c1:4a:a7:67:4a:2c:f3:15:4c:c5:be:93:87:da:82:0a:fb:
70:00:aa:2d:dd:8f:0d:aa:b2:8a:35:7c:df:4c:a5:0c:da:14:
74:54:2e:36:ec:2d:ec:c2:1f:31:bf:af:b5:4b:1c:c0:74:37:
3a:1c:42:b2:13:9b:d3:a4:98:7a:0e:77:4f:98:ea:bb:f9:65:
4f:f9:0e:c9:b2:5f:cb:33:37:cf:db:ce:a5:e3:3c:d8:ba:d4:
6f:12:e9:10:e1:fe:40:9c:08:58:04:58:b2:35:80:54:20:d1:
7a:60:3d:37:98:d2:e9:87:7a:c1:c6:bc:f7:96:ed:c4:11:76:
3d:a5:0f:51:83:6c:4d:cd:83:2a:3a:9f:26:7b:47:eb:87:00:
e3:d8:3e:0f:cb:86:0f:6b:19:f8:19:ea:0b:dc:f4:6b:69:1f:
9b:c1:38:93:12:e0:03:f2:13:18:7a:34:5a:2e:3b:84:4c:43:
85:ea:cc:d6:74:1d:48:e0:a4:e4:c8:48:0f:d7:5f:ec:c6:0d:
d2:df:29:92:aa:96:c5:a6:cc:0f:15:31:30:51:4b:2c:9f:8c:
cf:79:d1:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org