Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/P6ofK1Qxi67c_w9gk5LRgBdsuUM.roa
File: P6ofK1Qxi67c_w9gk5LRgBdsuUM.roa (raw, json)
Hash identifier: fjSE+R6YFHju4s6u8XpBn/0v5JsUDl49ewWmqap1bEw=
Subject key identifier: 3F:AA:1F:2B:54:31:8B:AE:DC:FF:0F:60:93:92:D1:80:17:6C:B9:43
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0AE8
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/P6ofK1Qxi67c_w9gk5LRgBdsuUM.roa
Signing time: Thu 15 Sep 2022 02:40:54 +0000
ROA not before: Thu 15 Sep 2022 02:40:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9416
IP address blocks: 115.43.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2792 (0xae8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 15 02:40:54 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3FAA1F2B54318BAEDCFF0F609392D180176CB943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:bb:b4:86:d7:cf:78:d2:4c:b7:1e:f7:de:3a:
fa:0b:68:91:15:44:86:11:ed:8c:0c:1b:85:9f:15:
4e:50:4f:2b:d3:19:bb:b1:99:a3:ae:21:89:08:23:
83:12:dc:a3:ba:e0:e2:28:5c:c6:04:2e:d2:a6:f9:
e0:2f:70:7a:5c:6a:60:3f:69:1f:5e:dd:e7:95:23:
67:61:ee:23:fd:0d:18:2e:fd:f6:7d:5e:57:b0:0a:
da:f3:08:23:41:65:65:c1:a3:b1:02:85:3d:b4:f2:
5e:f8:ce:59:ca:1c:f4:d3:dc:f0:bf:49:a1:95:77:
dd:21:4f:75:ee:a3:53:91:84:4c:d3:6f:d8:79:6e:
30:98:48:08:d9:0d:36:f9:78:82:f5:1c:a5:d5:03:
b5:68:dc:d8:54:3d:73:dd:6a:ad:eb:c1:c3:eb:47:
f2:16:72:93:4c:e5:e0:ec:a2:50:96:ca:54:5c:68:
6c:04:48:2a:ad:31:de:fc:dd:20:ac:68:12:b5:3c:
3b:19:80:75:61:da:c5:65:b6:c7:fe:5a:51:9e:c7:
a2:8f:bb:c2:1d:d8:aa:ef:7c:e8:0f:f4:57:e7:3b:
7b:80:24:ef:8b:ab:d1:98:20:ab:fb:7c:2b:97:30:
f0:07:48:8c:67:fa:e0:91:63:2c:e6:0c:93:8f:ef:
f4:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:AA:1F:2B:54:31:8B:AE:DC:FF:0F:60:93:92:D1:80:17:6C:B9:43
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/P6ofK1Qxi67c_w9gk5LRgBdsuUM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.43.128.0/17
Signature Algorithm: sha256WithRSAEncryption
1b:79:5f:8c:c1:98:ad:12:26:f7:90:8e:3e:43:22:06:82:a8:
2d:00:79:65:4b:9f:3c:a8:13:a1:95:39:44:0f:b7:5c:f5:ea:
3f:71:1c:b8:88:93:d4:2c:ac:2d:93:7f:ef:80:d3:5e:d2:bb:
0c:32:40:a9:07:02:02:b3:8b:f4:51:fd:3d:a7:d1:e9:fd:f0:
8f:00:be:fb:6a:82:0c:b7:44:4a:74:52:22:0b:e1:77:bb:e5:
c0:de:52:e6:b4:b7:a4:4e:ae:93:39:74:14:41:c0:6d:0b:11:
79:8f:fa:db:44:92:be:bf:c7:79:5c:75:86:90:65:89:1d:80:
df:de:73:a9:e9:6e:f2:d3:1d:0c:b7:b1:40:bb:c8:2f:34:6e:
4a:71:b2:0d:27:31:19:49:68:32:7c:c7:f2:f5:d4:23:8e:91:
78:63:a6:34:a3:b9:33:20:cf:91:f0:41:8b:ed:3a:dd:3b:25:
7f:f7:b8:10:76:ea:6c:0e:4b:02:98:7e:e4:0f:c6:5d:fc:20:
9f:b0:ee:59:5c:2e:e9:be:74:f4:b6:74:74:7d:5b:5c:85:49:
62:de:10:dd:72:a5:22:e8:b8:42:2b:7f:9e:d8:3b:7d:70:88:
4b:9a:25:cf:dd:51:97:ec:64:1b:71:38:a5:9e:2e:ae:b2:fb:
27:cc:83:eb
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICCugwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5
QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yMjA5MTUw
MjQwNTRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDNGQUExRjJCNTQzMThC
QUVEQ0ZGMEY2MDkzOTJEMTgwMTc2Q0I5NDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDu7SG18940ky3HvfeOvoLaJEVRIYR7YwMG4WfFU5QTyvTGbux
maOuIYkII4MS3KO64OIoXMYELtKm+eAvcHpcamA/aR9e3eeVI2dh7iP9DRgu/fZ9
XlewCtrzCCNBZWXBo7EChT208l74zlnKHPTT3PC/SaGVd90hT3Xuo1ORhEzTb9h5
bjCYSAjZDTb5eIL1HKXVA7Vo3NhUPXPdaq3rwcPrR/IWcpNM5eDsolCWylRcaGwE
SCqtMd783SCsaBK1PDsZgHVh2sVltsf+WlGex6KPu8Id2KrvfOgP9FfnO3uAJO+L
q9GYIKv7fCuXMPAHSIxn+uCRYyzmDJOP7/RZAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUP6ofK1Qxi67c/w9gk5LRgBdsuUMwHwYDVR0jBBgwFoAUmZu+Ex3100bydifM
T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H
L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL1A2b2ZLMVF4aTY3Y193OWdr
NUxSZ0Jkc3VVTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAdz
K4AwDQYJKoZIhvcNAQELBQADggEBABt5X4zBmK0SJveQjj5DIgaCqC0AeWVLnzyo
E6GVOUQPt1z16j9xHLiIk9QsrC2Tf++A017SuwwyQKkHAgKzi/RR/T2n0en98I8A
vvtqggy3REp0UiIL4Xe75cDeUua0t6ROrpM5dBRBwG0LEXmP+ttEkr6/x3lcdYaQ
ZYkdgN/ec6npbvLTHQy3sUC7yC80bkpxsg0nMRlJaDJ8x/L11COOkXhjpjSjuTMg
z5HwQYvtOt07JX/3uBB26mwOSwKYfuQPxl38IJ+w7llcLum+dPS2dHR9W1yFSWLe
EN1ypSLouEIrf57YO31wiEuaJc/dUZfsZBtxOKWeLq6y+yfMg+s=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org