Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/QlP-zITuspjzRiFIaTEtuOz1Kaw.roa
File: QlP-zITuspjzRiFIaTEtuOz1Kaw.roa (raw, json)
Hash identifier: UM09Nz+WDnLUMGruSDNs4q/bDYv3+yo1rcgX9hMOoBU=
Subject key identifier: 42:53:FE:CC:84:EE:B2:98:F3:46:21:48:69:31:2D:B8:EC:F5:29:AC
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0BF2
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/QlP-zITuspjzRiFIaTEtuOz1Kaw.roa
Signing time: Fri 01 Sep 2023 09:11:47 +0000
ROA not before: Fri 01 Sep 2023 09:11:47 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18042
IP address blocks: 119.14.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3058 (0xbf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 1 09:11:47 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=4253FECC84EEB298F346214869312DB8ECF529AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:88:2e:17:d5:f9:e4:eb:b6:85:4e:ab:aa:ce:
66:4b:d7:9a:fa:5c:b2:63:d1:45:78:e9:e2:11:ad:
1c:ba:96:cd:87:1d:6a:1d:71:1c:83:22:bd:3e:7f:
5b:ec:79:65:a3:46:80:e4:38:61:08:10:2f:f9:d9:
43:b3:5b:b5:da:e4:04:bf:b4:8c:c2:8b:83:9b:7e:
51:4d:bd:d6:2b:c2:99:7f:65:b3:b2:70:ff:03:84:
ee:1f:dc:37:76:37:d0:79:6b:cc:24:fd:93:58:ce:
57:19:75:87:5f:f7:7f:ca:0f:d0:6d:33:08:a9:b9:
42:a2:c9:c4:2c:84:8b:40:19:39:db:ad:96:c6:ad:
0b:c8:c3:b3:87:b8:1c:d7:ea:9f:6c:c8:43:fd:26:
15:9f:31:6c:cf:41:2e:91:96:39:8c:35:b8:21:93:
d2:ae:63:37:c3:20:61:b5:63:85:06:96:de:b5:1c:
06:b5:11:e3:db:eb:81:06:90:df:31:d0:56:59:9e:
18:1b:39:86:63:b1:c4:69:2a:dd:9d:53:93:19:5f:
0e:5c:c3:bc:6e:f0:d3:e1:72:e6:ed:06:8a:67:4d:
22:94:6e:a5:f2:5c:10:57:10:eb:ad:6f:30:ce:a1:
03:8d:cf:0d:59:14:fb:87:db:1d:3c:79:81:03:e8:
cb:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:53:FE:CC:84:EE:B2:98:F3:46:21:48:69:31:2D:B8:EC:F5:29:AC
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/QlP-zITuspjzRiFIaTEtuOz1Kaw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.14.0.0/16
Signature Algorithm: sha256WithRSAEncryption
41:c1:5a:30:46:4f:ab:b6:d2:9b:2f:3b:50:ad:8c:61:f4:f4:
d3:46:b8:99:46:30:d4:d4:87:51:20:7b:a6:29:5d:c0:8c:1f:
3c:38:29:0a:14:df:56:d9:c0:c8:0e:93:55:36:03:54:8d:3f:
24:87:33:de:21:c1:54:96:41:cb:ca:87:b9:00:7d:2c:ab:cd:
ac:98:60:36:87:62:63:d1:8d:f2:72:a8:b7:ce:7e:9c:ad:fc:
e9:b0:02:ef:b7:05:cb:cf:d9:33:bc:5f:67:00:18:56:0c:4f:
4e:d5:8b:25:71:dc:7c:db:ac:01:db:7f:4d:93:76:89:9c:84:
b5:2d:f5:d2:7d:78:78:48:2d:c7:2d:8f:50:72:ce:d2:86:1c:
ff:68:e2:3b:d9:d9:be:ae:c6:8f:89:a4:b2:e5:12:5d:66:18:
d5:f8:7d:d2:4d:82:84:c3:92:29:89:f0:bb:c9:f2:f4:ff:06:
a8:16:6b:c6:50:53:23:f5:2b:f0:76:bc:42:81:7c:ed:b9:b7:
8c:4d:e7:55:62:6e:a9:67:b2:44:27:57:2f:f1:45:aa:f5:25:
44:21:93:ce:8f:bc:a0:13:97:cd:24:37:cf:e7:80:25:bd:17:
8a:24:83:0f:f4:7d:8d:8d:c3:9d:89:e6:ee:36:ca:07:ad:2c:
e7:34:cc:68
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICC/IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5
QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yMzA5MDEw
OTExNDdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQyNTNGRUNDODRFRUIy
OThGMzQ2MjE0ODY5MzEyREI4RUNGNTI5QUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDYiC4X1fnk67aFTquqzmZL15r6XLJj0UV46eIRrRy6ls2HHWod
cRyDIr0+f1vseWWjRoDkOGEIEC/52UOzW7Xa5AS/tIzCi4ObflFNvdYrwpl/ZbOy
cP8DhO4f3Dd2N9B5a8wk/ZNYzlcZdYdf93/KD9BtMwipuUKiycQshItAGTnbrZbG
rQvIw7OHuBzX6p9syEP9JhWfMWzPQS6RljmMNbghk9KuYzfDIGG1Y4UGlt61HAa1
EePb64EGkN8x0FZZnhgbOYZjscRpKt2dU5MZXw5cw7xu8NPhcubtBopnTSKUbqXy
XBBXEOutbzDOoQONzw1ZFPuH2x08eYED6MutAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUQlP+zITuspjzRiFIaTEtuOz1KawwHwYDVR0jBBgwFoAUmZu+Ex3100bydifM
T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H
L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL1FsUC16SVR1c3BqelJpRklh
VEV0dU96MUthdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwB3
DjANBgkqhkiG9w0BAQsFAAOCAQEAQcFaMEZPq7bSmy87UK2MYfT000a4mUYw1NSH
USB7pildwIwfPDgpChTfVtnAyA6TVTYDVI0/JIcz3iHBVJZBy8qHuQB9LKvNrJhg
NodiY9GN8nKot85+nK386bAC77cFy8/ZM7xfZwAYVgxPTtWLJXHcfNusAdt/TZN2
iZyEtS310n14eEgtxy2PUHLO0oYc/2jiO9nZvq7Gj4mksuUSXWYY1fh90k2ChMOS
KYnwu8ny9P8GqBZrxlBTI/Ur8Ha8QoF87bm3jE3nVWJuqWeyRCdXL/FFqvUlRCGT
zo+8oBOXzSQ3z+eAJb0XiiSDD/R9jY3DnYnm7jbKB60s5zTMaA==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:44:42 2025 by rpki-client