Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/RfjVfMs3lzPRA2Ox0wnIKDbMzDA.roa
File: RfjVfMs3lzPRA2Ox0wnIKDbMzDA.roa (raw, json)
Hash identifier: 0VzqTpfwqbgcoJ1yKBTnKBZNKyTciqHoh8hcuAOa8ys=
Subject key identifier: 45:F8:D5:7C:CB:37:97:33:D1:03:63:B1:D3:09:C8:28:36:CC:CC:30
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0944
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/RfjVfMs3lzPRA2Ox0wnIKDbMzDA.roa
Signing time: Wed 03 Mar 2021 01:59:01 +0000
ROA not before: Wed 03 Mar 2021 01:59:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9416
IP address blocks: 122.99.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2372 (0x944)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Mar 3 01:59:01 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=45F8D57CCB379733D10363B1D309C82836CCCC30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:fe:47:de:89:9b:6f:02:38:eb:33:48:16:74:
89:36:b4:73:d3:1a:b3:0c:2f:52:7b:55:20:ab:89:
3d:49:4b:76:4a:18:21:6d:7e:2f:54:58:0b:0b:d0:
f3:1b:12:ba:44:8c:fd:a3:a3:cf:e2:bf:fd:31:21:
6a:fb:d8:9d:1e:b4:b2:75:bd:6e:ec:f2:7f:16:84:
4c:01:81:df:eb:00:1a:bc:e7:69:0d:3c:f3:7e:15:
4b:5d:7f:7e:eb:3e:71:a1:1c:aa:03:cb:b0:a2:2d:
02:16:9a:6a:7b:47:61:99:04:9d:ff:05:b1:f9:ef:
45:da:e2:d4:49:39:9c:1f:39:8c:b5:3b:c5:c0:78:
a8:7b:98:e3:6a:13:e4:51:e0:11:b3:bf:3e:ad:0c:
1f:97:c9:13:35:25:db:fc:1b:bf:1e:e8:f7:ed:af:
76:65:a1:8c:a2:ce:51:87:69:76:9f:b8:8a:5d:45:
d7:ea:0b:43:69:92:4f:20:75:6e:d3:d8:6b:f0:c2:
0f:92:10:05:ed:41:13:bc:5f:2e:33:3e:5d:e3:44:
ed:89:a8:c9:e1:bd:28:ae:5f:09:7f:ac:3d:65:25:
b7:6f:cf:89:a6:fd:d5:0c:f2:72:71:a0:c2:56:bd:
b5:c6:ef:ce:f8:15:ca:75:2f:63:ff:10:b0:d2:a4:
f9:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:F8:D5:7C:CB:37:97:33:D1:03:63:B1:D3:09:C8:28:36:CC:CC:30
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/RfjVfMs3lzPRA2Ox0wnIKDbMzDA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.99.0.0/18
Signature Algorithm: sha256WithRSAEncryption
13:3b:4c:db:4e:92:5c:d4:25:f9:77:a2:6a:47:c1:63:b5:18:
60:8d:aa:e5:5e:61:0b:6c:59:ca:bc:f9:86:32:04:30:32:9f:
fe:fd:2f:3b:cc:a5:3a:08:21:a4:ee:a9:75:06:70:95:e4:52:
d0:49:0c:d6:a9:1e:9f:26:0b:ed:43:5b:d1:35:bb:57:0d:25:
fa:e8:f7:99:1b:0b:bf:8f:ff:31:e4:0c:54:96:c7:1a:21:d0:
f5:a7:c0:d8:5d:c9:80:9a:f8:c3:1f:e6:a2:79:1e:bf:b2:35:
dc:aa:c7:3e:aa:8f:5b:e0:61:0e:07:ae:ca:d4:c3:e1:b1:e2:
0a:78:cf:a6:40:80:68:b3:2d:20:62:8c:67:0c:c2:d3:aa:0c:
23:db:41:55:90:8c:5e:53:86:ec:e6:0d:4b:25:d4:c0:b4:e7:
5c:2c:97:a9:d1:4d:32:e8:24:32:f6:12:89:bb:51:73:97:7f:
70:27:20:df:0d:b5:0b:a9:00:e4:b8:30:bb:ec:aa:9b:d0:a8:
27:07:07:72:63:1b:c4:26:79:25:6b:2b:5f:ff:84:f6:2b:ed:
0b:a1:a9:c2:10:2f:2e:a9:31:b8:39:2a:df:bb:22:d0:2b:96:
2f:6f:b6:7b:f4:67:94:26:ee:87:6c:59:c4:7a:97:62:c0:33:
90:b8:49:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:44 2025 by rpki-client