Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/USIwdB28OvU94LUF2Kyf9gsdq8o.roa
File: USIwdB28OvU94LUF2Kyf9gsdq8o.roa (raw, json)
Hash identifier: ndF8VTnZENfRUD3+EZfVBdW0ItObz7YfQaJinqm7/R8=
Subject key identifier: 51:22:30:74:1D:BC:3A:F5:3D:E0:B5:05:D8:AC:9F:F6:0B:1D:AB:CA
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 08FF
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/USIwdB28OvU94LUF2Kyf9gsdq8o.roa
Signing time: Sun 07 Feb 2021 11:54:18 +0000
ROA not before: Sun 07 Feb 2021 11:54:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9416
IP address blocks: 119.14.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2303 (0x8ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Feb 7 11:54:18 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=512230741DBC3AF53DE0B505D8AC9FF60B1DABCA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:fa:13:06:d8:3c:fe:68:da:03:43:83:5e:da:
f7:31:9c:45:26:00:32:21:a9:00:12:8a:d4:5d:1d:
4f:ae:66:7d:d9:0b:ff:4e:62:66:9f:b3:b5:37:4c:
0e:4c:74:22:af:0d:bc:0c:1c:a5:0b:80:f5:d0:11:
18:0a:e2:f3:71:90:bb:c9:05:08:1b:1c:f4:24:fd:
10:72:f5:89:ff:37:0f:fc:a7:0f:4b:e6:a0:67:8c:
94:1d:43:fa:a6:c9:36:b0:e2:64:ad:78:49:10:86:
05:d2:81:32:6c:bb:af:00:01:c0:11:b2:01:f3:a1:
45:5b:30:5b:30:fd:4f:9e:a3:3f:88:6e:d3:b1:ae:
5b:ba:83:7b:4f:11:90:3e:e0:cd:d3:68:1c:b7:de:
64:cc:a1:30:90:6d:ff:25:eb:e6:8a:ff:fa:70:5c:
6a:a5:de:e9:e7:93:a2:4f:40:87:28:be:73:a2:18:
11:b2:fc:ff:73:23:6b:20:6a:e5:23:6f:2f:5c:e4:
50:f0:5c:81:1d:93:fd:04:6b:11:40:a1:3c:f6:64:
e5:17:46:1b:bc:65:e3:24:b4:1c:1c:2f:13:e1:ef:
d6:01:e6:1f:26:ca:15:8c:c6:2b:db:65:e9:77:9a:
92:75:86:a5:71:56:64:c9:11:2a:d0:f2:fc:6b:cc:
56:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:22:30:74:1D:BC:3A:F5:3D:E0:B5:05:D8:AC:9F:F6:0B:1D:AB:CA
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/USIwdB28OvU94LUF2Kyf9gsdq8o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.14.128.0/17
Signature Algorithm: sha256WithRSAEncryption
46:f4:12:d1:ca:94:c9:cd:63:11:12:f9:0d:83:7a:62:a9:30:
77:d8:9e:7e:a3:fb:60:b2:da:c4:01:ce:54:e1:dc:42:07:c9:
49:1c:86:07:4a:92:86:2b:23:77:1b:62:ed:27:4c:ed:85:06:
c0:47:c3:00:d3:7b:b6:91:50:c2:ca:8e:06:b1:74:52:d2:3f:
62:d5:2f:5a:07:89:f9:19:33:f6:32:56:81:44:f4:bb:ae:2a:
ce:f7:b3:9a:99:29:a0:25:ec:70:be:1f:33:bf:bb:ea:d3:3f:
53:4a:3d:9a:cc:4d:c0:2e:75:d1:40:8a:f3:db:af:d0:51:22:
12:b8:30:7d:01:70:69:a8:06:5c:0e:21:fa:97:d1:5b:2b:83:
4c:3f:bc:9f:dc:0c:e3:16:22:7f:1a:da:ba:9c:ae:a3:39:ca:
47:90:f6:ad:80:9d:5f:6e:36:fd:27:9c:41:45:91:eb:e7:bf:
76:ed:bb:a7:a0:f3:32:cf:70:6e:9c:52:64:07:31:3c:5e:2c:
df:5f:0a:87:1f:0a:0a:6c:e0:64:24:ea:83:66:bd:7c:52:35:
88:7c:15:a5:b7:74:04:2c:02:41:92:a6:6f:c2:b0:ca:41:f9:
03:4e:4a:15:8f:b2:22:1f:ce:85:d0:4b:0f:aa:00:23:f0:7e:
e8:a9:57:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:08 2023 by rpki-client on console-fra.rpki-client.org