Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/UnGl7qObPBDFWHCZ6SFQO2-UVK8.roa
File: UnGl7qObPBDFWHCZ6SFQO2-UVK8.roa (raw, json)
Hash identifier: xANOBU9ISy9r8THCnyOMKTuOQpyvgWuIT6i/lpOcfXo=
Subject key identifier: 52:71:A5:EE:A3:9B:3C:10:C5:58:70:99:E9:21:50:3B:6F:94:54:AF
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0799
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/UnGl7qObPBDFWHCZ6SFQO2-UVK8.roa
Signing time: Tue 29 Sep 2020 10:04:35 +0000
ROA not before: Tue 29 Sep 2020 10:04:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18042
IP address blocks: 220.157.112.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1945 (0x799)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 29 10:04:35 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5271A5EEA39B3C10C5587099E921503B6F9454AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:02:d8:5b:2b:d7:86:c0:28:cc:e7:af:40:e0:
83:e8:ff:e1:a3:38:2d:2c:ef:2d:a7:0e:6d:f8:ff:
3f:bc:8f:af:34:e9:67:b2:84:f2:c0:cb:9a:4b:1b:
1d:4b:dc:b1:ab:f2:54:38:2f:3c:b9:12:e6:66:e1:
ca:d9:76:c3:2d:0f:bf:84:90:17:9d:00:d9:92:3e:
6a:00:2c:00:13:b1:44:49:d2:99:7b:ba:85:55:c3:
8e:16:24:c0:e9:6b:59:a1:c1:f5:7b:95:14:2e:f4:
db:76:c1:d1:bb:b0:38:13:5c:0e:ce:29:44:a0:02:
ef:f0:33:f6:b2:f1:6d:e3:00:68:0d:28:75:8d:44:
aa:02:99:04:15:ce:7c:11:e0:04:e7:36:0d:71:07:
25:ec:82:92:20:ac:bc:87:04:53:fe:9d:1a:70:6a:
c8:be:09:98:cf:ce:07:9a:16:fd:37:f9:ca:8f:88:
f5:e6:d6:97:98:7d:dd:5b:c2:5b:f4:e0:35:5b:a4:
5c:01:4b:2e:d8:74:79:ab:de:b5:4b:54:71:94:c2:
75:db:5f:44:3e:05:90:20:67:4f:1e:43:67:12:d6:
ec:f4:1e:38:2c:eb:ae:69:5c:eb:38:4e:0b:eb:21:
49:d7:0d:d1:f9:83:53:02:a7:5d:8b:30:dd:08:94:
9a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:71:A5:EE:A3:9B:3C:10:C5:58:70:99:E9:21:50:3B:6F:94:54:AF
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/UnGl7qObPBDFWHCZ6SFQO2-UVK8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.157.112.0/20
Signature Algorithm: sha256WithRSAEncryption
31:8e:a5:49:21:91:0f:b6:d5:0f:ed:28:4c:13:bc:f2:16:21:
f6:c5:35:ff:1a:5a:1c:45:9b:d3:8e:2f:4c:03:1e:62:b4:fb:
a7:56:41:7c:1c:9a:d1:f8:b3:70:7a:86:69:61:54:8b:0f:4f:
e2:69:7b:bf:59:ae:39:01:eb:eb:3e:16:9d:d4:5e:a8:51:20:
5d:22:cc:b1:16:ba:c0:46:1a:f8:ab:42:f8:64:d5:ae:98:9d:
93:7d:8f:89:6e:95:37:41:a7:f8:e3:27:78:73:39:67:79:54:
ec:cc:f3:6f:3f:2c:07:a1:12:3d:3b:bc:cc:7e:a7:bd:79:9c:
11:c7:2c:c9:33:a2:b9:bf:76:74:fa:70:6e:cb:e0:53:af:7e:
bc:8f:00:14:40:a8:14:de:03:f2:5e:ab:16:63:75:67:3d:3a:
43:6e:1f:2d:b6:b5:74:0b:a6:27:08:88:99:1a:98:ec:79:6d:
56:d4:06:2f:7f:32:bb:18:d2:bb:d3:6a:6d:e6:65:76:79:23:
41:61:f4:82:6f:90:b5:1d:9d:7b:3d:92:70:46:f4:b6:5f:47:
4f:aa:f3:76:b5:4d:43:85:cc:d5:56:aa:64:a6:84:0c:84:93:
4f:7f:18:25:6d:c5:a5:16:e9:ff:6c:ba:ff:e4:b1:71:a5:40:
8c:6c:59:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:19:49 2025 by rpki-client