Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/VQb39tGVbzM7zrhDUeXE8l1nPl0.roa
File: VQb39tGVbzM7zrhDUeXE8l1nPl0.roa (raw, json)
Hash identifier: 62OzBIoUQOZFQFrU6kW2NCPGuv6bQSiI2huBePGOHUA=
Subject key identifier: 55:06:F7:F6:D1:95:6F:33:3B:CE:B8:43:51:E5:C4:F2:5D:67:3E:5D
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0AE8
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/VQb39tGVbzM7zrhDUeXE8l1nPl0.roa
Signing time: Thu 15 Sep 2022 02:40:51 +0000
ROA not before: Thu 15 Sep 2022 02:40:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18042
IP address blocks: 115.43.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2792 (0xae8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 15 02:40:51 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5506F7F6D1956F333BCEB84351E5C4F25D673E5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:53:93:72:14:2a:d4:5e:f8:d7:d3:5b:70:98:
b5:e7:9f:d2:a3:dc:76:b7:98:2d:75:31:97:36:f0:
2f:61:20:33:a9:ce:85:06:cc:ca:ec:78:d6:7e:90:
57:8e:f1:d2:db:0d:af:08:81:f5:4b:87:56:6f:52:
cc:f3:1c:c2:a9:83:d9:b3:c4:5b:0a:1c:04:9e:e4:
4d:a7:bf:b5:5a:5b:88:9d:a5:50:7b:9a:7a:44:1f:
a9:65:02:79:ce:4f:1a:c6:c6:75:36:5f:08:6c:12:
ed:3f:a7:4c:49:62:aa:09:12:ba:e2:f0:3b:2f:09:
6e:a1:36:ae:85:51:46:be:d8:1c:ba:46:89:ec:6d:
8a:fe:42:e8:b1:04:17:a1:c2:11:aa:16:89:d5:14:
2e:51:59:dd:39:cf:0b:64:39:ed:1b:c5:22:9e:7c:
61:6a:ad:74:d8:31:28:1b:fd:cf:95:da:26:fd:71:
eb:ef:31:b4:a9:03:00:76:80:99:bb:69:34:97:f8:
96:7a:62:76:58:cc:88:83:5c:bc:95:99:76:96:3f:
b4:cc:83:b0:19:d2:a7:de:6f:e0:fb:dd:12:7f:0f:
73:5b:ae:7e:0c:a8:40:da:e5:0d:85:bc:4f:0a:46:
38:40:af:8d:29:b1:db:bb:c4:72:9e:7f:22:64:e6:
41:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:06:F7:F6:D1:95:6F:33:3B:CE:B8:43:51:E5:C4:F2:5D:67:3E:5D
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/VQb39tGVbzM7zrhDUeXE8l1nPl0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.43.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3a:80:b7:ff:b3:17:fb:96:0e:bc:22:e4:e1:5a:62:ff:fa:3e:
16:9a:96:47:e4:3e:7d:b9:69:92:62:86:3e:e7:5a:a6:12:5d:
6c:f5:b1:f7:5d:5a:8f:f3:24:2f:59:79:61:70:07:74:97:67:
5b:2a:3b:18:50:b9:7b:e3:34:6a:b5:26:c6:21:aa:ef:e6:9e:
9e:fc:fa:da:1b:8c:4c:ec:f7:14:c5:9f:1b:1e:ab:44:b4:ff:
83:5d:02:21:3d:b5:b8:0a:1a:16:b6:2d:7b:29:5d:c5:ad:8a:
b8:92:61:15:1e:15:e3:d5:52:1d:4e:be:dc:54:7a:7d:b4:ae:
37:26:f0:05:82:7e:53:ef:cc:5a:36:7e:67:b5:4b:95:aa:48:
ed:61:a9:5a:d4:4c:f2:42:4e:ad:2b:6b:91:be:bb:ac:dc:98:
aa:ea:7e:2a:55:1a:a2:15:9c:b5:4b:c7:f2:4c:0d:cc:98:fe:
2f:b8:07:2a:d3:81:d0:51:ad:d9:b5:e7:eb:0f:37:c7:ca:b6:
4c:74:08:e9:4f:59:61:0e:a1:41:b4:29:93:5c:63:d6:2e:1b:
ff:5d:9b:45:12:4c:3e:15:47:92:29:db:d1:2f:92:ea:05:14:
da:8f:ab:2c:84:63:7f:13:76:5c:08:ac:56:99:76:b2:cf:a6:
53:e8:6f:19
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICCugwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5
QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yMjA5MTUw
MjQwNTFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDU1MDZGN0Y2RDE5NTZG
MzMzQkNFQjg0MzUxRTVDNEYyNUQ2NzNFNUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6U5NyFCrUXvjX01twmLXnn9Kj3Ha3mC11MZc28C9hIDOpzoUG
zMrseNZ+kFeO8dLbDa8IgfVLh1ZvUszzHMKpg9mzxFsKHASe5E2nv7VaW4idpVB7
mnpEH6llAnnOTxrGxnU2XwhsEu0/p0xJYqoJErri8DsvCW6hNq6FUUa+2By6Rons
bYr+QuixBBehwhGqFonVFC5RWd05zwtkOe0bxSKefGFqrXTYMSgb/c+V2ib9cevv
MbSpAwB2gJm7aTSX+JZ6YnZYzIiDXLyVmXaWP7TMg7AZ0qfeb+D73RJ/D3Nbrn4M
qEDa5Q2FvE8KRjhAr40psdu7xHKefyJk5kE7AgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUVQb39tGVbzM7zrhDUeXE8l1nPl0wHwYDVR0jBBgwFoAUmZu+Ex3100bydifM
T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H
L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL1ZRYjM5dEdWYnpNN3pyaERV
ZVhFOGwxblBsMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwBz
KzANBgkqhkiG9w0BAQsFAAOCAQEAOoC3/7MX+5YOvCLk4Vpi//o+FpqWR+Q+fblp
kmKGPudaphJdbPWx911aj/MkL1l5YXAHdJdnWyo7GFC5e+M0arUmxiGq7+aenvz6
2huMTOz3FMWfGx6rRLT/g10CIT21uAoaFrYteyldxa2KuJJhFR4V49VSHU6+3FR6
fbSuNybwBYJ+U+/MWjZ+Z7VLlapI7WGpWtRM8kJOrStrkb67rNyYqup+KlUaohWc
tUvH8kwNzJj+L7gHKtOB0FGt2bXn6w83x8q2THQI6U9ZYQ6hQbQpk1xj1i4b/12b
RRJMPhVHkinb0S+S6gUU2o+rLIRjfxN2XAisVpl2ss+mU+hvGQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org