Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/WjNWjjGp0bXLm-9-CvTh6xFQ0II.roa
File: WjNWjjGp0bXLm-9-CvTh6xFQ0II.roa (raw, json)
Hash identifier: SpFV73ewRXu7k7D9khmTtZTnt2Z9cCixTjs5FrBm1Gs=
Subject key identifier: 5A:33:56:8E:31:A9:D1:B5:CB:9B:EF:7E:0A:F4:E1:EB:11:50:D0:82
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0792
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/WjNWjjGp0bXLm-9-CvTh6xFQ0II.roa
Signing time: Tue 29 Sep 2020 10:04:33 +0000
ROA not before: Tue 29 Sep 2020 10:04:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9416
IP address blocks: 220.157.112.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1938 (0x792)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 29 10:04:33 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5A33568E31A9D1B5CB9BEF7E0AF4E1EB1150D082
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b4:28:ed:a2:ef:39:1a:b7:36:02:e6:c9:35:
e3:9b:54:7c:e2:61:9e:53:95:b0:19:ad:dd:2b:fd:
1b:6b:d5:ea:ac:57:82:26:54:6a:b3:23:2b:af:1f:
a2:23:c2:86:30:46:f7:c6:91:c7:20:b0:8d:e9:4d:
be:3e:52:38:af:50:e2:c8:56:04:40:8a:2d:14:8a:
67:88:e1:37:f8:66:3a:f0:b2:0f:fb:79:3f:10:d9:
5a:f0:40:08:45:28:4e:7f:d9:d6:48:f9:16:3d:c1:
ac:a4:80:9e:c4:19:c7:77:7e:a3:e5:6f:46:44:ca:
fd:26:ca:0e:4e:35:1b:64:d9:c4:9a:24:06:c2:0f:
a7:30:0a:27:29:6d:6e:b7:1c:bb:f3:54:1e:a8:51:
c0:10:62:68:fb:ed:5a:99:6c:04:08:00:57:02:4c:
b5:ee:41:db:5e:62:b6:d8:dc:bd:0f:aa:f9:9a:4a:
b0:2c:6c:fb:9d:6b:a7:49:d8:9c:be:4a:77:19:dd:
1b:f8:12:d6:75:a6:3e:44:62:f1:28:91:05:fe:d7:
93:52:6a:61:04:3d:91:4a:3f:5d:be:3f:84:a8:39:
82:e9:75:5e:60:2d:8c:8d:1b:20:c0:b0:c5:e5:df:
6b:68:cd:ef:61:b0:19:d8:fd:f9:dc:69:f6:0e:df:
00:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:33:56:8E:31:A9:D1:B5:CB:9B:EF:7E:0A:F4:E1:EB:11:50:D0:82
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/WjNWjjGp0bXLm-9-CvTh6xFQ0II.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.157.112.0/20
Signature Algorithm: sha256WithRSAEncryption
29:b4:61:5f:84:13:97:2d:ba:d0:61:fb:e8:99:23:62:06:bc:
fe:d5:a9:fa:60:1f:47:6a:6b:c3:25:f0:de:35:7d:20:78:ff:
8a:d2:2f:73:bd:b3:9c:47:2f:9e:b7:54:c7:c4:9f:ae:7d:4a:
87:3c:2f:eb:79:c2:87:a0:e4:8f:a2:a9:ec:8c:a8:29:31:a3:
0f:9d:91:4e:f5:a5:d9:2a:dc:08:d6:af:7e:dd:d5:68:74:1c:
ab:37:c9:76:37:b5:dd:4c:19:6c:9a:bf:04:9b:a3:b0:d0:55:
df:91:fe:fc:2f:4c:76:a4:b6:34:33:d4:fe:6f:d1:d2:cd:e1:
5a:b9:00:81:f9:e2:42:28:92:f5:41:a0:da:10:93:98:60:88:
0b:82:27:77:c7:86:02:9e:a5:4d:95:26:3d:00:2c:75:d1:4c:
20:db:b8:6d:93:20:8e:da:e7:87:bf:29:be:fe:50:a3:29:ef:
ad:bb:ac:d0:bd:f0:34:f7:65:de:24:f1:31:af:40:fe:10:4e:
56:20:9d:0c:bd:96:d6:35:3f:04:88:b9:92:62:14:39:4d:0c:
6b:b0:e6:e8:1e:3d:c5:50:8f:fa:e0:55:87:2d:7d:e0:52:59:
4b:00:98:76:bb:1c:c0:39:88:29:71:0d:e6:df:1f:74:24:e7:
75:81:ab:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:28 2025 by rpki-client