Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/XRqoyqH0PdX12WTQowBwDjWyD_0.roa
File: XRqoyqH0PdX12WTQowBwDjWyD_0.roa (raw, json)
Hash identifier: XXoM/Xy7QIyoGr0TwzctzYt4VWADfGl9wYTS3YE686g=
Subject key identifier: 5D:1A:A8:CA:A1:F4:3D:D5:F5:D9:64:D0:A3:00:70:0E:35:B2:0F:FD
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0936
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/XRqoyqH0PdX12WTQowBwDjWyD_0.roa
Signing time: Wed 03 Mar 2021 01:02:24 +0000
ROA not before: Wed 03 Mar 2021 01:02:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9416
IP address blocks: 123.252.0.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2358 (0x936)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Mar 3 01:02:24 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5D1AA8CAA1F43DD5F5D964D0A300700E35B20FFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:86:4b:e2:f0:fe:b6:29:d1:66:30:96:9e:ee:
fc:4c:e8:fe:73:16:cb:7a:50:30:f0:44:40:25:fe:
be:25:21:5b:fa:7e:74:38:82:11:68:b3:67:93:0b:
1b:c1:c0:01:2a:b3:b0:c4:bb:00:6b:4c:97:1a:f8:
30:27:d0:b1:73:c7:71:5c:72:b1:79:37:3d:80:7f:
d6:db:69:05:6b:76:a7:d4:72:4a:c6:1c:03:7e:04:
cf:ec:a3:cb:fd:e1:ee:6b:79:c3:97:60:c6:45:76:
1b:c1:95:30:4f:ba:ea:b6:93:76:b5:bd:6e:39:b1:
96:f2:68:32:2a:8a:4b:6d:63:7f:e4:56:0c:f7:24:
ec:c2:b1:4b:04:69:59:41:df:e0:e2:cd:8a:e6:57:
97:1b:f1:5b:38:44:27:aa:16:3e:a9:91:6e:31:0d:
dd:17:c7:62:cb:1e:48:10:79:ea:94:d4:8a:c6:0e:
a1:43:a8:a8:a3:f8:3c:4c:36:f4:da:9b:b8:a6:ed:
c6:4e:69:ee:be:3d:4e:49:35:8f:0c:a5:18:3d:89:
f6:71:62:cb:9c:6b:79:b8:70:1c:33:38:cf:fa:8c:
cd:4a:67:8c:7d:1f:b1:83:ec:f0:4b:00:ea:2d:b3:
19:76:de:8c:b9:f2:c1:a6:95:5d:76:19:5a:42:dc:
1b:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:1A:A8:CA:A1:F4:3D:D5:F5:D9:64:D0:A3:00:70:0E:35:B2:0F:FD
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/XRqoyqH0PdX12WTQowBwDjWyD_0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.252.0.0/18
Signature Algorithm: sha256WithRSAEncryption
3e:77:72:44:35:89:33:3a:d6:5a:4b:96:d5:a4:33:e8:c5:c3:
84:17:3a:df:4e:ab:3f:d4:33:e0:34:6a:c6:9d:10:e2:e0:32:
d2:a5:11:79:ba:d2:9a:22:04:03:0d:74:bc:c5:b0:d1:71:2f:
ca:a6:af:a7:f6:7b:bd:e0:d1:cb:94:c1:05:a2:13:e2:82:3b:
32:e1:36:8d:3a:0e:42:ff:96:d1:3f:41:0d:34:0b:12:23:3c:
45:4e:e1:cd:6e:0d:37:d4:0f:59:28:1a:cb:d9:4f:f0:8e:a1:
da:fe:5c:9e:ef:19:88:ce:3d:92:3a:8a:a5:ed:ff:be:64:be:
2c:95:88:3b:83:51:d9:b8:41:af:6a:c1:e0:2c:32:07:13:26:
b7:2e:18:44:9d:02:a1:31:78:a0:f2:ac:31:f7:0b:60:36:2b:
51:8b:8b:99:75:f4:56:ec:ea:fa:55:53:2f:fd:55:b2:7b:3f:
d8:2e:ff:bb:d7:50:19:f6:f0:e1:a8:53:ef:4c:62:7f:ff:a8:
15:65:6c:ad:37:f8:8e:f8:0f:70:d2:de:75:8a:a3:e1:10:dc:
dc:5b:8d:08:8e:1f:fc:c5:a2:c6:ba:b4:50:3f:7f:26:12:0f:
55:dc:0e:29:73:f8:98:a2:ab:bd:19:2d:d8:d8:3c:43:78:08:
1d:44:01:5b
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICCTYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5
QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yMTAzMDMw
MTAyMjRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDVEMUFBOENBQTFGNDNE
RDVGNUQ5NjREMEEzMDA3MDBFMzVCMjBGRkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCnhkvi8P62KdFmMJae7vxM6P5zFst6UDDwREAl/r4lIVv6fnQ4
ghFos2eTCxvBwAEqs7DEuwBrTJca+DAn0LFzx3FccrF5Nz2Af9bbaQVrdqfUckrG
HAN+BM/so8v94e5recOXYMZFdhvBlTBPuuq2k3a1vW45sZbyaDIqikttY3/kVgz3
JOzCsUsEaVlB3+DizYrmV5cb8Vs4RCeqFj6pkW4xDd0Xx2LLHkgQeeqU1IrGDqFD
qKij+DxMNvTam7im7cZOae6+PU5JNY8MpRg9ifZxYsuca3m4cBwzOM/6jM1KZ4x9
H7GD7PBLAOotsxl23oy58sGmlV12GVpC3Bu3AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUXRqoyqH0PdX12WTQowBwDjWyD/0wHwYDVR0jBBgwFoAUmZu+Ex3100bydifM
T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H
L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL1hScW95cUgwUGRYMTJXVFFv
d0J3RGpXeURfMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ7
/AAwDQYJKoZIhvcNAQELBQADggEBAD53ckQ1iTM61lpLltWkM+jFw4QXOt9Oqz/U
M+A0asadEOLgMtKlEXm60poiBAMNdLzFsNFxL8qmr6f2e73g0cuUwQWiE+KCOzLh
No06DkL/ltE/QQ00CxIjPEVO4c1uDTfUD1koGsvZT/COodr+XJ7vGYjOPZI6iqXt
/75kviyViDuDUdm4Qa9qweAsMgcTJrcuGESdAqExeKDyrDH3C2A2K1GLi5l19Fbs
6vpVUy/9VbJ7P9gu/7vXUBn28OGoU+9MYn//qBVlbK03+I74D3DS3nWKo+EQ3Nxb
jQiOH/zFosa6tFA/fyYSD1XcDilz+Jiiq70ZLdjYPEN4CB1EAVs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org