Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/XlEnuTVUN-Fm3kdIYC6y8Ki1QmE.roa
File: XlEnuTVUN-Fm3kdIYC6y8Ki1QmE.roa (raw, json)
Hash identifier: XIipFoXJ47Vj1IyqkndeUhvOXJabIo++amU+BSV/iSM=
Subject key identifier: 5E:51:27:B9:35:54:37:E1:66:DE:47:48:60:2E:B2:F0:A8:B5:42:61
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0909
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/XlEnuTVUN-Fm3kdIYC6y8Ki1QmE.roa
Signing time: Sun 07 Feb 2021 12:42:33 +0000
ROA not before: Sun 07 Feb 2021 12:42:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18042
IP address blocks: 122.99.0.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2313 (0x909)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Feb 7 12:42:33 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5E5127B9355437E166DE4748602EB2F0A8B54261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:36:07:3a:ab:74:32:85:f5:dd:41:ef:b4:63:
7d:65:05:7c:b4:af:de:05:b0:2b:77:44:93:9c:c9:
dd:15:e2:fb:eb:b7:6d:59:74:b4:8a:47:15:69:c5:
0a:4c:4f:98:82:a4:c5:1b:43:47:9a:a4:90:6d:45:
48:5f:bc:a6:1a:26:b4:bd:e0:57:89:bc:f9:37:10:
3c:31:fb:ba:e5:16:ae:8c:ba:51:2c:04:18:57:47:
78:ac:0e:33:4b:52:ac:24:87:88:20:f8:2c:07:c2:
f0:37:d0:6a:a1:87:41:eb:45:13:5c:5c:20:a5:90:
52:2a:3e:5a:82:e5:5b:c1:99:b4:65:5a:db:9c:4e:
ae:c9:91:0c:17:59:6b:96:aa:e3:bf:98:34:a7:13:
d6:5a:ce:c2:5c:17:59:1f:44:2f:04:13:10:21:32:
a7:d2:bb:66:f5:da:49:37:51:f6:7d:e5:82:f1:66:
9d:8c:8c:41:7d:d6:7f:be:4e:35:11:c2:99:15:3c:
c7:5f:41:59:82:fd:14:3f:9c:12:be:58:ef:c7:69:
3b:0d:7e:42:4b:4e:02:c2:3e:c2:fd:15:2a:4a:f1:
69:e0:76:95:ca:19:10:c8:a8:6d:55:0a:f0:11:07:
2b:78:b5:3d:ec:09:e9:5c:45:d3:d8:25:97:9b:82:
47:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:51:27:B9:35:54:37:E1:66:DE:47:48:60:2E:B2:F0:A8:B5:42:61
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/XlEnuTVUN-Fm3kdIYC6y8Ki1QmE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.99.0.0/18
Signature Algorithm: sha256WithRSAEncryption
18:49:f9:57:ef:35:db:00:37:16:c9:7c:7b:c8:b0:8f:4c:05:
16:3a:44:99:18:d8:60:bf:0a:6d:ab:2c:78:ef:99:cf:0e:d2:
77:74:16:92:2f:cc:a4:01:dd:6c:d2:3c:c1:a2:1f:25:e4:00:
1b:55:2c:45:02:56:f0:30:78:58:b2:aa:4b:dc:f8:3c:e0:28:
d7:9e:04:3e:48:e3:c8:d1:fe:e0:36:0b:aa:99:01:5d:6f:0a:
9e:a1:93:e5:da:e6:79:9c:f3:bf:02:0b:be:31:08:e8:ca:54:
0e:a4:a9:88:bc:7b:45:8f:9c:d2:7b:55:e2:a5:69:c7:ef:ac:
70:73:87:9c:cb:bc:7b:5e:78:6b:c7:0e:e3:d6:c0:53:9b:a3:
83:0d:34:1b:13:45:72:5d:66:a4:8f:18:46:f4:17:59:9f:c2:
b1:28:f5:51:a0:60:2c:33:cc:13:04:77:59:59:0a:26:03:5f:
cb:43:a6:aa:f4:9c:ea:35:f2:e0:78:8e:7e:7c:f7:0b:f6:46:
d6:62:fc:da:bf:38:70:2c:48:37:eb:6d:60:be:3d:3e:fc:03:
df:22:32:54:46:e3:79:d0:9c:5e:48:70:ef:0f:d6:70:71:cf:
32:ee:f8:a9:b4:41:6e:d7:6a:cc:99:fb:6a:cd:ec:d3:6a:88:
ee:2d:a5:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:05 2025 by rpki-client