Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/Y_SLoemVVs1N4iyRe3Ps0EXE7EI.roa
File: Y_SLoemVVs1N4iyRe3Ps0EXE7EI.roa (raw, json)
Hash identifier: IOf3xaREuvDVzXqFUkMnGGKd9xv+BL662XoQI7BVzRg=
Subject key identifier: 63:F4:8B:A1:E9:95:56:CD:4D:E2:2C:91:7B:73:EC:D0:45:C4:EC:42
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 093A
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/Y_SLoemVVs1N4iyRe3Ps0EXE7EI.roa
Signing time: Wed 03 Mar 2021 01:55:04 +0000
ROA not before: Wed 03 Mar 2021 01:55:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18042
IP address blocks: 123.252.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2362 (0x93a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Mar 3 01:55:04 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=63F48BA1E99556CD4DE22C917B73ECD045C4EC42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5f:98:c0:35:62:ec:cb:fd:95:8b:f2:cd:93:
d2:e6:96:55:db:7f:a5:d7:7c:bb:45:e8:a2:28:50:
60:bc:8e:f3:40:5f:f3:c5:12:13:52:f0:09:54:0d:
b7:08:24:d5:74:c5:86:e2:b7:19:5b:3d:00:90:a1:
d7:53:9f:ae:17:7c:e2:52:d0:60:ec:5c:15:79:03:
59:01:06:24:39:4b:f8:2e:ec:67:43:c1:fa:fe:02:
c4:b3:5e:4a:e9:45:c7:c8:7a:72:29:ce:7a:76:42:
b5:3f:b8:64:0c:50:46:bb:22:4f:55:84:78:92:78:
50:7c:32:cf:b5:25:12:72:be:0b:93:1d:ba:e9:db:
e9:28:a8:3f:4a:ec:95:cd:06:15:b8:97:9b:0d:6f:
5e:3e:59:2d:4c:87:4c:7c:66:f6:03:6c:af:6a:6f:
fc:33:0f:23:97:93:d6:80:ea:38:6f:3c:b7:6f:64:
d0:21:12:2b:05:06:8b:d5:8a:1a:4e:bf:13:b6:7c:
c7:29:ef:72:2a:bd:ce:22:5c:3d:8a:f6:9c:1c:ab:
b2:b5:f5:bf:0b:92:05:7c:74:83:43:47:8a:4b:b3:
45:44:7c:ee:8b:2f:4a:13:41:eb:95:10:3b:d9:04:
cd:c4:21:0c:48:55:bb:fc:be:f1:7c:a8:0a:7a:ab:
6f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:F4:8B:A1:E9:95:56:CD:4D:E2:2C:91:7B:73:EC:D0:45:C4:EC:42
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/Y_SLoemVVs1N4iyRe3Ps0EXE7EI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.252.0.0/17
Signature Algorithm: sha256WithRSAEncryption
99:43:67:37:76:49:c9:6e:43:0b:cf:1c:91:85:b4:14:2e:d6:
01:fc:f4:a6:29:f1:1a:3c:1f:cb:7d:12:3b:dd:b5:a2:9e:1a:
57:5c:0f:31:3a:a9:1d:0f:3b:21:07:6f:be:a4:b5:4d:37:d1:
92:5a:26:90:2b:26:a7:a8:30:6b:af:89:ed:e6:73:8f:ad:cd:
53:17:6c:43:d3:86:0d:dc:3b:26:f3:23:b6:1d:b3:2b:6a:d9:
55:b7:89:df:fb:36:1c:4e:f3:7e:84:6f:d7:23:12:19:2b:17:
00:61:28:75:5d:60:bb:a8:31:34:56:ec:05:05:df:1f:96:b0:
d5:50:9c:c0:7c:36:83:a5:77:fd:ef:ee:b7:0d:a1:24:ce:65:
eb:73:fd:b6:3a:36:51:f7:39:d5:d0:f7:32:62:ce:cd:fa:b4:
11:fb:e0:62:91:08:03:e0:ee:07:d6:a8:70:3d:0d:8e:6b:18:
b9:4b:6a:63:38:1e:1b:68:bd:c7:50:f2:75:a8:bf:03:1a:51:
23:dc:5d:c9:8d:91:46:00:d3:f6:a5:8c:2d:17:32:da:12:23:
49:e0:c5:c1:7f:6f:7f:00:e7:d8:b4:5e:bd:04:67:4c:8b:e8:
b1:21:0b:eb:08:b4:37:73:8c:9f:e1:5f:95:ac:64:24:71:5c:
d0:24:c7:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org