Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/ZzcqBtDBhycaKC8vGzu6wFKNiDo.roa
File: ZzcqBtDBhycaKC8vGzu6wFKNiDo.roa (raw, json)
Hash identifier: VYE7fsLpoOp716oqMqdqadnAK6CRQKSIoZ+LycLrpGM=
Subject key identifier: 67:37:2A:06:D0:C1:87:27:1A:28:2F:2F:1B:3B:BA:C0:52:8D:88:3A
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 08F5
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/ZzcqBtDBhycaKC8vGzu6wFKNiDo.roa
Signing time: Sun 07 Feb 2021 11:54:10 +0000
ROA not before: Sun 07 Feb 2021 11:54:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18042
IP address blocks: 115.43.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2293 (0x8f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Feb 7 11:54:10 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=67372A06D0C187271A282F2F1B3BBAC0528D883A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:49:17:06:cd:0d:44:eb:c0:89:c9:95:1f:93:
d9:e4:4e:97:b7:99:fa:3c:74:5b:46:4e:27:7d:d8:
de:71:04:7e:44:d1:de:53:56:17:1d:95:5a:72:bb:
e3:96:44:59:87:4d:1c:8d:10:b2:8f:5c:51:21:e6:
b3:32:86:3e:ff:bd:d4:53:b6:c9:75:44:a4:d0:6c:
90:56:a9:e4:64:db:e8:93:3c:88:34:68:40:27:90:
93:6c:4f:e1:c6:5a:d9:2c:d3:4a:dd:e7:33:fd:fc:
e1:95:69:ba:13:2c:c0:96:10:be:35:a1:b5:9e:96:
86:db:15:cf:d8:6e:c2:24:51:67:ce:bf:da:94:8c:
f4:3e:bb:b2:e5:bc:10:d2:90:2f:63:53:09:a9:8b:
22:c5:5b:e1:f1:7c:45:0b:15:af:8e:be:fa:fe:2f:
cc:53:37:37:17:34:d8:4b:8a:2c:31:10:71:73:cc:
69:41:32:9c:14:ea:ea:a1:bb:79:fd:70:85:44:e5:
bd:8d:72:1e:0e:09:de:ad:b1:a8:6e:29:1e:88:c8:
7c:c1:32:2e:d7:e3:05:51:26:b5:25:62:e3:72:48:
78:7f:c2:fb:6a:c3:1c:56:d0:4c:af:f0:91:01:3f:
23:50:6a:a8:f2:4e:24:52:65:96:cc:7a:f1:23:a3:
94:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:37:2A:06:D0:C1:87:27:1A:28:2F:2F:1B:3B:BA:C0:52:8D:88:3A
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/ZzcqBtDBhycaKC8vGzu6wFKNiDo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.43.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8a:5f:b7:bb:97:18:ed:af:3b:07:fd:6a:b5:dd:5c:de:e5:c9:
e8:3a:c7:50:af:d8:2c:ba:c4:9a:1a:0c:4f:55:8e:3d:f6:bc:
0b:06:3f:77:60:b0:8c:a8:e5:36:aa:f6:39:fa:da:c2:42:07:
11:7e:91:94:37:d1:6e:41:c0:22:7a:01:4d:c6:fa:67:c8:70:
33:28:1b:04:3b:8a:23:3b:78:89:e4:f1:73:24:36:7d:34:5c:
db:28:2e:fd:00:9a:e4:7a:db:d0:fb:4c:b5:87:eb:e3:2d:63:
55:a5:50:9f:8e:2b:06:ba:82:06:e1:71:29:f4:9c:aa:26:09:
bd:42:e7:4e:43:2d:ce:83:31:5d:c7:18:4a:33:a7:82:e9:22:
71:54:89:81:9d:c0:0e:6b:72:09:25:0a:7a:77:0d:55:47:eb:
af:1c:2b:61:e4:ea:60:a7:d1:e8:2f:ae:61:63:6c:c9:65:b4:
cb:cb:be:e7:5a:7b:b6:96:31:ee:34:f4:e5:f8:fc:a5:76:de:
f5:fa:c4:73:af:a3:8a:69:16:a3:62:67:a4:e4:09:02:4b:3f:
98:05:33:bc:88:86:83:89:28:fe:04:36:52:74:35:24:42:1f:
52:d1:b9:50:2a:44:8f:c2:c1:00:d8:5f:b3:f2:a1:dc:fe:23:
cf:35:97:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org