Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/_4pP4WIXhLQGKQ0oZofbfdV9AAU.roa
File: _4pP4WIXhLQGKQ0oZofbfdV9AAU.roa (raw, json)
Hash identifier: WJaAlPKRr+yV0FJQW1U1qdqyB9kq+1McgTZS1kdxULo=
Subject key identifier: FF:8A:4F:E1:62:17:84:B4:06:29:0D:28:66:87:DB:7D:D5:7D:00:05
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0AE8
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/_4pP4WIXhLQGKQ0oZofbfdV9AAU.roa
Signing time: Thu 15 Sep 2022 02:40:50 +0000
ROA not before: Thu 15 Sep 2022 02:40:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18042
IP address blocks: 124.155.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2792 (0xae8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 15 02:40:50 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FF8A4FE1621784B406290D286687DB7DD57D0005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:cd:a7:9d:1c:aa:9e:7b:b3:47:e9:24:86:db:
7a:0c:74:3a:6b:53:67:35:2c:93:1f:b9:00:0d:0e:
f7:75:7c:5f:5e:00:07:f9:00:d6:ae:e8:c0:36:00:
cd:eb:69:91:c6:d0:1b:97:db:9a:07:b5:e2:6a:46:
a4:56:d2:29:7f:58:56:ff:68:f7:13:7d:d3:b0:58:
51:d7:4c:91:3a:6e:c7:76:ca:19:d4:f9:11:dc:d4:
ce:84:5c:f0:0a:46:73:5d:1c:f5:1c:98:57:31:75:
3e:28:a4:6b:45:fa:b8:c5:06:45:e4:2a:98:86:0e:
93:1b:47:e5:03:bc:92:cd:14:b6:7c:fa:81:62:47:
40:c0:f3:e0:bb:0b:b6:d5:d6:d5:fc:42:9c:e1:7a:
5d:c4:c1:8e:95:e2:f5:5e:c5:02:e3:b7:54:bc:34:
de:c1:f6:76:e7:0c:a9:00:a9:85:b6:a6:ab:61:8e:
96:f4:7b:f7:5f:08:d9:bb:83:ef:d8:c1:29:05:7d:
db:05:93:40:09:03:1d:9a:37:40:23:4f:de:89:56:
3e:fa:cd:a5:2b:02:a0:16:98:3c:1d:64:f3:66:f0:
2e:17:0b:a0:ef:c0:ee:ef:7a:1c:a3:e0:32:8d:21:
5f:4f:bd:ea:b3:4e:3b:d1:e4:e5:b5:55:ed:09:1c:
7c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:8A:4F:E1:62:17:84:B4:06:29:0D:28:66:87:DB:7D:D5:7D:00:05
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/_4pP4WIXhLQGKQ0oZofbfdV9AAU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.155.128.0/19
Signature Algorithm: sha256WithRSAEncryption
3b:d3:ec:86:dd:0e:02:cb:2a:dd:6f:a6:65:32:63:cf:43:22:
bf:c1:3a:8f:47:d4:61:0e:9f:bd:ff:d8:6b:98:52:0d:aa:19:
40:a9:37:81:76:dc:cf:1d:d4:97:3c:f4:29:45:9e:54:94:69:
12:46:24:4e:4c:7a:4e:4d:76:72:9d:ef:41:19:0d:63:ee:6d:
64:03:70:a5:a1:29:84:42:ff:66:67:0b:89:15:15:58:20:3b:
13:71:5b:07:78:50:80:f8:00:85:1e:9c:a2:0b:9c:93:ba:5a:
26:1a:4b:4e:f6:ba:80:56:53:cb:e6:ea:e1:c9:b4:7f:88:7f:
5d:98:7b:44:0a:ff:d8:c1:5e:f2:1f:59:44:37:56:43:d1:a8:
4c:21:e1:f8:8f:87:47:a4:1d:62:39:8a:7d:13:34:65:f9:a9:
08:a3:43:91:6f:a9:f2:a1:93:c0:a8:19:c1:ec:9e:82:43:19:
f0:46:38:1f:33:14:2e:fb:cf:8e:10:8c:b6:d1:95:39:ad:ca:
78:84:74:18:f5:94:b9:b2:ac:ae:11:30:26:62:02:ff:c1:57:
82:d5:bd:e0:f6:19:26:e2:ab:36:d9:ca:89:36:94:12:59:7a:
44:9e:ff:c3:7f:d7:e1:4c:fc:88:cf:b7:50:ab:2d:77:a0:1d:
4a:60:37:37
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICCugwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5
QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yMjA5MTUw
MjQwNTBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEZGOEE0RkUxNjIxNzg0
QjQwNjI5MEQyODY2ODdEQjdERDU3RDAwMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDLzaedHKqee7NH6SSG23oMdDprU2c1LJMfuQANDvd1fF9eAAf5
ANau6MA2AM3raZHG0BuX25oHteJqRqRW0il/WFb/aPcTfdOwWFHXTJE6bsd2yhnU
+RHc1M6EXPAKRnNdHPUcmFcxdT4opGtF+rjFBkXkKpiGDpMbR+UDvJLNFLZ8+oFi
R0DA8+C7C7bV1tX8Qpzhel3EwY6V4vVexQLjt1S8NN7B9nbnDKkAqYW2pqthjpb0
e/dfCNm7g+/YwSkFfdsFk0AJAx2aN0AjT96JVj76zaUrAqAWmDwdZPNm8C4XC6Dv
wO7vehyj4DKNIV9PveqzTjvR5OW1Ve0JHHy9AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU/4pP4WIXhLQGKQ0oZofbfdV9AAUwHwYDVR0jBBgwFoAUmZu+Ex3100bydifM
T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H
L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL180cFA0V0lYaExRR0tRMG9a
b2ZiZmRWOUFBVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV8
m4AwDQYJKoZIhvcNAQELBQADggEBADvT7IbdDgLLKt1vpmUyY89DIr/BOo9H1GEO
n73/2GuYUg2qGUCpN4F23M8d1Jc89ClFnlSUaRJGJE5Mek5NdnKd70EZDWPubWQD
cKWhKYRC/2ZnC4kVFVggOxNxWwd4UID4AIUenKILnJO6WiYaS072uoBWU8vm6uHJ
tH+If12Ye0QK/9jBXvIfWUQ3VkPRqEwh4fiPh0ekHWI5in0TNGX5qQijQ5FvqfKh
k8CoGcHsnoJDGfBGOB8zFC77z44QjLbRlTmtyniEdBj1lLmyrK4RMCZiAv/BV4LV
veD2GSbiqzbZyok2lBJZekSe/8N/1+FM/IjPt1CrLXegHUpgNzc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org