Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/_8QgCu2R4CQt5_fRPZZ0nEmjRO8.roa
File: _8QgCu2R4CQt5_fRPZZ0nEmjRO8.roa (raw, json)
Hash identifier: BeF8TERyh22mV25zxGGvb3H369PfKKL8305bHuxuLCQ=
Subject key identifier: FF:C4:20:0A:ED:91:E0:24:2D:E7:F7:D1:3D:96:74:9C:49:A3:44:EF
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 09E9
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/_8QgCu2R4CQt5_fRPZZ0nEmjRO8.roa
Signing time: Wed 29 Sep 2021 02:40:33 +0000
ROA not before: Wed 29 Sep 2021 02:40:33 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18042
IP address blocks: 202.151.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2537 (0x9e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 29 02:40:33 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=FFC4200AED91E0242DE7F7D13D96749C49A344EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:40:02:ac:55:bd:02:c0:a3:c3:a3:d3:e4:21:
4d:55:4d:e2:e9:89:b7:79:af:c0:81:56:35:a5:a0:
e4:6c:58:3c:41:88:89:76:8f:35:b8:80:66:4e:74:
cd:86:6a:82:e6:14:d8:56:1b:66:bb:ef:b9:fe:49:
a0:a3:13:78:e7:3a:96:7f:c5:44:bf:d6:12:a9:65:
16:cc:f6:40:d2:f2:9d:ce:88:ec:38:da:b7:b7:f3:
74:7c:37:b6:8d:bc:9e:e6:b8:0f:fb:f6:c5:26:95:
83:58:d3:06:a1:53:3d:d7:93:2f:54:6d:7e:28:f3:
d3:3b:c1:de:04:0c:ac:54:38:c1:49:64:9d:aa:6b:
b7:fc:e0:61:8a:49:a7:62:f3:ff:21:b1:c2:a3:c4:
ae:19:ec:14:d8:1a:21:0b:a3:f6:fc:76:c1:84:e6:
f4:d6:a7:e2:9b:a2:99:07:90:15:a7:86:cf:04:62:
fe:2e:17:4b:fc:65:a3:d9:bf:de:47:6f:26:2f:2d:
fc:73:5f:ac:02:ae:2f:53:16:ac:26:f7:38:9c:8b:
4a:ca:ec:33:40:fb:c8:0d:9a:29:9d:48:4f:5f:ac:
24:e6:9f:77:f3:58:dc:a3:f7:15:cd:bc:7d:7e:e0:
26:97:ac:e3:f8:d7:a7:9a:67:99:15:0d:ef:29:78:
fb:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:C4:20:0A:ED:91:E0:24:2D:E7:F7:D1:3D:96:74:9C:49:A3:44:EF
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/_8QgCu2R4CQt5_fRPZZ0nEmjRO8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.151.48.0/20
Signature Algorithm: sha256WithRSAEncryption
49:f1:f1:3f:ec:cc:cf:1b:da:a7:6c:c8:2c:09:c1:14:f1:3a:
0d:77:35:3f:56:22:40:e6:f5:31:b0:e7:9a:55:31:d3:37:32:
bc:44:9e:08:01:75:92:dd:25:11:0c:2f:85:dc:ce:d4:83:a5:
69:a7:d6:41:01:4c:3e:ed:83:7c:cf:0c:0c:d6:b2:55:20:68:
65:98:68:bd:dd:3b:10:12:79:01:1e:51:92:db:42:6a:5e:fe:
8b:f0:fc:79:17:9e:c0:88:a2:83:ae:13:4f:09:2b:cf:ae:ef:
1a:07:8b:7a:36:5e:53:0c:b1:f3:2c:1d:62:2c:68:da:7e:83:
a1:84:78:0a:c1:db:87:a6:76:44:54:39:ce:b8:bc:d5:51:4f:
7b:e2:46:47:fc:02:91:d6:9c:b8:1e:37:09:40:50:b0:ae:b1:
41:23:4e:a4:d0:c1:f5:62:3c:33:10:b7:3d:60:8d:30:02:91:
79:03:ba:2b:d3:74:b2:54:8f:9a:93:3d:47:79:c4:bc:f1:5b:
63:4c:70:dd:c1:ff:6a:15:eb:00:84:4a:62:64:36:39:be:06:
ae:e2:35:c1:2d:bb:6c:52:7c:8b:df:0a:69:f4:58:42:92:15:
87:e9:65:21:2f:2f:d6:e4:0f:46:0a:62:b9:3a:47:69:22:0e:
1c:93:a5:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org