Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/_X5U0rqkSVBHp76j0H7eHQlrpGM.roa
File: _X5U0rqkSVBHp76j0H7eHQlrpGM.roa (raw, json)
Hash identifier: 6sIAQyIIkgIt0XX9TobCRogQmzZUsOJg6thBZWjc3Aw=
Subject key identifier: FD:7E:54:D2:BA:A4:49:50:47:A7:BE:A3:D0:7E:DE:1D:09:6B:A4:63
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0929
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/_X5U0rqkSVBHp76j0H7eHQlrpGM.roa
Signing time: Mon 22 Feb 2021 14:10:06 +0000
ROA not before: Mon 22 Feb 2021 14:10:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9416
IP address blocks: 123.252.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2345 (0x929)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Feb 22 14:10:06 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FD7E54D2BAA4495047A7BEA3D07EDE1D096BA463
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:67:c1:2d:c6:ef:d0:3d:6f:c6:24:4f:b5:b0:
53:bf:0f:bd:dd:98:3b:61:9a:a3:c2:f9:69:3c:7b:
7f:1a:9a:ef:bb:27:39:f1:8d:70:1e:e5:8a:40:cb:
0f:30:87:39:9d:0e:88:8a:68:e7:8d:05:7a:d4:48:
a0:c9:9c:a2:70:35:24:5d:0f:a9:df:9a:6f:d2:7f:
da:8d:30:c1:0b:41:31:f7:52:09:25:be:c4:44:97:
5a:e6:ac:9f:74:c7:8c:44:21:78:8f:16:c2:1d:cc:
27:6c:ce:3f:17:1e:2a:f5:9d:86:9c:52:5b:f4:e7:
40:ad:9f:1c:9c:8d:cb:7b:4c:b0:5d:bc:b7:95:6e:
8b:0e:42:91:54:0f:86:9c:96:df:17:db:07:54:e5:
da:bc:22:cf:f8:0c:b1:a3:9d:f0:1a:94:72:4a:e7:
8e:e0:71:1b:db:a2:06:8f:ad:c0:cc:f7:e6:e7:1c:
c3:58:98:ea:7a:9d:30:f9:5f:b5:4d:5a:fc:a6:ca:
5d:d6:17:55:b6:e2:5f:2f:8a:23:cf:41:57:83:33:
3b:64:31:51:dd:eb:54:1c:8e:f9:7d:3c:ac:3a:39:
d1:e2:fc:f1:7b:92:d3:a6:e3:c6:dc:bc:22:94:29:
50:57:13:0b:2c:b8:64:d0:0c:65:4d:de:10:cd:34:
18:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:7E:54:D2:BA:A4:49:50:47:A7:BE:A3:D0:7E:DE:1D:09:6B:A4:63
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/_X5U0rqkSVBHp76j0H7eHQlrpGM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.252.0.0/17
Signature Algorithm: sha256WithRSAEncryption
69:1e:8f:5e:d6:db:76:62:ce:c7:fc:75:12:d3:c2:74:da:d6:
ff:12:b5:74:e6:cb:65:56:c4:6b:45:9d:14:26:89:f8:eb:df:
b9:27:19:53:b1:0b:65:d6:fc:4b:e4:78:b1:10:cd:da:1a:9a:
78:1c:7a:65:a0:0e:91:03:1d:42:4d:ca:ef:3a:d5:fc:f7:ef:
38:17:86:f6:c8:58:b0:92:d5:e8:37:13:73:8d:d7:9d:4d:dc:
fd:85:3c:a2:18:33:72:06:b2:da:7c:8a:61:1b:f5:1e:c4:1a:
79:5c:45:a5:49:05:61:68:2f:1e:3f:bc:8d:50:26:dd:c9:b3:
a9:e7:97:9d:a9:25:65:39:c7:b5:1b:11:f0:9c:45:54:b6:f2:
60:86:4e:64:58:d2:f7:3d:26:44:df:f7:33:bb:bf:d9:e2:8c:
4f:05:02:d3:89:7e:26:ad:5c:71:7f:c9:97:36:95:0a:6c:e3:
87:d5:80:8f:9d:89:26:05:65:1a:9a:64:c1:6e:34:39:7f:29:
8a:e3:18:a9:e6:7a:07:fc:a2:e5:1e:53:71:38:63:24:69:75:
b7:f0:69:26:59:40:09:ad:f4:2d:ab:f3:1e:6d:c8:91:83:60:
88:4f:0d:d9:ca:b0:3c:44:ed:e5:76:2c:e0:9c:bc:bd:b9:72:
83:64:17:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org