Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/_gU5h9ZXn_yBFVVi8t5KD-M_QHo.roa
File: _gU5h9ZXn_yBFVVi8t5KD-M_QHo.roa (raw, json)
Hash identifier: TH5nhmMRYkRINJ+rzVatjafo+3Hqgx+F+pvc2icM0ts=
Subject key identifier: FE:05:39:87:D6:57:9F:FC:81:15:55:62:F2:DE:4A:0F:E3:3F:40:7A
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0AE8
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/_gU5h9ZXn_yBFVVi8t5KD-M_QHo.roa
Signing time: Thu 15 Sep 2022 02:40:55 +0000
ROA not before: Thu 15 Sep 2022 02:40:55 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9416
IP address blocks: 119.14.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2792 (0xae8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 15 02:40:55 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FE053987D6579FFC81155562F2DE4A0FE33F407A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:79:6d:a9:8e:ee:6f:0f:3b:2d:5f:72:ae:66:
ec:a9:05:21:98:88:ef:4e:44:d2:1a:02:3d:e2:3a:
0d:b0:ef:d7:ad:cb:dd:ef:df:da:97:25:bb:0f:c3:
67:71:7b:79:d5:f4:62:69:9f:0f:66:94:76:06:5e:
a0:da:a6:f7:63:78:99:0f:22:c6:f7:c5:b0:0b:7d:
4c:2b:ed:d7:e2:c8:95:5d:db:f0:47:a6:60:f5:38:
b4:fc:ec:20:db:d1:22:c2:c5:f6:4a:62:73:98:8b:
b5:55:07:55:d6:5b:3b:8c:2e:df:db:a0:7a:bc:f6:
2a:17:d2:4d:54:f3:33:aa:46:96:54:79:14:37:a9:
d5:50:a0:0b:09:6d:30:3e:31:76:17:27:7b:dc:d1:
d3:de:86:39:9f:d8:76:9c:9e:74:26:88:89:13:ec:
bb:de:d6:7f:56:c3:a9:ec:5c:67:c1:f0:6d:6f:27:
37:ad:a7:f7:7f:27:4c:2b:75:02:04:8e:bd:e6:b8:
10:ef:ec:a9:27:67:45:73:0a:96:2d:52:14:b7:ae:
a3:5b:b1:b9:bc:c6:db:d9:dc:57:b9:8e:f9:ac:81:
6c:ec:59:b6:9f:64:81:a5:31:88:3a:00:85:55:ae:
1a:70:02:c0:39:be:bb:b4:57:0f:da:5c:dd:6b:37:
f0:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:05:39:87:D6:57:9F:FC:81:15:55:62:F2:DE:4A:0F:E3:3F:40:7A
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/_gU5h9ZXn_yBFVVi8t5KD-M_QHo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.14.0.0/17
Signature Algorithm: sha256WithRSAEncryption
93:10:f5:2e:12:ae:ab:04:60:23:ab:80:c6:f8:ff:2a:48:ab:
30:02:25:db:f4:96:8c:ad:b1:b6:8b:76:f9:1b:1b:d7:bd:4c:
5d:fc:5a:14:96:fb:e0:93:30:25:4b:9d:f1:c0:50:c1:d4:2e:
09:3f:9d:aa:18:54:e2:af:e4:7d:22:cd:b8:fb:dd:53:5f:13:
de:f8:e7:ee:d4:1f:94:a5:e6:ea:21:50:02:ab:83:c0:d4:82:
7c:f9:0a:39:a5:e0:e2:04:60:34:a4:b8:25:a1:61:92:a5:63:
3e:80:0f:0b:60:d0:b2:f8:2d:bf:f1:05:2d:02:28:06:08:4f:
60:81:eb:f2:82:27:89:28:91:8d:b2:b1:02:a3:23:5a:ff:c0:
b5:dc:8e:90:93:98:6c:8d:71:84:79:3b:19:db:33:a0:d4:a9:
2a:d4:db:ae:e7:71:fa:c8:20:9e:f8:b2:bb:2e:1f:1b:aa:5e:
43:10:85:08:5c:ff:e4:67:c2:16:e3:f5:bb:9e:2e:94:72:37:
c4:aa:a1:c3:56:50:19:64:94:b0:47:45:19:01:e0:65:d2:d6:
51:4f:23:6a:22:ca:cf:d1:78:9f:de:c8:6e:cb:3f:4d:21:13:
5f:91:ba:13:a8:e6:76:de:fc:89:8f:df:5f:ef:db:f8:ed:ba:
ed:2e:eb:d3
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICCugwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5
QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yMjA5MTUw
MjQwNTVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEZFMDUzOTg3RDY1NzlG
RkM4MTE1NTU2MkYyREU0QTBGRTMzRjQwN0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC8eW2pju5vDzstX3KuZuypBSGYiO9ORNIaAj3iOg2w79ety93v
39qXJbsPw2dxe3nV9GJpnw9mlHYGXqDapvdjeJkPIsb3xbALfUwr7dfiyJVd2/BH
pmD1OLT87CDb0SLCxfZKYnOYi7VVB1XWWzuMLt/boHq89ioX0k1U8zOqRpZUeRQ3
qdVQoAsJbTA+MXYXJ3vc0dPehjmf2HacnnQmiIkT7Lve1n9Ww6nsXGfB8G1vJzet
p/d/J0wrdQIEjr3muBDv7KknZ0VzCpYtUhS3rqNbsbm8xtvZ3Fe5jvmsgWzsWbaf
ZIGlMYg6AIVVrhpwAsA5vru0Vw/aXN1rN/DfAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU/gU5h9ZXn/yBFVVi8t5KD+M/QHowHwYDVR0jBBgwFoAUmZu+Ex3100bydifM
T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H
L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL19nVTVoOVpYbl95QkZWVmk4
dDVLRC1NX1FIby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAd3
DgAwDQYJKoZIhvcNAQELBQADggEBAJMQ9S4SrqsEYCOrgMb4/ypIqzACJdv0loyt
sbaLdvkbG9e9TF38WhSW++CTMCVLnfHAUMHULgk/naoYVOKv5H0izbj73VNfE974
5+7UH5Sl5uohUAKrg8DUgnz5Cjml4OIEYDSkuCWhYZKlYz6ADwtg0LL4Lb/xBS0C
KAYIT2CB6/KCJ4kokY2ysQKjI1r/wLXcjpCTmGyNcYR5OxnbM6DUqSrU267ncfrI
IJ74srsuHxuqXkMQhQhc/+Rnwhbj9bueLpRyN8SqocNWUBlklLBHRRkB4GXS1lFP
I2oiys/ReJ/eyG7LP00hE1+RuhOo5nbe/ImP31/v2/jtuu0u69M=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org