Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/ahdXtsQKEWd2jVG2aDQoAm7_CFU.roa
File: ahdXtsQKEWd2jVG2aDQoAm7_CFU.roa (raw, json)
Hash identifier: fK8Ou733RmYz5y0rY1sb0lFL0j61eO+LZC0E/0xGZb0=
Subject key identifier: 6A:17:57:B6:C4:0A:11:67:76:8D:51:B6:68:34:28:02:6E:FF:08:55
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0951
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/ahdXtsQKEWd2jVG2aDQoAm7_CFU.roa
Signing time: Wed 03 Mar 2021 02:05:40 +0000
ROA not before: Wed 03 Mar 2021 02:05:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18042
IP address blocks: 202.151.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2385 (0x951)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Mar 3 02:05:40 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6A1757B6C40A1167768D51B6683428026EFF0855
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:eb:aa:17:2c:a1:48:23:e1:dd:8b:45:66:26:
b2:64:73:cf:00:28:f2:f5:02:15:02:9a:9d:b1:b4:
d0:82:7d:9d:0b:f2:6d:81:f6:50:e7:b7:f9:6d:f1:
ac:44:55:1f:d9:96:c6:b4:ed:9c:b7:c5:d6:67:3a:
0e:e6:a9:14:ff:f3:15:1f:0b:fe:46:0a:35:a6:a6:
7f:35:79:64:15:de:ff:48:36:fc:be:a4:e6:57:36:
f8:77:f6:8f:55:ae:ec:f8:19:6e:62:40:1f:33:6f:
1c:9e:4a:7c:37:38:51:e6:2a:d7:da:ff:35:56:1f:
bb:12:86:02:70:9d:65:c9:07:e8:b4:79:db:f9:f8:
ab:ad:34:99:d3:19:95:ca:ce:c9:d5:f6:c8:3a:16:
dd:e7:56:88:01:1b:56:16:1f:62:44:73:18:89:e6:
82:ea:5a:65:bc:12:fe:66:6c:0a:30:59:af:93:67:
b8:12:91:8e:76:3b:b7:58:46:96:3d:b9:eb:c0:f7:
6d:64:59:bb:26:40:a7:99:d7:e7:e2:91:ce:1f:f3:
21:c3:cd:4a:55:65:66:05:2c:b1:98:5e:b8:8b:a1:
94:a3:89:61:47:99:1a:8e:8a:30:95:54:dc:80:13:
b0:fb:fe:af:32:b0:58:1c:ac:97:e0:88:63:0b:e6:
22:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:17:57:B6:C4:0A:11:67:76:8D:51:B6:68:34:28:02:6E:FF:08:55
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/ahdXtsQKEWd2jVG2aDQoAm7_CFU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.151.48.0/20
Signature Algorithm: sha256WithRSAEncryption
4c:40:b1:d2:2f:7e:a3:51:71:d4:a0:12:b1:57:1d:43:1e:63:
39:c4:83:e3:3b:8d:f1:01:ad:37:1f:7a:e2:8f:08:05:7e:52:
e3:f5:b1:c5:2b:ae:c3:1e:c9:6b:49:47:95:c3:39:a0:5c:5f:
87:4c:9a:9d:da:09:26:d4:ed:8b:68:12:1f:2a:4d:81:ce:ce:
14:9e:6a:2d:ec:23:b2:d9:22:b8:c2:c7:ca:c7:0f:d6:99:35:
3c:c3:6f:59:65:84:e2:d9:b3:25:b4:5f:ab:fb:97:b0:f6:98:
06:d0:cc:d8:45:0b:32:06:1a:98:65:a5:9a:d7:ab:16:a7:47:
a1:4f:c4:27:33:6c:80:f3:b5:07:61:6a:5a:25:9f:77:a6:62:
95:1e:9a:a8:af:9b:45:a2:53:e8:ca:2c:ec:57:9e:e5:dc:80:
ef:2a:d5:f9:c5:f0:70:89:ae:80:f3:b0:98:c5:fc:a7:ab:fa:
7a:7c:f2:c7:86:e5:4f:98:7c:82:fe:f7:de:6d:49:1d:32:4f:
f5:27:fa:4c:d3:b5:96:0e:f3:a9:c5:11:0e:83:20:a0:a9:8e:
e3:ba:8d:e9:51:12:04:cf:e4:89:9d:36:c9:21:98:c2:07:81:
24:93:84:d4:b4:37:a8:4a:de:3d:e3:d1:b0:5d:51:07:14:11:
05:1c:15:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org