Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/bOBARVfc60H0l742LjqMO5E3e5M.roa
File: bOBARVfc60H0l742LjqMO5E3e5M.roa (raw, json)
Hash identifier: /GKg7yOb5wU4UyBjkYLP+BdYPEjQumCXBHPbupChWDc=
Subject key identifier: 6C:E0:40:45:57:DC:EB:41:F4:97:BE:36:2E:3A:8C:3B:91:37:7B:93
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 09E7
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/bOBARVfc60H0l742LjqMO5E3e5M.roa
Signing time: Wed 29 Sep 2021 02:40:33 +0000
ROA not before: Wed 29 Sep 2021 02:40:33 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9416
IP address blocks: 220.157.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2535 (0x9e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 29 02:40:33 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6CE0404557DCEB41F497BE362E3A8C3B91377B93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:04:9c:84:8d:26:77:98:e6:10:e1:dc:fc:c2:
4c:ef:e4:ed:52:22:f9:c2:17:0e:0b:fb:32:94:e4:
0f:0b:97:03:f2:d8:fe:e3:9d:56:14:41:5c:39:fd:
73:21:c8:93:36:5c:d4:ee:f1:8f:ba:ba:65:67:30:
44:76:56:a7:85:d8:12:90:f2:7c:22:6a:d1:6c:c5:
96:7d:82:94:9c:96:01:b3:99:1a:74:1a:d8:2d:19:
0d:50:02:9d:7c:1f:07:c1:70:e4:40:24:e0:c3:8e:
66:88:ad:4f:c3:e6:a1:e2:ed:53:d2:97:88:bd:c1:
c4:60:ec:bf:2d:22:a1:a6:78:90:b5:ca:eb:0a:f2:
da:f2:04:b4:eb:66:c4:ea:74:59:e6:d3:ef:26:4f:
d3:bb:62:75:de:2f:f3:0b:b8:9c:37:40:29:81:c6:
98:ed:20:0c:62:85:52:66:dc:8e:a9:e5:1e:06:3c:
88:00:e1:ac:85:c6:35:29:60:ca:c5:ff:8d:63:63:
48:9e:57:40:1e:f2:b3:18:ad:e7:5c:94:bd:43:e4:
03:fd:6e:1c:b0:e0:21:e3:03:23:bf:0c:bb:92:42:
1b:03:80:5f:ba:ea:7d:8f:65:b3:b2:98:5e:57:ac:
65:0c:fe:0e:03:10:86:ea:27:7a:de:5f:e1:d0:ae:
64:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:E0:40:45:57:DC:EB:41:F4:97:BE:36:2E:3A:8C:3B:91:37:7B:93
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/bOBARVfc60H0l742LjqMO5E3e5M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.157.112.0/20
Signature Algorithm: sha256WithRSAEncryption
1f:0a:1b:bc:db:8f:ad:21:37:23:e8:d0:0d:cc:c3:4b:7a:1d:
2e:3e:38:f1:27:79:93:ca:97:96:87:3c:fc:d9:d5:04:c9:67:
f8:bc:bb:de:49:18:00:8e:47:6b:bd:98:97:e1:9a:85:38:4c:
40:6e:eb:96:5e:57:3d:87:3c:1c:07:68:58:1f:4f:bf:14:3a:
f7:2b:b5:66:e2:cc:c3:4f:60:96:ad:c6:33:3b:e1:1f:76:0c:
ee:d4:50:37:51:05:81:12:45:6c:65:88:ba:51:8e:fc:1a:d2:
95:b5:60:ed:20:05:a2:58:5a:95:e9:56:ec:5b:89:dd:49:c7:
b7:1a:f7:51:45:6c:21:47:75:80:8d:31:b7:a6:a7:a6:49:60:
19:c9:e2:a3:8b:da:05:a3:45:3c:98:1a:8d:2a:27:c8:44:f8:
ed:bb:8a:75:e6:af:fa:8e:aa:d4:a2:14:2e:f5:3b:d4:64:13:
f5:f5:58:50:ba:7e:4e:ad:58:0f:5a:e1:b2:6d:63:06:96:58:
76:6c:c9:6f:1e:03:0a:df:9a:5a:56:64:ca:fb:36:fe:34:79:
5f:8d:82:f0:5c:fb:30:13:ee:7b:b5:ce:dc:c8:f5:ef:22:7c:
22:b0:24:4b:c5:79:82:3c:16:85:83:9a:25:61:af:30:5f:29:
d5:eb:34:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org