Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/dOsz0jhO3cFiEjEU6Te_8UFmfDM.roa
File: dOsz0jhO3cFiEjEU6Te_8UFmfDM.roa (raw, json)
Hash identifier: G/g4RRBIJu6MBqWzjuVi6blzmVwqCr6co1pnQLFlfLY=
Subject key identifier: 74:EB:33:D2:38:4E:DD:C1:62:12:31:14:E9:37:BF:F1:41:66:7C:33
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 09EB
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/dOsz0jhO3cFiEjEU6Te_8UFmfDM.roa
Signing time: Wed 29 Sep 2021 02:40:34 +0000
ROA not before: Wed 29 Sep 2021 02:40:34 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9416
IP address blocks: 124.155.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2539 (0x9eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 29 02:40:34 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=74EB33D2384EDDC162123114E937BFF141667C33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:39:1a:3e:ce:ad:31:bb:83:87:3f:8b:23:31:
cc:6d:38:3d:d3:e7:9a:d8:13:82:68:e5:58:c9:8c:
ef:58:4f:42:bd:8b:3d:1b:60:7c:12:8e:00:59:8d:
d5:07:8c:b3:29:8d:b2:77:25:f4:95:f9:f8:f4:af:
05:cf:8d:cd:5d:f4:77:52:75:56:99:5e:ad:1b:3f:
63:38:85:8a:d6:73:15:70:6f:b9:be:1d:ef:0d:fc:
f0:b4:ce:46:f9:89:ae:49:88:19:78:41:a0:fc:1a:
08:d4:9f:e1:44:8f:ec:01:d7:94:12:48:b0:63:0e:
c6:66:5c:af:7b:44:55:7d:03:d5:d8:65:a8:9f:52:
da:13:4f:33:e1:12:e7:2a:cd:7b:db:ce:47:13:fc:
8b:54:ef:57:11:6f:28:38:ee:f0:3b:1b:bd:65:0d:
10:85:46:eb:85:7c:9a:34:2a:5d:d4:07:11:56:a6:
51:ef:df:af:48:c4:6d:38:1e:bf:40:48:21:05:f0:
61:5e:e8:36:35:73:8c:6d:12:cb:54:b3:1e:e7:01:
ab:e4:e6:76:36:4e:26:e5:77:b3:d1:39:47:4e:32:
e4:95:31:cd:65:06:f0:83:8a:cc:d2:78:23:ee:ea:
95:02:6a:c0:4b:43:1d:99:08:3f:69:15:f9:a5:f7:
ef:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:EB:33:D2:38:4E:DD:C1:62:12:31:14:E9:37:BF:F1:41:66:7C:33
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/dOsz0jhO3cFiEjEU6Te_8UFmfDM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.155.128.0/19
Signature Algorithm: sha256WithRSAEncryption
02:7b:7b:48:d8:9d:8d:9c:48:42:36:f0:5e:82:c7:34:b2:2f:
97:71:6b:d0:bf:34:ad:98:f3:f9:37:e4:cf:12:97:40:bc:6b:
2d:18:b6:db:05:32:43:82:41:37:5a:05:c3:e4:5a:34:b3:79:
05:52:a0:d7:1d:3b:c0:89:97:e8:81:f6:d8:f3:00:d8:83:80:
9a:ba:6f:07:1f:c1:10:ea:1c:c5:51:ac:94:2c:49:60:30:bb:
59:47:29:3f:a7:04:e3:5c:96:86:6a:cc:81:60:f4:36:3f:c8:
e3:ee:44:73:33:e3:62:18:9b:4e:56:1d:b5:e6:bd:40:90:f1:
de:53:f0:6f:77:2e:31:62:47:fa:d6:72:6e:c4:73:05:8b:7e:
0f:88:61:65:64:11:c3:d4:45:09:d6:e8:06:cd:f5:4e:16:88:
97:43:65:d1:2c:df:a0:0b:18:75:d6:02:5d:98:d3:41:54:78:
2c:e1:a1:6f:e0:0c:77:2a:85:04:a4:aa:4a:b6:29:e9:c8:f4:
46:cf:f2:7e:8c:f9:f5:d9:c5:10:3e:12:83:9d:b5:6f:84:f6:
98:fe:ff:65:74:21:33:7c:55:ec:75:8e:16:2e:aa:64:dc:ec:
8a:2c:e3:3f:f5:b5:8e:f7:9e:34:3f:5e:b0:ac:0f:88:de:a1:
1b:31:a0:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:08 2023 by rpki-client on console-fra.rpki-client.org