Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/fkPPtQKpBP9WuJpvtQaaYmA_rnY.roa
File: fkPPtQKpBP9WuJpvtQaaYmA_rnY.roa (raw, json)
Hash identifier: UpEJgk2GALJmxCX1ASojE3LCrXq6Ui5wwksy722vwIE=
Subject key identifier: 7E:43:CF:B5:02:A9:04:FF:56:B8:9A:6F:B5:06:9A:62:60:3F:AE:76
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0796
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/fkPPtQKpBP9WuJpvtQaaYmA_rnY.roa
Signing time: Tue 29 Sep 2020 10:04:34 +0000
ROA not before: Tue 29 Sep 2020 10:04:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18042
IP address blocks: 122.99.0.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1942 (0x796)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 29 10:04:34 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7E43CFB502A904FF56B89A6FB5069A62603FAE76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e2:a2:b9:a2:b2:43:97:ab:90:27:07:6a:bd:
bc:35:bd:9c:77:de:18:4a:2c:da:cd:5e:93:8a:53:
3f:b7:48:b0:aa:1c:78:17:40:09:14:86:29:0d:fb:
81:5a:bc:5e:6b:80:14:32:c7:4b:4a:5b:a7:69:66:
a1:c1:31:b1:a4:4f:c6:29:66:2c:16:a7:8a:7b:49:
d1:f6:43:5e:52:07:81:e6:30:fb:90:ad:0e:e4:f5:
b5:1d:5b:b8:fa:a7:b1:67:1c:a7:ab:f9:b6:d4:c5:
4f:87:47:d7:bf:bc:3f:01:97:29:b6:40:fe:c5:05:
43:82:83:b2:65:51:47:b2:3d:67:45:fd:01:30:cd:
68:95:15:9a:96:a6:f8:63:5a:40:d5:e2:a2:5d:a2:
ec:da:30:0b:d2:07:63:06:ac:11:df:44:1a:6f:65:
25:62:c4:a1:62:80:0b:d7:f4:92:f2:80:87:34:43:
b4:58:8f:26:93:d0:6f:b6:9d:9d:34:c3:8b:76:ae:
db:b9:40:ee:f7:cc:2d:fe:c1:be:b2:b5:c8:fd:0b:
dc:ee:ed:20:17:0b:6b:d2:3d:7d:a2:79:fe:27:51:
47:41:97:35:27:f4:c2:11:20:1b:39:e1:87:a8:91:
ee:9e:a0:ef:f7:8c:bd:34:c3:b2:7f:b6:35:68:9d:
30:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:43:CF:B5:02:A9:04:FF:56:B8:9A:6F:B5:06:9A:62:60:3F:AE:76
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/fkPPtQKpBP9WuJpvtQaaYmA_rnY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.99.0.0/18
Signature Algorithm: sha256WithRSAEncryption
88:84:42:0d:5b:6d:3e:df:55:8f:de:da:57:e5:69:1a:65:d1:
ea:2b:5f:36:60:35:cc:1e:aa:b2:ad:04:09:fb:c3:27:66:9f:
ef:43:ff:30:8b:dc:4e:51:ba:27:56:38:9a:b4:15:9e:e9:7f:
2a:10:65:4b:12:98:88:28:75:f7:67:1c:c9:70:1c:4f:79:7f:
2b:89:f5:99:53:35:02:9b:0a:04:e5:06:27:5a:41:83:d4:27:
2c:bf:df:cc:d6:4b:e1:dc:f8:4e:15:aa:1a:dd:09:36:ae:c1:
a9:18:0b:db:32:73:87:b4:fe:f4:39:e4:96:04:df:59:78:e8:
95:c7:4a:08:08:6f:f2:23:c9:5f:de:f2:ad:2a:e2:93:e4:fc:
a2:52:9d:f9:0e:a1:bd:82:ee:d9:fe:c6:c6:1e:45:a7:25:7e:
5d:89:1e:49:66:a2:38:d0:2b:8c:7c:1e:95:c7:ec:5a:db:6b:
dd:96:5f:d2:3e:d8:8c:cb:8d:f3:b7:5b:4c:9f:54:b9:2e:6a:
07:95:ed:c3:66:d8:b8:71:5e:30:98:66:60:a5:e1:4d:62:14:
3c:d8:fd:8e:2d:98:e1:1f:d5:b9:44:43:81:f8:b1:36:73:18:
85:a3:2e:f5:00:ae:ea:b1:64:0f:32:a6:5f:a1:0e:7f:58:f3:
44:9c:09:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org