Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/gZnpC1NjsAEfHmwXw3eZmtAaY_w.roa
File: gZnpC1NjsAEfHmwXw3eZmtAaY_w.roa (raw, json)
Hash identifier: EMNAJubxveXvUqbtqI5wcFGmzxh3ObobH7fmBLUbfwE=
Subject key identifier: 81:99:E9:0B:53:63:B0:01:1F:1E:6C:17:C3:77:99:9A:D0:1A:63:FC
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0BF9
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/gZnpC1NjsAEfHmwXw3eZmtAaY_w.roa
Signing time: Fri 01 Sep 2023 09:11:50 +0000
ROA not before: Fri 01 Sep 2023 09:11:50 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9416
IP address blocks: 122.99.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3065 (0xbf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 1 09:11:50 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8199E90B5363B0011F1E6C17C377999AD01A63FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:9b:32:27:28:c0:71:13:3f:2c:34:ce:c6:9b:
5c:76:62:61:0d:ec:5b:d0:56:65:b2:76:a9:e1:dc:
67:9f:3b:21:ef:6c:7a:bb:1e:2f:f9:99:14:7f:e6:
4f:e5:2b:ae:33:1d:fa:66:a4:81:0d:6c:b3:bf:f2:
e7:c3:71:98:b1:08:2e:bc:56:7f:b1:43:ae:21:05:
02:f0:92:0a:e2:70:dc:1d:2f:a8:6c:ca:a8:71:ff:
8c:57:8c:0d:0e:38:e6:9d:49:d6:f1:d2:44:3c:24:
11:aa:77:5e:74:ff:55:f0:cb:56:88:40:aa:42:ae:
b8:30:58:1b:94:79:fa:a6:80:25:ad:e2:27:9c:81:
8f:cb:55:c2:87:83:6d:84:2f:9b:d2:1c:df:f7:55:
0b:b7:95:71:23:84:1c:c8:3a:00:88:d8:4e:a7:45:
0e:cd:38:66:ad:f1:44:30:6e:49:20:e4:3d:71:68:
1c:22:d3:84:a7:68:c2:f6:18:af:dd:1b:08:69:5c:
21:39:c1:5e:2d:da:7b:f4:a4:43:a5:5f:dd:39:ce:
d6:80:31:4e:84:a3:ea:d2:01:d9:d0:44:c7:13:7d:
1c:1a:6b:98:e1:d3:3e:23:c9:d5:f1:af:4d:a3:aa:
f5:e1:f7:2f:36:56:98:3d:72:e5:3e:7c:5c:62:68:
c3:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:99:E9:0B:53:63:B0:01:1F:1E:6C:17:C3:77:99:9A:D0:1A:63:FC
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/gZnpC1NjsAEfHmwXw3eZmtAaY_w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.99.0.0/18
Signature Algorithm: sha256WithRSAEncryption
36:95:9f:48:d3:99:16:24:4e:2d:9e:62:f1:ca:70:a7:d3:07:
32:8e:86:05:35:db:3d:01:7f:b3:64:b9:ef:69:71:b8:88:db:
52:0a:df:63:45:35:47:44:7f:84:7e:64:70:e0:87:8d:cd:ac:
fe:56:9c:88:68:01:33:93:50:7b:44:f8:16:fd:2e:fd:bb:50:
a8:10:18:76:10:7b:31:7e:63:18:20:95:20:17:4c:55:48:9d:
d6:a8:ca:b4:0c:d2:b8:3e:a0:92:95:82:c6:15:dc:b2:48:ce:
61:97:8d:10:21:2c:cc:ce:f0:bd:45:da:9d:7e:23:82:4b:8a:
b1:8c:a9:fe:89:91:71:27:2e:8f:3a:d6:a4:a0:a7:36:fd:f1:
ba:4f:de:69:b9:c9:a1:e9:da:fc:7d:70:48:5f:b8:84:29:86:
f1:3e:3c:11:84:98:cc:48:e1:6f:a5:05:41:89:4b:ac:a7:3c:
8b:f8:fc:5e:a2:ff:ef:eb:d7:e0:42:c1:4d:14:20:bf:f8:7e:
47:f5:20:36:ae:64:fa:31:34:40:cd:f5:cb:72:51:4d:3e:05:
22:14:ec:d8:1e:d0:06:1d:f7:83:06:ed:7f:02:61:24:97:e5:
2d:99:cf:14:86:2b:39:55:40:5d:88:7a:57:74:fc:6d:63:60:
aa:30:e6:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:40:38 2025 by rpki-client