Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/iCCyxUkGgTTJh28u9AgtSVEUQQg.roa
File: iCCyxUkGgTTJh28u9AgtSVEUQQg.roa (raw, json)
Hash identifier: 1QUhs9FVkPAyV7MIeZDD1Vj8kjQ0v/aqzsr5Iv5rHwQ=
Subject key identifier: 88:20:B2:C5:49:06:81:34:C9:87:6F:2E:F4:08:2D:49:51:14:41:08
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0795
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/iCCyxUkGgTTJh28u9AgtSVEUQQg.roa
Signing time: Tue 29 Sep 2020 10:04:34 +0000
ROA not before: Tue 29 Sep 2020 10:04:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9416
IP address blocks: 122.99.0.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1941 (0x795)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 29 10:04:34 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8820B2C549068134C9876F2EF4082D4951144108
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:93:ec:c7:a3:9d:ca:50:90:7a:1f:d4:09:f3:
a1:d1:b5:c7:02:3b:49:fe:dc:6c:87:cd:e7:f4:4c:
f7:b0:b7:92:3b:b1:6c:03:a2:2c:ce:5f:6f:52:44:
6f:97:fd:b7:6a:6e:8b:10:9f:49:d4:db:af:9e:3a:
e3:15:58:9f:c0:8b:80:3e:c6:e8:be:32:39:b5:82:
8e:e3:c1:c7:2a:3b:57:49:9c:b8:59:95:76:2b:63:
08:2d:56:f9:e0:fd:91:76:91:db:84:a4:85:2f:d8:
55:0c:43:40:7d:8a:6c:a6:f2:c7:5a:54:2e:f6:35:
b9:e8:05:9b:89:4e:5c:e9:59:61:e5:0c:51:96:a9:
ed:d8:35:5c:bb:85:9f:94:35:81:8c:ad:91:77:2c:
6e:19:8a:7c:e8:0b:b9:22:32:5c:7f:16:51:5f:20:
14:12:35:d5:f8:84:76:12:d0:07:f4:01:60:5e:3f:
6d:94:b5:ef:68:9b:a7:36:f5:c9:97:d7:20:89:ea:
92:78:b4:71:7b:0b:0a:db:2b:3e:d4:54:76:2e:28:
f9:f0:22:8d:b3:46:53:e4:fc:31:db:79:b4:a1:ec:
c5:9b:d3:6c:9d:3c:83:f3:e1:3f:06:90:5f:c7:47:
62:10:d7:ef:2e:15:f4:b6:05:c7:ba:e7:4f:85:84:
de:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:20:B2:C5:49:06:81:34:C9:87:6F:2E:F4:08:2D:49:51:14:41:08
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/iCCyxUkGgTTJh28u9AgtSVEUQQg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.99.0.0/18
Signature Algorithm: sha256WithRSAEncryption
70:51:94:ce:d0:a6:68:7a:1f:20:fc:88:5a:47:07:3d:9d:50:
ef:5e:b6:11:1e:7c:30:8c:5f:65:20:25:dc:45:4f:8f:a1:a7:
9a:c7:a4:bc:88:60:57:7c:8a:18:8f:44:0d:b9:8b:ff:0e:b9:
d4:0b:2f:cf:26:a5:78:55:be:a1:12:be:3c:11:e4:89:41:e8:
8d:7c:27:28:44:f4:c6:36:a2:9e:6c:a3:90:a5:51:75:7e:b2:
c2:6f:75:23:3d:1c:42:07:7f:c9:96:e2:1b:b0:28:ae:6f:0d:
f0:d9:b0:ba:80:45:87:64:49:62:aa:2e:57:f7:6d:95:36:bf:
96:55:4e:68:fa:81:1d:12:6e:80:c9:6d:03:26:1e:73:95:f6:
d0:3b:aa:01:66:15:e9:89:92:a3:d6:f4:ca:e4:27:b4:15:55:
74:7b:1b:d7:96:8d:c7:d7:bb:43:64:fe:dd:6a:b7:b7:a0:b3:
9d:82:fa:ae:1e:33:be:43:d0:57:af:1c:e7:6c:b1:2e:54:6e:
ad:f4:92:2a:23:f3:ee:f1:9c:fb:bd:6c:73:d1:40:43:09:bb:
43:2c:ba:53:09:0d:d7:67:4e:34:7f:a3:75:ab:51:7c:9c:1c:
c9:53:5f:13:f4:8d:08:7c:fd:b2:36:c6:c9:87:72:90:6a:b4:
ca:89:9d:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:19:09 2025 by rpki-client