Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/jybgQNu4VofafRXyN4gIwC4duK4.roa
File: jybgQNu4VofafRXyN4gIwC4duK4.roa (raw, json)
Hash identifier: oyXVpXtke+HfU8ojcMa8unRXVDUR01m2fMIXl9yYuXM=
Subject key identifier: 8F:26:E0:40:DB:B8:56:87:DA:7D:15:F2:37:88:08:C0:2E:1D:B8:AE
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0AE8
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/jybgQNu4VofafRXyN4gIwC4duK4.roa
Signing time: Thu 15 Sep 2022 02:40:52 +0000
ROA not before: Thu 15 Sep 2022 02:40:52 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18042
IP address blocks: 115.43.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2792 (0xae8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 15 02:40:52 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8F26E040DBB85687DA7D15F2378808C02E1DB8AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:03:4c:c7:9f:14:79:f7:ad:4c:c9:6c:0d:b4:
cd:1b:62:b7:7c:78:ef:9c:e5:2e:5f:c3:8a:c5:b0:
c4:95:78:11:4a:4d:fe:71:54:af:83:af:9a:c4:4b:
24:8b:d4:93:53:53:bd:08:fe:b7:a7:1d:df:37:55:
77:42:80:65:61:05:00:44:38:7f:ee:da:a0:09:3e:
b0:51:c5:d5:ef:66:7d:4b:2d:10:be:f8:ed:29:76:
a4:d4:bc:ad:f0:1e:b8:66:5c:f4:13:d3:40:fa:f8:
fe:ce:a5:f9:ad:82:7c:62:81:30:ca:f5:bf:24:d9:
1a:d3:91:94:c3:de:9c:1b:89:f9:73:2a:af:6a:04:
f0:5a:13:5f:05:33:97:24:d6:4d:d9:76:b1:42:27:
45:b2:bd:63:54:a5:e0:f9:e2:f8:12:60:f8:e6:ac:
6d:3e:7f:38:d6:0b:60:e7:0e:f7:80:99:a4:28:ff:
aa:84:75:9f:28:c7:03:65:a7:54:86:90:10:63:e1:
a7:9f:d7:c3:59:b8:57:31:01:21:b8:29:d1:f1:3e:
08:22:3d:be:85:b5:ee:65:7d:d5:30:a1:12:c7:41:
15:c0:64:e4:d5:40:2c:22:0d:40:fd:62:d2:85:90:
53:44:e3:95:c0:24:72:34:ee:65:4a:4b:90:17:18:
20:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:26:E0:40:DB:B8:56:87:DA:7D:15:F2:37:88:08:C0:2E:1D:B8:AE
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/jybgQNu4VofafRXyN4gIwC4duK4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.43.0.0/17
Signature Algorithm: sha256WithRSAEncryption
36:fd:61:71:29:7f:87:01:26:24:87:63:9e:89:8c:78:b3:2c:
6b:d7:b5:c7:f8:94:ed:b3:b8:ad:6e:a9:72:5e:1e:1a:72:e5:
3a:60:a3:4f:25:b1:14:7b:a6:78:7c:a3:4c:7a:0d:a3:74:c1:
a3:f1:b3:85:b2:f4:56:8f:e2:fc:ae:18:c7:da:1e:d9:53:64:
13:95:4d:63:72:bf:e9:0d:f5:49:a2:fa:27:a0:6e:1b:cb:6d:
a3:46:a5:32:6c:6a:a6:da:4e:02:cb:c9:d6:46:32:84:36:7d:
61:96:95:64:21:87:55:76:b0:04:92:c8:02:f7:08:84:b5:97:
6a:2f:3f:14:fd:78:09:8e:be:9c:d7:a8:25:2f:6e:c0:f2:8d:
f4:bc:87:df:1b:00:ee:7a:21:b9:8f:df:80:64:84:38:01:4a:
e9:30:a9:7b:c1:43:68:b5:81:7f:5d:e1:dd:b4:1b:c7:11:2e:
b4:ad:1c:35:3e:c9:c8:35:5a:9d:b7:83:07:ff:5c:50:6d:14:
97:0e:9b:d8:b7:bd:7b:da:f1:2d:08:bf:7a:dc:fb:bd:ce:ca:
a9:ee:85:f7:89:22:fb:82:3e:c0:55:9b:64:f0:1e:a3:9d:93:
fb:98:f5:9a:97:ec:f9:03:ef:db:25:1d:94:ee:bf:bb:94:8e:
45:4c:10:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org