Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/k-CNTrIOAco-0PnwbPZL2zp3J_s.roa
File: k-CNTrIOAco-0PnwbPZL2zp3J_s.roa (raw, json)
Hash identifier: FLuHPf8ZRRNvNI54+tWYKS3GldOfE2EEVc+g+kzPwEE=
Subject key identifier: 93:E0:8D:4E:B2:0E:01:CA:3E:D0:F9:F0:6C:F6:4B:DB:3A:77:27:FB
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0AE8
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/k-CNTrIOAco-0PnwbPZL2zp3J_s.roa
Signing time: Thu 15 Sep 2022 02:40:53 +0000
ROA not before: Thu 15 Sep 2022 02:40:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9416
IP address blocks: 119.14.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2792 (0xae8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 15 02:40:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=93E08D4EB20E01CA3ED0F9F06CF64BDB3A7727FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:99:5c:e8:ef:cc:6f:a8:38:72:48:8b:23:d8:
cc:2a:8a:d6:59:50:e4:36:e3:e0:47:1e:e3:7f:5b:
50:c7:55:dc:81:58:40:f5:0f:93:59:1f:8d:38:57:
ff:70:56:b9:11:e5:12:8d:ca:bd:6c:ea:ad:9b:30:
ad:ba:89:90:e2:3d:f7:bc:5a:9d:64:db:8b:84:6c:
ee:d4:46:8b:c6:52:df:02:bf:5c:e8:06:2e:d9:45:
78:af:69:38:87:ee:46:60:32:37:9f:f9:d5:26:cc:
cc:c3:6a:99:90:eb:3c:a6:a4:1f:03:b9:05:ce:91:
f7:e9:1e:33:4b:75:ea:41:98:f0:cc:c1:35:ae:08:
e2:dd:57:1f:7a:6e:b9:d8:f8:db:7f:13:a1:c7:36:
2d:07:31:61:9b:04:18:3f:fa:8e:7e:bf:ca:4c:4d:
3e:c8:f6:de:44:93:74:d7:0b:f1:0b:ba:d0:a2:4e:
94:4b:4d:26:ee:32:59:9d:b4:fa:2b:12:c4:02:fe:
8a:c5:fa:ba:5a:26:49:ed:d0:31:ad:f5:49:9d:21:
20:b0:77:49:1c:c6:78:81:99:1f:7f:3d:de:e1:f5:
a2:41:1c:13:58:bc:f8:1e:e1:d2:3d:87:b1:c0:ad:
f7:41:62:aa:40:e6:e9:61:c4:ef:5b:7c:d4:fb:d7:
16:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:E0:8D:4E:B2:0E:01:CA:3E:D0:F9:F0:6C:F6:4B:DB:3A:77:27:FB
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/k-CNTrIOAco-0PnwbPZL2zp3J_s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.14.128.0/17
Signature Algorithm: sha256WithRSAEncryption
3b:e3:38:99:77:f1:fa:00:aa:ec:31:49:71:2e:0f:f3:9e:48:
94:e5:47:ce:bb:e8:19:a5:18:61:d6:57:cf:02:1d:97:f1:18:
e4:2b:34:70:85:65:99:e4:4e:8b:22:5f:49:8e:dc:9f:fa:e9:
ea:5b:66:22:2e:8e:85:89:58:e6:ed:51:7a:b3:32:3e:e2:08:
8c:27:72:39:73:68:c6:67:ad:f8:16:f0:ef:e3:f2:9b:cf:ce:
6c:ff:bb:3b:70:7e:18:97:67:7a:51:3b:5f:7f:e6:f4:6a:b9:
db:10:f0:ab:8a:d6:8f:ab:48:76:8f:d0:37:9d:31:65:0e:60:
76:f6:db:c0:6a:5a:42:af:de:42:5c:0a:cb:c5:33:72:ab:70:
38:93:51:5e:71:3b:75:a0:1e:11:d8:1a:a7:75:67:95:53:5e:
cc:ee:2f:f9:58:76:4b:8a:b1:99:d4:d1:d3:74:52:7e:b4:95:
b3:c0:1a:52:66:66:d7:05:b3:7e:c6:cf:39:25:d3:7e:66:f4:
e9:df:88:2e:67:73:be:58:61:60:a6:53:8a:e7:75:67:9e:67:
dc:62:57:3e:8b:b6:fc:b8:55:71:52:ff:77:9f:5d:6b:e4:69:
68:49:03:b4:76:9d:16:c9:67:e2:b2:14:5d:46:60:ce:1f:67:
72:7b:6f:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org