Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mrNa75JAh5NidVbpGwTei7gO0jk.roa
File: mrNa75JAh5NidVbpGwTei7gO0jk.roa (raw, json)
Hash identifier: 1s9sW9F0LwyL37kuglrll6rVgWweRRr81vgu6nMUpY8=
Subject key identifier: 9A:B3:5A:EF:92:40:87:93:62:75:56:E9:1B:04:DE:8B:B8:0E:D2:39
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 09F6
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mrNa75JAh5NidVbpGwTei7gO0jk.roa
Signing time: Wed 29 Sep 2021 02:40:37 +0000
ROA not before: Wed 29 Sep 2021 02:40:37 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18042
IP address blocks: 119.14.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2550 (0x9f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 29 02:40:37 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9AB35AEF92408793627556E91B04DE8BB80ED239
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d3:54:22:99:7c:5d:18:bd:74:3f:30:9a:44:
dd:29:68:8a:9b:60:bc:a3:f6:05:c6:e4:ce:e8:c6:
b1:67:27:fb:bc:a1:1f:63:66:93:ae:2a:92:2e:c8:
0f:ff:d8:d8:35:94:a2:ed:69:28:6d:86:5b:e5:c7:
e3:a3:a6:30:b3:af:f2:43:a3:f8:46:5f:00:87:9a:
be:9e:08:65:8f:3f:87:05:52:dd:05:4e:1a:24:5b:
6e:79:98:85:9f:91:f3:06:b5:36:5c:0a:c8:3b:e3:
7d:da:83:b9:d1:86:6e:7f:b3:d0:91:e9:09:86:42:
aa:91:02:cb:34:ff:44:4a:ab:05:a1:2c:1c:01:fa:
68:99:28:2c:d2:2a:af:fc:55:e1:3f:91:f9:39:13:
45:d1:d8:af:0c:de:5b:0c:18:49:ad:4d:b9:60:58:
23:d7:5c:2f:ce:91:08:25:23:1d:b4:99:69:8d:5b:
2a:0a:02:01:09:b1:7f:1f:5e:41:bc:b1:2f:71:b4:
72:9d:04:27:54:2d:2e:7b:6b:2c:49:62:e5:4a:e5:
8c:f6:2f:f2:93:41:6e:0e:97:2a:46:92:9d:b0:cb:
1f:c7:c3:42:a5:09:d4:e1:f6:e7:8a:8c:33:3f:5c:
a9:45:5d:60:66:9f:6c:8f:ff:77:88:81:01:ed:33:
d2:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:B3:5A:EF:92:40:87:93:62:75:56:E9:1B:04:DE:8B:B8:0E:D2:39
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mrNa75JAh5NidVbpGwTei7gO0jk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.14.128.0/17
Signature Algorithm: sha256WithRSAEncryption
87:91:8f:e8:74:b0:46:62:5c:84:36:ab:82:bb:30:18:dd:cb:
0e:38:ad:a7:71:d6:5e:d2:d4:42:22:b8:df:dd:75:b3:c7:49:
8b:b8:56:50:c0:5f:6f:59:ed:d4:4d:1a:8a:27:ba:40:b9:12:
97:5b:57:06:b4:87:f0:43:1e:cd:41:39:42:c5:c2:50:11:21:
68:07:32:71:67:a1:cd:cc:4f:9c:bd:ba:65:c7:f2:53:d0:0a:
ca:57:bc:7f:30:4e:9d:30:ab:ae:b8:3f:2e:f8:41:69:64:69:
e6:44:6f:d6:ad:a2:98:82:d8:92:23:91:97:86:00:5b:c6:0d:
30:ec:82:aa:4c:12:17:3f:95:37:f2:6f:26:6e:ec:82:22:32:
22:40:60:82:31:86:af:ad:cc:09:73:d1:79:2d:de:6c:03:b1:
bb:e2:5e:f7:98:53:51:f8:d4:e5:b5:cc:1a:4d:81:07:d2:b1:
d3:de:39:3f:8d:ff:0c:ee:8e:11:7e:82:2d:d4:1f:cf:b2:dc:
4c:ea:66:35:0e:fd:2c:79:83:da:ee:a5:78:ad:6e:91:ce:e2:
b4:96:d7:37:f4:f7:88:37:0a:49:d1:06:ae:30:b8:7e:9a:5f:
e0:8a:94:ac:74:e3:8b:40:a2:81:30:a6:c2:7c:20:63:da:a6:
63:3e:58:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org