Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/nOVBaFksKvJlyqFIgUmm1om86-0.roa
File: nOVBaFksKvJlyqFIgUmm1om86-0.roa (raw, json)
Hash identifier: 4TLCrks4aT6jKeC6gDQnu0ZquDEq7hjVo5vCgRGw40g=
Subject key identifier: 9C:E5:41:68:59:2C:2A:F2:65:CA:A1:48:81:49:A6:D6:89:BC:EB:ED
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0AE8
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/nOVBaFksKvJlyqFIgUmm1om86-0.roa
Signing time: Thu 15 Sep 2022 02:40:54 +0000
ROA not before: Thu 15 Sep 2022 02:40:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9416
IP address blocks: 202.151.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2792 (0xae8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 15 02:40:54 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9CE54168592C2AF265CAA1488149A6D689BCEBED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c4:04:d3:12:97:48:1b:3e:e6:0f:ad:5c:d1:
6b:b1:f1:78:40:08:40:8c:7b:9f:f6:e6:0d:c1:e8:
00:08:83:13:f7:e2:af:c8:72:6f:ed:61:30:2b:a6:
58:34:6f:86:93:02:d5:48:ba:73:e9:7b:d9:a1:d7:
7a:fd:e0:f5:b5:89:a8:b7:ca:90:00:24:f7:92:51:
7d:31:fb:b3:8f:af:48:4d:e2:85:47:66:3e:5c:f7:
52:ee:8f:05:13:a1:d3:38:ee:98:81:82:ce:a5:d5:
ae:a4:4b:4f:ab:d3:de:9e:6b:cb:08:03:40:ec:6e:
ac:87:2d:bd:5b:97:b3:f8:ab:6b:7d:d8:3a:bf:ac:
a8:82:c3:05:3b:9f:90:53:e6:6d:5a:09:dc:35:2b:
7e:8b:71:f3:9d:1e:36:c6:fe:ab:56:06:4d:f5:7d:
09:56:18:5c:a9:61:1b:a9:e1:8c:fb:c2:b1:3e:32:
cc:b3:0d:ba:ae:a6:67:62:6e:d0:5b:6c:ed:e4:26:
dc:d6:db:94:94:00:a1:e8:ad:36:a6:ba:b0:59:6c:
d5:85:ea:a3:03:62:16:37:8b:8f:73:a2:eb:5b:ce:
9d:d2:ec:bb:eb:b4:cd:f0:d3:f9:7e:3d:81:0e:f8:
ce:85:b1:17:3c:e5:1c:59:1f:bc:77:23:95:5c:f8:
c5:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:E5:41:68:59:2C:2A:F2:65:CA:A1:48:81:49:A6:D6:89:BC:EB:ED
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/nOVBaFksKvJlyqFIgUmm1om86-0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.151.48.0/20
Signature Algorithm: sha256WithRSAEncryption
2e:48:36:d1:26:5d:9c:18:c7:3d:36:9f:c3:3e:9b:2f:82:3d:
e1:b3:0a:0d:f1:21:b1:e4:5e:9c:04:94:8a:58:3e:a0:82:3f:
03:c3:7a:e9:4c:c3:be:72:dc:cb:36:af:b5:00:06:41:f4:b3:
9f:4b:d0:e4:0b:a3:a9:0d:0d:69:ab:0d:8c:87:a9:50:f5:d3:
2c:94:b9:f4:70:94:3d:85:fb:f6:f5:17:c6:b3:83:5f:e6:80:
61:18:f4:90:5c:99:73:d3:f6:45:d3:19:8a:ce:91:ea:8e:dc:
97:94:49:09:4a:fe:3d:46:1f:24:54:22:ea:76:1e:18:a9:7d:
c7:6f:62:d6:4d:a1:ac:f2:f7:37:3f:5d:79:5d:72:78:77:8e:
2c:7e:ed:9f:95:3c:fd:6e:cd:59:a6:90:e0:7c:ee:86:1c:c6:
b5:d7:da:e8:c8:f6:85:6c:79:ad:3a:c5:c8:32:37:8a:2a:67:
2f:8c:72:20:b0:45:22:ea:2c:2f:3d:6e:9e:6b:6e:69:3f:31:
78:30:b5:8f:8a:ab:e3:0f:ee:30:a1:7f:18:47:42:4b:8a:f4:
98:e6:c8:4f:5b:3d:f5:cf:f7:66:75:58:fb:8f:59:55:b9:e1:
cd:14:96:29:3d:0f:ac:b7:e7:00:9d:e9:88:df:d1:5d:e0:e1:
3e:b0:8c:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:20 2025 by rpki-client