Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/tSIZmHcq8L2kcdCfb0_mHfFNjOA.roa
File: tSIZmHcq8L2kcdCfb0_mHfFNjOA.roa (raw, json)
Hash identifier: 04rMGjsu8MAHOJLFYHXlgkxHlH3VNJeTK60Pn3qrrYs=
Subject key identifier: B5:22:19:98:77:2A:F0:BD:A4:71:D0:9F:6F:4F:E6:1D:F1:4D:8C:E0
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 09FB
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/tSIZmHcq8L2kcdCfb0_mHfFNjOA.roa
Signing time: Wed 29 Sep 2021 02:40:38 +0000
ROA not before: Wed 29 Sep 2021 02:40:38 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9416
IP address blocks: 119.14.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2555 (0x9fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 29 02:40:38 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B5221998772AF0BDA471D09F6F4FE61DF14D8CE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:7b:b0:e9:9c:c1:7f:5a:26:e7:61:ec:36:a4:
7d:4f:c6:3a:35:e0:ea:c0:b1:ee:ec:a5:c2:01:b9:
be:58:be:a6:85:90:c7:8f:0e:65:a9:d3:b1:4c:57:
8c:05:af:ac:1b:9e:d3:75:20:d3:a9:52:c0:d2:f8:
d6:76:cb:5e:49:07:ba:89:16:b5:35:99:0c:c0:52:
33:f1:3d:4e:54:1e:b0:5a:50:d8:8b:8a:f4:49:f4:
f4:f2:81:6e:02:30:b8:b3:b4:d0:0a:dc:1f:f3:3d:
ff:17:70:e4:6c:38:9c:d1:7b:93:b1:3b:6f:46:c1:
25:3f:47:04:34:61:0a:a1:64:59:26:f2:b0:08:41:
4b:12:a4:c7:d3:cf:d0:1a:d4:86:3d:4d:b5:ac:bd:
b3:f4:44:5a:24:42:62:79:d9:69:81:71:10:d1:d2:
9f:04:78:cd:ce:51:10:41:60:31:8b:5a:de:f4:6d:
73:1d:90:ce:7e:3b:dc:c3:ac:a2:53:b7:30:77:32:
10:bf:c5:a5:8b:58:77:e1:0d:2b:ba:d1:fc:d2:6c:
3f:71:a6:9f:37:dd:b0:0a:aa:84:f7:8c:5e:38:4c:
97:a1:7e:6b:ca:43:7d:e0:e8:15:28:21:7a:2a:c2:
2f:2d:17:43:9b:dc:6b:9e:98:82:05:80:ad:fc:69:
24:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:22:19:98:77:2A:F0:BD:A4:71:D0:9F:6F:4F:E6:1D:F1:4D:8C:E0
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/tSIZmHcq8L2kcdCfb0_mHfFNjOA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.14.128.0/17
Signature Algorithm: sha256WithRSAEncryption
a7:ca:d4:8f:b5:1f:d0:f7:01:b2:e2:30:46:66:54:15:e1:8a:
eb:ad:1d:7e:ce:36:80:75:dc:41:ff:b7:c3:1e:54:99:4c:ff:
53:31:cb:81:9c:17:4b:20:5b:e9:9d:1e:a2:3d:73:a4:b5:b0:
4d:3b:a8:a9:78:50:50:fa:5f:54:68:25:65:10:00:14:d3:3c:
fe:69:76:06:21:44:e6:68:0f:53:56:9f:d2:46:a3:a5:36:a6:
9d:19:ed:e5:7b:bc:ab:fa:c2:b2:44:b9:8a:2b:92:b8:ff:6e:
4a:10:33:67:bb:7e:99:fa:7f:e0:a4:9f:0a:43:52:50:95:d2:
a6:aa:2f:d6:54:d5:02:6f:91:01:80:6f:8f:1c:46:90:b4:c8:
df:53:a7:6c:c8:7b:37:ef:5c:66:12:58:c9:c7:81:11:da:e2:
30:67:ae:33:2e:2e:c1:e7:d6:22:d1:0a:aa:7b:a3:e5:0c:68:
8c:24:36:37:c5:3f:5f:be:7c:b8:67:e1:aa:ef:7b:4d:10:37:
b9:a7:d6:ad:3d:bf:06:86:16:5e:da:5b:96:91:ac:c4:c2:46:
48:7a:8a:d3:87:dd:41:c9:3a:04:15:cb:eb:e7:a4:e2:10:45:
da:1d:b2:d7:8f:19:04:b5:c6:d6:84:1b:71:90:ce:5e:62:8e:
fd:8d:81:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org