Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/xQ25VAGZCWwxyvmmC4oZu5IiBgk.roa
File: xQ25VAGZCWwxyvmmC4oZu5IiBgk.roa (raw, json)
Hash identifier: GhR7RaKATpU61krt3Wn0B56UH8rR9IZLM0+qaeOm1CU=
Subject key identifier: C5:0D:B9:54:01:99:09:6C:31:CA:F9:A6:0B:8A:19:BB:92:22:06:09
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0953
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/xQ25VAGZCWwxyvmmC4oZu5IiBgk.roa
Signing time: Wed 03 Mar 2021 02:06:15 +0000
ROA not before: Wed 03 Mar 2021 02:06:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9416
IP address blocks: 202.151.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2387 (0x953)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Mar 3 02:06:15 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C50DB9540199096C31CAF9A60B8A19BB92220609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:81:82:50:cd:0e:87:15:a2:46:ae:96:c4:a1:
fa:69:91:c1:92:c2:71:ee:a6:79:f9:62:f4:24:f9:
75:78:80:e8:23:46:49:bd:bb:d5:a3:c3:f8:eb:bb:
09:83:c6:45:b5:7e:69:87:c5:4c:32:d0:c5:84:fd:
e2:7e:1d:a8:9c:f0:f9:19:ff:62:65:58:67:5a:97:
bf:6e:45:e0:7d:d6:b2:a9:78:0e:61:84:84:b4:09:
d8:2f:69:92:58:e7:88:5a:80:1d:2c:57:7e:66:57:
f5:25:f2:77:7e:06:b1:ec:38:00:e2:e4:7c:49:48:
cf:1b:45:98:77:c4:7f:cf:8b:f6:0b:2f:02:81:17:
85:80:23:88:17:5e:98:a0:5b:29:a8:8c:2d:87:f6:
84:5f:3c:e0:d7:cf:cc:f0:74:a6:0d:27:5e:1f:30:
22:22:c7:4b:4e:9d:2d:9e:a4:04:16:fe:df:e7:77:
8d:24:12:83:f1:4e:19:47:e5:72:56:0a:ec:90:2c:
6b:34:fe:34:b5:2a:b3:28:eb:d2:2b:fc:2e:85:c8:
e0:df:66:af:eb:59:48:a1:41:65:8a:26:f4:ee:b7:
68:2f:db:fa:9c:e6:21:75:9d:0b:11:14:f7:90:d6:
be:b4:4d:62:42:90:61:1e:9d:47:8c:69:dc:e1:e2:
bb:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:0D:B9:54:01:99:09:6C:31:CA:F9:A6:0B:8A:19:BB:92:22:06:09
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/xQ25VAGZCWwxyvmmC4oZu5IiBgk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.151.48.0/20
Signature Algorithm: sha256WithRSAEncryption
80:15:38:bb:db:cb:90:c2:d7:ae:6d:42:4d:25:6b:29:a6:3d:
a8:58:27:4c:bd:43:ce:e7:15:2a:8f:4a:22:0b:24:29:58:11:
f3:ae:81:83:bb:f3:e8:e5:ff:d7:22:89:67:8d:81:27:3d:ec:
ea:92:bc:67:c0:b3:34:f3:12:9e:76:4f:50:99:7e:a4:69:80:
d4:a8:5c:c2:92:14:b4:22:a0:d0:82:ba:aa:6a:21:0b:fd:c7:
83:24:a1:94:f7:34:9a:d3:b9:24:81:05:70:61:7b:73:e1:8d:
a8:e3:4c:8b:a4:03:bb:de:e4:02:07:b3:fe:c4:a2:c4:a1:a5:
59:ed:12:20:71:bb:f9:f4:6b:20:c5:b5:47:34:cc:9c:62:bd:
c4:58:e7:c2:26:ae:7b:73:ce:1d:c4:28:81:54:e6:30:8c:fb:
e8:6b:4d:05:3f:54:02:9e:83:94:24:12:e7:0f:99:e0:85:bf:
db:02:ee:63:d0:0f:10:b9:b9:6f:74:2c:80:0c:f8:ab:9f:50:
57:da:e8:74:81:97:15:e0:ee:3f:ee:3b:33:c4:15:34:3a:fc:
bc:83:15:fd:67:5a:96:14:e2:9b:90:19:30:29:2f:bd:87:26:
34:cf:ba:8b:61:44:f6:ca:8b:0b:e6:c9:68:c8:ec:79:a6:ff:
f5:60:55:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:04 2025 by rpki-client