Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/xpvpixPs8x2u3mm_eLKGNlqJTfU.roa
File: xpvpixPs8x2u3mm_eLKGNlqJTfU.roa (raw, json)
Hash identifier: 5xxDKifEGv46f7XDdHY7TcyWHx2CxczcFepjoUkVUO8=
Subject key identifier: C6:9B:E9:8B:13:EC:F3:1D:AE:DE:69:BF:78:B2:86:36:5A:89:4D:F5
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 08A8
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/xpvpixPs8x2u3mm_eLKGNlqJTfU.roa
Signing time: Fri 27 Nov 2020 00:50:21 +0000
ROA not before: Fri 27 Nov 2020 00:50:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 123.252.48.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2216 (0x8a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Nov 27 00:50:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C69BE98B13ECF31DAEDE69BF78B286365A894DF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:17:23:ee:33:fe:f1:c7:23:e3:2d:33:a2:f2:
bc:a8:b0:25:18:b2:fb:09:bd:01:3e:46:f7:a4:f0:
8f:27:33:ae:9d:21:ba:1e:32:c1:70:0e:0e:46:0c:
67:e5:65:a1:6e:29:92:79:9e:0b:5b:0d:4b:04:4f:
9b:87:48:05:87:df:d4:2d:b4:aa:ed:84:37:d7:eb:
79:7d:64:ea:05:30:bc:30:ee:df:23:a5:86:16:2e:
9b:71:d7:75:c3:a4:81:4b:0c:b4:21:4e:df:d9:f7:
3b:ad:e7:87:e3:14:c4:a3:92:75:04:0e:89:5a:da:
60:36:32:f0:ae:2c:bb:4e:93:cf:d9:34:11:cd:96:
6d:96:d8:5f:57:87:8b:83:20:25:c2:cd:1c:d4:8d:
57:cc:15:91:62:57:e5:cb:40:be:dc:6b:fc:f5:8f:
df:8e:1d:75:a7:9a:38:8b:61:58:69:0d:9b:ae:40:
e1:47:2c:81:e7:9d:88:47:90:d9:5a:22:8d:66:bb:
87:58:28:52:9c:fe:91:2f:1c:38:fe:6e:08:a2:f8:
d7:1b:1c:90:90:5c:b7:ba:77:39:d6:5c:6f:67:cd:
83:88:d4:06:db:1b:f3:d8:a9:61:65:d6:45:d7:d2:
3c:fa:7b:db:46:db:25:80:80:1c:6c:27:15:b5:b2:
37:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:9B:E9:8B:13:EC:F3:1D:AE:DE:69:BF:78:B2:86:36:5A:89:4D:F5
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/xpvpixPs8x2u3mm_eLKGNlqJTfU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.252.48.0/20
Signature Algorithm: sha256WithRSAEncryption
40:aa:7e:96:6c:f8:07:90:8f:2c:75:47:34:16:f9:ac:7c:fb:
d6:8d:90:4e:c4:22:8b:6c:53:e0:d8:6e:31:70:bc:25:7c:a6:
a1:a7:84:58:e6:fa:15:f0:04:4d:7d:9c:e9:ee:c5:3d:13:a0:
99:0c:9d:3e:25:ac:8a:62:a4:20:2c:76:89:05:11:88:6e:4b:
3c:21:4a:92:d9:50:d6:e2:88:c9:8f:58:62:72:c1:52:60:55:
02:f5:f3:89:02:e2:2b:d6:38:70:e0:24:16:9c:3c:f6:57:bc:
58:9d:12:3a:98:47:6d:2b:17:e4:84:5c:34:04:a9:fa:00:1f:
6e:1d:85:45:46:9d:d9:a3:30:b1:80:32:ae:bc:93:73:cb:15:
54:d7:61:eb:07:4d:b0:9e:0c:6a:9a:de:87:4e:c5:da:d4:17:
9f:a3:91:97:e8:c8:e7:1e:76:7e:ba:33:5a:45:2c:5a:56:68:
bf:c9:61:b3:e3:35:ad:67:f8:49:84:5b:f1:9b:46:e8:bd:d3:
9e:3d:b4:ea:c4:a8:90:32:e1:a7:33:6f:11:24:15:05:8f:85:
88:8c:ad:ab:86:ee:b5:56:f9:57:3d:dd:01:98:34:7d:58:7f:
ae:32:92:ff:02:a5:05:05:9d:e6:d7:c9:1f:d9:93:86:db:61:
ae:8a:97:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org