Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/yPdleY-DhBDc5kBG5d2djVrvaWk.roa
File: yPdleY-DhBDc5kBG5d2djVrvaWk.roa (raw, json)
Hash identifier: Wm1jahPWwraXT8lZYGSLTuudB7xUZbK6YonpwJNtHdM=
Subject key identifier: C8:F7:65:79:8F:83:84:10:DC:E6:40:46:E5:DD:9D:8D:5A:EF:69:69
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 08F3
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/yPdleY-DhBDc5kBG5d2djVrvaWk.roa
Signing time: Sun 07 Feb 2021 11:52:59 +0000
ROA not before: Sun 07 Feb 2021 11:52:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 123.252.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2291 (0x8f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Feb 7 11:52:59 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C8F765798F838410DCE64046E5DD9D8D5AEF6969
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:2b:88:3d:4a:23:cd:36:1e:88:89:24:aa:e7:
7f:aa:34:20:87:e5:a2:b3:bd:54:bb:47:bc:ef:84:
4e:9d:32:be:62:4d:9a:c9:a8:ee:5a:66:73:2e:f3:
de:d9:1b:3a:31:65:2e:80:ba:d5:f7:cd:4a:98:ae:
0e:32:11:f9:73:4b:bd:0b:4a:7a:89:13:f8:24:95:
b1:cb:0a:4a:44:76:54:80:db:61:0d:ab:18:46:40:
78:ac:2c:95:38:f7:1f:6d:93:2e:25:89:30:c8:d8:
6d:ae:13:94:12:a3:9c:fc:d3:94:33:e3:40:4b:ec:
d1:d1:38:c1:87:4a:35:0d:df:25:4e:4f:a3:ff:08:
e3:e5:c3:67:a2:89:54:e3:8c:9c:f1:af:3b:af:c9:
30:aa:5f:28:81:76:9e:6d:b5:62:2d:a7:49:8a:6b:
23:c3:be:a6:5a:bf:e4:19:60:12:b7:6a:54:1f:47:
84:0f:fd:48:c9:33:38:a1:f8:4d:99:ad:ed:f5:9a:
2e:ab:6b:6c:ed:e3:6c:60:b7:e9:35:d3:3c:b6:35:
57:fc:cd:f5:2f:c9:3c:29:bb:dd:e7:98:b9:94:7b:
a4:fd:03:9e:2e:74:7c:53:53:29:7d:9f:30:62:33:
cf:bf:23:c0:4c:ac:ee:ac:06:64:2d:40:17:f3:10:
b3:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:F7:65:79:8F:83:84:10:DC:E6:40:46:E5:DD:9D:8D:5A:EF:69:69
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/yPdleY-DhBDc5kBG5d2djVrvaWk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.252.0.0/17
Signature Algorithm: sha256WithRSAEncryption
0e:b7:7e:4f:44:ac:00:d5:e7:f5:af:88:41:89:06:2e:1d:aa:
89:08:c5:b7:81:b6:3a:87:5c:6f:12:7e:22:a9:eb:a8:db:1c:
86:98:d4:f4:0f:67:8f:ed:c0:e5:d0:52:3e:99:3d:61:08:75:
d6:f1:30:22:00:48:59:31:ca:af:04:d1:35:e6:f6:93:e8:be:
ea:7e:c5:95:31:dd:34:f9:30:5f:47:c2:40:6b:86:2e:54:3a:
d6:dc:a5:cb:2a:7f:20:36:60:64:c9:d2:9d:df:af:51:e8:de:
04:6f:53:b7:1a:9a:e7:62:18:02:a8:79:f9:ee:24:0f:fd:54:
30:7f:5b:3d:0f:f8:64:0e:76:05:9b:59:4a:8b:45:1a:ab:58:
94:56:71:e6:f3:98:a2:6d:7c:ec:7c:9f:a8:28:81:93:3b:f3:
55:0b:a3:f6:c9:72:f2:38:c2:97:e3:03:8a:ae:f1:16:03:a6:
5b:83:3e:ec:80:1d:dc:01:61:7f:33:7a:01:8e:b4:10:f0:fb:
3f:43:1e:91:5f:d6:85:80:2e:34:08:d2:af:db:1a:0e:ca:4c:
c1:65:b5:50:4a:8e:5f:e4:be:0e:72:1e:a7:05:e0:a7:ef:f4:
00:f2:b7:6c:d2:00:e8:d8:c4:3e:35:3a:54:ce:e9:85:fd:1a:
51:d6:17:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org