Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3uMACjHViL6rdmzzgaJZznP192c.roa
File: 3uMACjHViL6rdmzzgaJZznP192c.roa (raw, json)
Hash identifier: 9ZZ6cO6T/Az3IUVUMCJUmUVzFfDnQj3HQDHQaH0fPWU=
Subject key identifier: DE:E3:00:0A:31:D5:88:BE:AB:76:6C:F3:81:A2:59:CE:73:F5:F7:67
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3uMACjHViL6rdmzzgaJZznP192c.roa
Signing time: Thu 15 Sep 2022 02:35:24 +0000
ROA not before: Thu 15 Sep 2022 02:35:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 122.254.40.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:35:24 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DEE3000A31D588BEAB766CF381A259CE73F5F767
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ad:a7:fb:a2:59:df:92:4b:e4:1d:e8:3f:cf:
ba:e6:16:ca:c8:09:7c:30:74:29:5f:e6:75:ca:48:
a0:a8:5e:1d:1c:ab:1e:82:00:c7:01:20:77:a6:29:
a6:81:a6:bf:be:66:0d:3b:dd:59:26:68:82:97:54:
9f:df:55:89:f6:3d:55:01:4e:3b:4d:b4:b7:4b:e1:
79:2b:1a:91:49:33:4b:f3:40:4c:3d:f0:3b:22:5f:
5a:1e:06:b2:98:bd:6f:1b:32:e7:de:a0:48:d7:99:
f4:ed:74:26:e4:02:f5:66:f8:e9:62:18:e9:d0:13:
d9:a9:85:d4:b9:39:ec:20:50:40:a2:d9:0d:08:51:
97:b6:de:bd:54:14:c5:51:3f:d1:85:a1:59:73:ff:
41:09:59:4f:3b:6c:53:2a:cf:60:02:6e:de:48:c5:
64:83:d2:47:0f:33:77:c9:0c:e3:24:4e:67:ae:b8:
25:33:7e:11:e4:73:61:03:11:78:ec:4a:bf:07:74:
ef:5d:dd:03:31:a4:a0:1e:33:9e:8d:6e:95:f3:a1:
c7:98:2a:67:bb:7c:fc:bb:c6:e6:11:75:c7:ef:a5:
e6:9c:4e:d5:b0:d7:af:47:bd:27:ef:a1:3f:ab:68:
f2:f0:f3:a3:e6:d0:5d:c3:ff:6b:ca:23:ce:f5:ec:
46:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:E3:00:0A:31:D5:88:BE:AB:76:6C:F3:81:A2:59:CE:73:F5:F7:67
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3uMACjHViL6rdmzzgaJZznP192c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.254.40.0/21
Signature Algorithm: sha256WithRSAEncryption
86:5c:e0:f7:d5:d2:fd:d4:00:10:44:8e:5b:d8:9d:70:19:20:
e1:be:ef:32:76:0a:a3:8b:fe:8b:fe:ca:c9:bb:7d:40:ce:63:
0d:7a:3e:4a:02:a3:34:3b:16:24:83:49:59:e5:83:f2:39:9d:
13:ee:d4:4a:83:d1:c3:2c:08:7c:e4:9b:44:2f:67:77:1a:3d:
d7:15:04:d3:38:e4:58:6f:6e:7e:13:dc:80:ef:79:64:d4:55:
6b:8d:19:70:a5:5a:d8:cd:5f:1a:72:54:1e:f1:1f:47:ab:c5:
09:9c:56:74:44:6e:bd:50:79:e6:db:ec:b3:3b:ef:6f:ff:a2:
72:0d:12:73:37:6c:9a:7e:2c:27:3f:7b:52:88:0f:91:d1:a5:
6e:56:78:70:52:7c:40:45:da:b2:7a:a8:c7:47:b0:08:b2:1f:
c2:9a:74:5e:c4:07:bc:27:74:39:e3:60:0f:1a:4c:a7:9f:36:
3c:23:14:cd:92:88:07:24:33:22:fb:41:aa:8a:e2:0f:d7:5a:
46:d7:cb:a3:c9:ff:c6:f4:d5:0e:3d:e1:bf:6a:ed:e1:fa:11:
e6:57:0a:01:3a:42:96:1b:55:49:b3:68:4c:58:d9:36:2b:b9:
61:d9:b7:c2:30:45:cd:0f:96:94:87:19:7a:2c:e4:8d:98:ae:
de:2f:84:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org