Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CIQ-fj8xSJoLgVYcuIHeZSwc13c.roa
File: CIQ-fj8xSJoLgVYcuIHeZSwc13c.roa (raw, json)
Hash identifier: MnWehHz1bEUF9KieS3O3UJ8RC/mXPFRL8AKJC/G3cbk=
Subject key identifier: 08:84:3E:7E:3F:31:48:9A:0B:81:56:1C:B8:81:DE:65:2C:1C:D7:77
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1754
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CIQ-fj8xSJoLgVYcuIHeZSwc13c.roa
Signing time: Sat 22 Oct 2022 05:35:58 +0000
ROA not before: Sat 22 Oct 2022 05:35:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 123.0.44.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5972 (0x1754)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 05:35:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=08843E7E3F31489A0B81561CB881DE652C1CD777
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:08:96:32:c0:13:fc:3f:dd:d6:78:28:6f:00:
4c:f0:da:58:6b:9c:84:30:a4:83:b7:d7:7d:63:17:
44:7d:b9:ae:64:71:2c:c0:8e:91:50:59:60:77:00:
cc:e3:81:79:27:21:57:cb:20:26:42:de:6f:aa:b9:
45:27:af:e7:af:17:b3:9f:51:43:6a:a7:75:0c:d4:
be:0c:e5:13:8f:34:77:59:db:d7:a8:36:57:bb:e5:
bb:8b:fe:f4:1a:be:3c:da:32:1e:ce:bf:4e:58:0c:
6c:e8:55:a3:ce:14:8d:25:09:2c:5b:53:e8:4a:32:
84:52:60:43:1f:60:94:1c:20:bb:4d:98:cb:e4:90:
0d:e0:8d:40:f5:55:12:03:c6:02:64:1f:6d:18:fc:
54:aa:ec:84:3e:53:6a:b0:c4:15:c1:13:0e:04:7b:
3a:3c:f7:86:92:67:8b:07:df:a6:02:7c:23:ee:56:
16:80:e9:c2:5e:1b:cb:fa:a3:ae:a7:70:1e:04:6d:
be:66:0d:7d:c9:ba:95:17:49:9a:ec:cc:f6:ec:6d:
e7:4b:f3:18:4a:47:d8:cc:d1:6c:a3:83:35:ee:4d:
82:80:9f:ac:82:a5:06:96:00:69:a2:f9:87:e8:34:
c6:64:8c:37:d6:e0:b0:15:31:45:ea:02:41:5a:50:
d7:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:84:3E:7E:3F:31:48:9A:0B:81:56:1C:B8:81:DE:65:2C:1C:D7:77
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CIQ-fj8xSJoLgVYcuIHeZSwc13c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.0.44.0/22
Signature Algorithm: sha256WithRSAEncryption
49:83:c1:91:2c:9f:dc:5d:7c:0f:f6:1b:25:b6:c8:3d:0f:38:
8f:4d:b1:07:0a:3f:2f:e0:0d:2c:90:a0:9f:f1:6b:03:33:98:
e2:f8:c8:15:0a:e0:b4:f7:63:79:c0:54:2a:c1:f3:65:9d:80:
7c:1c:f5:08:c9:d3:02:98:79:72:5a:28:f2:42:f8:10:13:5e:
d3:f6:45:2e:7b:56:f7:f4:f8:8e:27:04:db:5a:ff:ff:d2:bb:
b3:86:ed:e5:94:72:cc:58:43:9e:64:d8:74:24:04:7f:4e:93:
8d:18:06:9f:7f:dc:b8:c8:7d:10:dd:8f:dc:e5:aa:6e:41:00:
8d:79:3c:61:a6:65:72:e0:66:82:07:da:be:e8:2f:cf:fa:71:
70:7e:60:52:a3:fb:22:87:b9:9f:dc:78:7a:5a:95:e4:0d:ff:
7d:ca:96:ec:61:85:65:59:da:5c:6d:5d:fb:1a:85:4e:85:95:
2f:62:d0:71:6d:2d:eb:71:06:40:51:d9:74:9b:a0:35:69:01:
91:52:f3:04:6a:98:f5:ad:ee:c8:d0:3a:d1:b5:79:e4:1c:4d:
30:65:2d:90:0a:cb:c6:b3:80:de:50:7e:da:6d:77:d3:f5:7a:
6c:a8:f0:91:82:5b:8f:86:67:89:5f:9a:36:cc:4c:82:c1:2e:
ea:16:2a:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:45 2024 by rpki-client on console-ams.rpki-client.org