Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DWaSqq3HZRQzjbWmETupoFSNJXI.roa
File: DWaSqq3HZRQzjbWmETupoFSNJXI.roa (raw, json)
Hash identifier: vbvqWSkA2SqpP9zRR3L78B0XXFNz+JCkSUe6ZcsNrrA=
Subject key identifier: 0D:66:92:AA:AD:C7:65:14:33:8D:B5:A6:11:3B:A9:A0:54:8D:25:72
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0EEB
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DWaSqq3HZRQzjbWmETupoFSNJXI.roa
Signing time: Sun 07 Feb 2021 12:30:48 +0000
ROA not before: Sun 07 Feb 2021 12:30:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 123.0.48.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3819 (0xeeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:30:48 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0D6692AAADC76514338DB5A6113BA9A0548D2572
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ca:82:c8:fb:43:4d:82:b4:31:ab:64:1c:40:
6a:c6:46:69:7a:df:a8:1e:11:08:d6:63:c9:b8:64:
f8:8b:e0:56:ff:2a:64:7f:c8:55:40:bc:38:da:a7:
59:d7:3d:ca:6e:e5:a3:b7:c8:3f:bb:e4:87:1e:55:
36:56:6b:42:c9:7e:77:3b:b2:4b:b2:4e:0a:cd:c7:
69:99:37:96:66:ca:f4:73:14:69:4d:77:13:6c:26:
1f:30:6f:d2:23:53:4a:32:18:6d:46:51:e6:71:02:
b3:7d:68:f7:a3:ca:74:7d:50:ac:64:ed:e2:98:f0:
f6:98:e0:25:8d:82:6e:ab:f3:1c:89:d3:f1:d5:bf:
5d:12:b8:00:df:82:c9:39:27:52:10:59:a4:35:c2:
1c:71:7a:23:5d:71:dd:2f:7b:4e:ae:14:07:e8:79:
d0:66:e6:39:a9:6f:19:c5:29:72:e5:b5:b6:e1:44:
87:32:f3:27:42:e5:1c:29:6b:d4:21:bb:fe:09:6a:
95:83:15:11:76:7a:66:92:dc:60:81:52:25:c5:06:
a9:9b:14:64:d2:74:77:13:6e:36:e6:58:5e:47:55:
0a:0d:d3:29:a6:2b:9d:a9:02:02:61:e0:9f:0e:b0:
d4:c0:29:a4:37:72:18:f3:e6:96:e9:fd:37:ae:ff:
5a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:66:92:AA:AD:C7:65:14:33:8D:B5:A6:11:3B:A9:A0:54:8D:25:72
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DWaSqq3HZRQzjbWmETupoFSNJXI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.0.48.0/20
Signature Algorithm: sha256WithRSAEncryption
52:a1:6e:e2:03:84:d2:64:d7:5e:f0:5c:14:f7:30:cd:51:33:
08:51:ab:37:bb:84:27:21:a8:50:50:01:6c:e0:74:0b:f4:df:
d7:bc:e6:e3:b4:7a:2b:42:51:16:92:20:be:72:b8:8c:59:6c:
2c:ec:30:1c:71:25:c3:75:05:ac:94:7c:bf:6d:25:3e:7f:c4:
ba:d7:6a:0c:8f:8e:f0:02:75:3f:42:db:81:c4:11:64:be:3c:
16:bb:f0:d6:ef:50:cf:36:4b:92:9d:4b:28:c9:60:4c:bd:42:
47:69:b4:45:ef:53:09:da:ad:4c:07:23:d9:85:fd:9e:c6:6d:
84:72:17:69:8d:08:cf:24:2c:fb:3d:24:1a:65:71:31:0d:83:
d5:7e:fd:d7:d5:6e:be:7e:62:ec:d3:b9:7a:02:31:b1:c0:02:
ff:7e:b1:84:63:bf:45:87:61:72:2a:4e:27:f9:13:fa:fc:90:
6e:53:c9:1a:da:31:83:df:f3:68:c8:56:f3:08:ab:de:d7:ec:
2b:21:e2:9d:76:8c:08:69:ed:de:1a:f9:41:23:33:80:37:3d:
7b:97:93:d4:84:e2:0d:23:cc:5d:b6:d3:ad:6b:9b:a5:2a:89:
a8:a5:7a:54:73:f4:86:41:ac:29:50:73:c5:b4:43:0a:15:34:
66:0b:c9:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org