Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HTv91wJ4aK9KFZTreNkyRL9WzAs.roa
File: HTv91wJ4aK9KFZTreNkyRL9WzAs.roa (raw, json)
Hash identifier: s8iGq9bj25ewskL/zp9DkYRCUaI+/mPElODnsRFgXuI=
Subject key identifier: 1D:3B:FD:D7:02:78:68:AF:4A:15:94:EB:78:D9:32:44:BF:56:CC:0B
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 18FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HTv91wJ4aK9KFZTreNkyRL9WzAs.roa
Signing time: Sat 22 Oct 2022 06:05:58 +0000
ROA not before: Sat 22 Oct 2022 06:05:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 2407:4b00::/32 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6398 (0x18fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:05:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1D3BFDD7027868AF4A1594EB78D93244BF56CC0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:52:86:76:15:b8:18:4a:48:38:96:09:99:4c:
10:0b:c8:d0:9a:92:ed:48:fc:d0:45:06:7d:55:09:
3c:77:13:ec:7d:0d:c2:c8:da:81:50:1e:e1:fd:e6:
d3:38:1c:9b:57:86:30:01:02:1b:2d:ce:60:db:6a:
2e:3e:ea:7d:0b:68:25:4b:7e:31:4d:e3:bf:80:66:
e3:13:1d:5e:7a:36:35:9e:cc:1f:9e:e1:e9:79:30:
02:b9:83:66:2a:50:2b:70:b1:46:08:ad:69:7e:5b:
f2:5d:69:e3:fb:d8:61:9b:9e:7d:f0:38:dd:4e:47:
72:db:ef:f5:74:2e:4b:29:d2:61:ae:ec:f0:a4:e2:
c0:4a:8c:25:b8:67:b2:d6:fb:23:70:05:a9:c2:19:
02:50:99:2c:d8:3d:e5:3e:5c:46:83:90:45:ed:8f:
25:ed:74:88:87:60:2d:aa:21:5a:4f:0c:ce:f3:1c:
7c:ac:54:63:1c:d3:a5:37:e5:00:11:cb:76:19:f5:
11:6f:93:bc:92:f4:7a:03:64:08:b3:a1:ce:49:03:
08:da:c8:97:4f:fd:1a:3e:6d:f6:d8:78:46:3e:53:
26:7f:62:c2:09:25:1e:32:94:8c:2e:a3:3c:f3:c2:
54:df:49:65:54:76:8e:05:b7:74:36:40:0e:49:c1:
0f:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:3B:FD:D7:02:78:68:AF:4A:15:94:EB:78:D9:32:44:BF:56:CC:0B
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HTv91wJ4aK9KFZTreNkyRL9WzAs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:4b00::/32
Signature Algorithm: sha256WithRSAEncryption
8e:10:8c:83:e8:c5:20:91:99:7b:f5:c8:ec:77:21:f3:b0:47:
a7:6e:32:fd:bf:c6:3a:92:d1:96:d4:aa:54:91:bc:78:6a:1b:
98:08:cb:c3:57:aa:60:8a:17:d4:40:ee:2b:94:4d:86:03:c7:
36:98:b7:ab:14:40:04:c1:19:c4:eb:8f:71:cb:87:5c:78:e6:
9c:14:c5:46:1d:69:c9:52:e9:1c:a8:2f:66:86:a8:57:1d:49:
c5:e7:cb:0d:a4:49:99:0e:6a:46:a0:00:ad:81:0f:a8:91:84:
a5:9a:d9:da:c9:90:f8:73:26:1c:ca:7f:01:8f:9e:a3:97:dc:
24:37:17:37:50:c0:b7:9d:64:f5:de:df:38:e3:ef:90:60:cb:
0f:a4:b4:66:95:e8:93:16:68:93:7f:4e:bf:4c:9b:7c:aa:31:
f4:13:1c:03:9e:ac:8a:83:3c:9c:54:4d:52:db:18:ac:28:ac:
8e:8b:23:b7:11:3a:64:a8:10:c4:8b:91:ab:74:0b:78:ee:79:
bb:c4:88:17:c7:6b:fb:5f:90:4e:b5:b1:cc:b1:6a:f4:b4:d6:
57:33:31:76:49:51:d8:e9:6f:34:01:72:57:e6:12:a8:7a:a8:
82:48:17:aa:39:a3:73:7d:f9:60:23:d1:fe:92:6b:d1:05:5c:
93:75:14:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org