Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HjX_tJdpK4PhUy0yKw1EvYr-fnE.roa
File: HjX_tJdpK4PhUy0yKw1EvYr-fnE.roa (raw, json)
Hash identifier: 7XTDytU5F6G05Asj/GUQNHOZqMVsnTJrfmmCKcvX3/4=
Subject key identifier: 1E:35:FF:B4:97:69:2B:83:E1:53:2D:32:2B:0D:44:BD:8A:FE:7E:71
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HjX_tJdpK4PhUy0yKw1EvYr-fnE.roa
Signing time: Thu 15 Sep 2022 02:35:23 +0000
ROA not before: Thu 15 Sep 2022 02:35:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4662
IP address blocks: 122.254.0.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:35:23 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1E35FFB497692B83E1532D322B0D44BD8AFE7E71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:28:f3:79:4e:04:a7:ac:c8:69:06:92:fd:d4:
b3:59:b5:e8:a5:3a:86:c5:c7:1a:54:9b:a7:4f:b1:
1e:56:be:12:2d:0e:fb:0c:29:04:81:17:0a:6e:b1:
34:45:7a:74:72:45:b1:a7:b6:eb:64:fd:09:2c:0a:
50:99:43:c9:15:8b:8d:8f:9d:c2:5b:5e:65:89:07:
ba:1c:b9:5c:74:c0:b4:75:b0:cf:f9:18:7f:55:b5:
2c:ea:4b:21:f2:8b:1d:82:18:94:fd:75:55:62:99:
82:66:31:99:db:77:55:fb:96:f0:ae:c4:a7:ea:c0:
61:7c:27:e5:18:ce:ab:3b:34:4c:d0:a1:1c:97:99:
39:0c:49:96:3e:3c:b6:20:08:a6:10:6e:14:22:a5:
16:5b:b2:c3:37:cd:db:88:7b:6c:b5:e0:b4:a1:40:
88:f8:b1:fb:0e:26:15:17:19:69:ac:af:71:d1:5c:
6d:c1:76:25:cf:ad:bc:8a:58:91:22:9f:c4:5a:c8:
8d:9d:67:b2:a6:02:60:27:20:41:e0:61:56:37:0a:
37:d1:3d:4c:17:23:58:83:a2:ad:c7:17:2c:0a:d0:
59:72:cd:8c:41:bb:27:87:59:89:54:93:43:6b:41:
aa:b3:01:de:05:48:ac:b9:06:1c:22:6e:79:23:42:
d8:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:35:FF:B4:97:69:2B:83:E1:53:2D:32:2B:0D:44:BD:8A:FE:7E:71
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HjX_tJdpK4PhUy0yKw1EvYr-fnE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.254.0.0/18
Signature Algorithm: sha256WithRSAEncryption
8f:4d:15:e8:64:26:ff:06:26:fc:f7:3f:7d:2c:f4:ee:cc:aa:
af:b6:d6:4d:76:23:1a:8a:dc:9e:e6:95:cc:bc:7d:28:6a:b2:
ac:21:83:b2:4c:34:44:3d:b8:7f:59:e4:2c:99:ed:8a:b3:96:
9b:cd:bb:26:e2:78:c5:a1:67:90:28:44:9d:78:dc:cf:5b:da:
63:72:b3:37:5a:9b:ca:5a:43:10:9e:65:11:07:99:5c:34:95:
b4:dc:72:b5:84:77:71:2f:c2:02:87:40:eb:64:19:ed:3f:f5:
e4:94:d5:57:51:f2:e8:1d:9e:60:f8:c1:1c:81:f6:cb:86:ac:
55:a9:49:3c:21:a0:a1:5e:75:21:8e:c9:8c:c9:d9:16:50:86:
d1:5f:0b:d0:c1:36:3e:f5:da:9f:1a:f2:93:e6:42:c6:02:7a:
cc:4b:e4:26:51:c7:05:49:52:7e:b0:63:bd:6b:56:44:72:cb:
d3:b6:66:16:33:a4:8a:27:c4:c0:17:b9:f9:76:52:31:aa:3c:
55:a6:c3:78:2e:6e:dc:2a:80:4c:d9:88:cd:99:55:54:c0:e7:
22:52:35:ea:f7:84:92:85:b6:65:18:d6:ee:af:98:69:da:82:
06:73:df:80:87:7f:61:00:a9:5d:8a:33:74:91:10:1e:1b:fc:
d7:a1:2a:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:46 2024 by rpki-client on console-ams.rpki-client.org