Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IuhKBBDGfHGziqaHNK5nJ_Og0nc.roa
File: IuhKBBDGfHGziqaHNK5nJ_Og0nc.roa (raw, json)
Hash identifier: S6qhanvLeEVakcUgX2ESiKSdQf6afUPMjfbz/nqLuQ4=
Subject key identifier: 22:E8:4A:04:10:C6:7C:71:B3:8A:A6:87:34:AE:67:27:F3:A0:D2:77
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IuhKBBDGfHGziqaHNK5nJ_Og0nc.roa
Signing time: Thu 15 Sep 2022 02:35:32 +0000
ROA not before: Thu 15 Sep 2022 02:35:32 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 211.76.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:35:32 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=22E84A0410C67C71B38AA68734AE6727F3A0D277
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:11:0e:52:3b:14:78:13:db:26:94:ef:17:fc:
67:64:a4:57:ee:7a:0b:0a:24:fb:58:16:81:68:29:
f1:88:2b:a2:79:6f:a4:a9:6d:b5:bf:63:7e:60:53:
a0:27:e6:c7:62:5f:69:04:c3:0a:55:f6:f3:ed:2e:
d8:ec:69:db:3b:db:2f:49:61:10:de:9b:a3:5f:e4:
cd:9b:63:0e:77:1d:13:24:fe:66:55:1a:f6:65:cc:
03:9e:19:02:a9:45:93:7b:43:62:0b:9e:fc:b5:50:
bc:d3:0a:97:a0:62:0c:c4:71:e9:b8:b4:2f:1f:74:
af:65:62:51:a3:e8:21:6c:ff:1e:3e:d3:20:5f:5a:
24:e3:79:4f:3d:28:9a:9f:57:c9:dc:bf:ff:73:87:
4c:4c:fd:4d:9a:7d:49:52:93:5b:67:51:7d:c6:d1:
ca:b7:68:9f:12:4e:0d:cb:e5:9b:e9:7e:e6:2b:20:
67:1f:d9:a1:05:0e:03:1b:6d:1f:30:b0:ef:bb:ba:
e7:44:89:4f:6d:01:7a:e6:a0:75:80:1a:4f:4f:26:
5e:aa:b5:9d:01:5f:be:65:c7:a2:23:97:95:a4:cd:
51:f7:f4:86:db:15:f0:ca:52:18:5c:fc:83:4c:33:
3c:29:a3:84:3e:a6:d1:31:3a:4f:5a:b3:0c:ff:06:
5b:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:E8:4A:04:10:C6:7C:71:B3:8A:A6:87:34:AE:67:27:F3:A0:D2:77
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IuhKBBDGfHGziqaHNK5nJ_Og0nc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.43.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:86:62:28:af:9a:b5:ce:90:2d:c6:d5:97:4a:66:2b:1d:19:
48:eb:a5:e9:68:0a:3c:ed:7e:d5:8b:78:92:a6:58:88:c0:22:
dd:fc:16:3f:b1:16:49:2e:00:61:d2:d5:4b:d8:4b:ac:4c:50:
28:18:93:ee:b1:5a:15:e8:2d:b4:b0:22:16:b8:53:b1:f1:2c:
53:c2:0c:48:29:af:c1:d4:2c:91:a2:18:ed:d3:b5:8a:01:64:
eb:2b:06:bf:d0:8e:9e:a8:33:d1:50:3c:dc:25:13:27:57:af:
d3:a7:af:2f:7c:8a:8c:9f:44:3e:a6:08:51:0c:99:a8:75:94:
21:42:c9:3d:ff:c4:27:d4:31:b3:30:75:ce:79:9e:d8:f7:45:
f3:af:8f:b3:b2:62:2e:aa:e4:3c:08:de:3c:28:ac:7f:8a:0e:
e1:c3:2f:b3:1c:f6:e8:3d:54:d8:ee:1b:c0:2f:5a:00:74:8b:
28:eb:03:91:69:89:a0:6c:5c:65:f1:80:50:9d:b9:54:1a:6b:
bc:b8:ee:17:e0:24:bb:47:33:d8:fa:31:2d:63:1a:4f:30:8f:
05:c4:ce:99:22:7a:89:44:27:f1:44:b7:cd:ec:6b:7c:d7:08:
fc:26:c7:54:63:dc:f7:26:bc:55:45:55:55:eb:ef:48:ea:8a:
1a:b1:6d:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org