Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/gD_jxQ4MdX9ft8Sx0Gfq2IB3pWY.roa
File: gD_jxQ4MdX9ft8Sx0Gfq2IB3pWY.roa (raw, json)
Hash identifier: xD+cMC1xGkkr5jvfGEn1bLoeMGgAAXjj0dAN8ivvX1Y=
Subject key identifier: 80:3F:E3:C5:0E:0C:75:7F:5F:B7:C4:B1:D0:67:EA:D8:80:77:A5:66
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/gD_jxQ4MdX9ft8Sx0Gfq2IB3pWY.roa
Signing time: Thu 15 Sep 2022 02:36:26 +0000
ROA not before: Thu 15 Sep 2022 02:36:26 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 211.76.72.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:26 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=803FE3C50E0C757F5FB7C4B1D067EAD88077A566
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ac:d4:20:ba:d2:db:7b:bf:0c:84:f5:b8:46:
c1:ff:e5:49:7d:42:cd:89:ac:68:a5:d5:62:f5:4b:
49:03:68:b9:b9:79:11:a2:f5:28:40:8b:c2:06:ca:
8a:b1:81:63:00:d8:eb:ad:2b:d3:b7:68:5f:2f:8d:
ce:3e:53:5d:d4:5c:50:7a:58:8e:95:0f:06:8c:20:
2b:78:bf:12:27:bc:53:02:9b:81:5c:10:c6:3d:cb:
c0:a0:89:13:c4:36:9d:40:90:b6:1b:bd:a2:6d:73:
e2:c3:5c:ae:7b:a5:97:ab:51:f8:17:de:eb:01:26:
7b:f3:9e:9a:4f:24:e8:6f:bf:a0:8d:27:d0:2c:3d:
f3:7a:43:92:ee:f5:df:9c:78:fb:a0:e6:4e:0d:7f:
fb:97:db:3d:34:68:b9:d5:b5:51:e7:0b:b2:24:9d:
c4:8a:6b:4d:ff:ac:71:54:cf:3a:2e:e7:4c:4b:3f:
0e:d3:f4:cc:37:2d:f3:37:9f:44:c1:69:f4:61:ba:
1c:97:78:04:57:20:4d:b0:e1:2a:e2:d7:cd:76:6b:
43:96:45:17:19:6c:09:2b:2d:25:0b:bc:8b:8a:d3:
31:ec:0c:55:54:36:a5:c2:4b:98:89:d7:84:c1:c4:
db:08:d6:b5:e5:fc:3f:ef:59:56:61:00:f6:de:f2:
f0:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:3F:E3:C5:0E:0C:75:7F:5F:B7:C4:B1:D0:67:EA:D8:80:77:A5:66
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/gD_jxQ4MdX9ft8Sx0Gfq2IB3pWY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.72.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:6a:e9:15:39:f0:8e:c2:94:21:b5:60:9f:93:07:73:c9:27:
63:db:80:49:58:68:a9:38:32:bd:f0:1a:e8:e6:e1:47:de:5a:
65:9a:d3:18:80:5d:21:b5:af:cd:6a:35:69:b3:e1:5c:96:3b:
5f:17:63:f8:87:1c:82:d7:d2:d1:ad:8a:d4:90:16:55:ed:7e:
41:42:3f:0a:ab:72:45:95:96:d3:44:ca:66:d1:ae:b2:11:cb:
33:91:27:f5:cd:94:6e:14:1f:6e:8f:de:3c:16:0b:30:2d:70:
ea:e7:a0:4c:d2:97:ed:b8:f1:45:8f:b6:6d:0a:50:85:a7:9d:
f1:53:ed:e3:55:e0:5b:c4:1f:3d:c7:44:a9:28:2a:54:b4:ec:
74:aa:d1:e9:a2:c6:0d:9f:fe:bd:b6:cd:01:b0:61:6b:36:d1:
37:dd:8e:59:7d:8f:67:25:48:bd:50:0c:e5:4a:b9:34:79:79:
d7:dd:02:a7:3a:35:a4:17:6d:8b:17:e8:20:e6:59:fe:e5:78:
36:9e:6f:49:76:aa:88:10:b5:f7:dd:d7:52:b0:eb:cc:7c:01:
53:77:ed:81:80:90:32:20:25:d5:b0:59:d9:ba:35:b5:82:9d:
b7:a8:e4:25:1b:1c:5b:da:a6:f7:f4:b5:be:cf:16:35:80:3f:
b2:4c:b4:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org