Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/gPQ02BTcWXCw-qUhR0vgJZyCYOI.roa
File: gPQ02BTcWXCw-qUhR0vgJZyCYOI.roa (raw, json)
Hash identifier: Ju4c7mmE/admaqZyj9MGjuogdg+7trX08gyfTadNElA=
Subject key identifier: 80:F4:34:D8:14:DC:59:70:B0:FA:A5:21:47:4B:E0:25:9C:82:60:E2
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 121D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/gPQ02BTcWXCw-qUhR0vgJZyCYOI.roa
Signing time: Wed 29 Sep 2021 02:54:13 +0000
ROA not before: Wed 29 Sep 2021 02:54:13 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 115.165.224.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4637 (0x121d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:13 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=80F434D814DC5970B0FAA521474BE0259C8260E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:75:a1:f2:43:74:44:80:a2:e6:96:46:cf:14:
eb:4b:66:41:ba:d8:6b:62:46:ef:4a:cc:4b:eb:31:
7b:cb:ee:49:e2:32:64:0c:a2:31:f7:01:3b:3d:7f:
6a:dd:12:67:3d:99:f6:5c:32:d3:77:ef:97:6e:6b:
50:0c:08:aa:72:05:3f:1a:69:db:e4:9f:9c:2c:3f:
10:06:57:dc:2b:25:4c:38:82:3d:f7:57:ed:2c:81:
98:dd:77:9c:fb:b2:3a:cd:50:b9:49:5e:a8:53:53:
87:93:84:8c:81:5e:94:09:30:75:07:88:50:f5:a7:
de:36:78:1e:44:94:77:1a:e3:88:95:78:07:55:db:
ff:76:d4:4f:1c:05:c6:8e:4a:b5:0d:5e:a4:b5:96:
21:74:71:d8:df:fc:45:de:d8:de:da:32:8d:84:3a:
a7:39:24:d8:7c:03:80:fb:d3:9d:2a:05:16:f3:fa:
ab:95:a6:3a:9f:86:ce:54:fa:cb:3e:c7:6d:ae:ff:
b1:cb:9c:a9:15:e0:aa:a1:fb:50:85:eb:71:57:cb:
b0:ec:b2:44:5b:79:e3:37:8b:79:e2:f3:bb:7c:17:
35:be:9a:df:4c:b1:fd:1b:5f:19:f9:81:e1:2b:c8:
8d:8c:6d:72:a2:07:f4:13:85:f1:fb:e8:e5:6c:ee:
07:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:F4:34:D8:14:DC:59:70:B0:FA:A5:21:47:4B:E0:25:9C:82:60:E2
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/gPQ02BTcWXCw-qUhR0vgJZyCYOI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.165.224.0/21
Signature Algorithm: sha256WithRSAEncryption
09:28:b7:c7:df:d4:9d:4a:d5:e9:f2:41:a3:99:d7:02:f8:67:
88:2f:96:02:ee:84:14:e1:1c:c3:d9:67:d9:66:b4:cd:cd:04:
5c:e4:34:21:b9:77:91:06:9b:f4:77:13:f7:67:80:b8:27:9a:
76:bd:bc:8e:24:75:a1:61:3d:4e:52:ec:f8:db:bc:56:90:a9:
89:83:fe:e4:7f:88:5f:06:f5:6c:be:cf:5a:af:2b:8d:d6:45:
83:6f:3f:b0:c8:49:a6:02:88:9b:07:57:37:3f:45:e8:1a:a8:
7d:5d:9b:8a:a5:53:0f:a4:d7:72:6c:44:a4:a1:4a:a4:0e:d1:
5d:9e:59:57:61:da:ce:68:13:a3:c1:0f:1b:9a:f2:4b:30:db:
c6:3b:1b:39:d7:65:ba:4f:17:fe:9d:9d:e2:e2:08:8f:79:63:
9a:c5:a6:c1:3c:cf:44:88:bf:1c:a6:2a:1a:b3:b6:09:32:b1:
2b:03:63:4f:8a:9a:6a:ea:5d:df:df:7d:f8:be:3f:5d:1f:4e:
7f:99:32:ad:2c:ea:b9:d7:6e:e6:96:5f:1a:fc:73:36:32:3a:
13:d5:5f:90:c6:7b:5b:9a:01:21:6a:ed:6d:31:15:a0:90:8b:
3f:59:6a:29:2e:2c:b8:f7:1a:8f:fd:59:da:b2:68:cb:a9:e3:
55:21:c5:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org