Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kewy1UmkEwumF-F2nne0gb5kC6I.roa
File: kewy1UmkEwumF-F2nne0gb5kC6I.roa (raw, json)
Hash identifier: oLKo85gfMz67++BoFIT6tnTlC4dTdpFEzVSWyyTnh58=
Subject key identifier: 91:EC:32:D5:49:A4:13:0B:A6:17:E1:76:9E:77:B4:81:BE:64:0B:A2
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kewy1UmkEwumF-F2nne0gb5kC6I.roa
Signing time: Thu 15 Sep 2022 02:36:32 +0000
ROA not before: Thu 15 Sep 2022 02:36:32 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 211.76.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:32 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=91EC32D549A4130BA617E1769E77B481BE640BA2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:65:3d:b7:f1:a4:aa:91:41:ba:22:3f:fe:25:
9a:da:01:dd:24:9f:12:e9:45:a9:b0:7b:43:82:bf:
5f:c5:54:b1:1c:bd:2c:91:0d:ca:a2:c9:1e:61:45:
c4:81:d2:00:1f:d6:dc:fc:8a:62:a1:19:99:1f:bd:
6a:6c:14:c9:c6:fc:a0:ea:b7:b6:18:0f:94:37:3d:
f7:a5:d9:5e:eb:6d:c1:03:44:b2:27:da:fd:69:78:
ff:a1:cb:49:92:43:ba:5b:dc:ee:17:01:48:89:ce:
68:a3:20:1d:94:78:a2:52:bf:91:c2:56:ae:fd:d2:
ea:0a:c9:5a:07:d0:66:59:ca:a0:e5:81:a1:52:bd:
ac:7f:fc:64:44:5e:03:85:5d:5c:cd:40:cb:c9:31:
ec:34:ea:5e:bc:94:df:8a:8e:29:69:8f:f5:4b:6f:
18:82:b2:18:9d:96:80:59:0e:44:0d:5a:e6:ee:5e:
d2:c5:c8:0c:03:53:1e:81:1a:10:83:bd:c9:94:e1:
be:1c:d6:bf:62:f5:4e:45:4f:68:8d:0a:c7:9d:2e:
bf:9a:90:28:16:c6:ed:cc:85:e1:c2:4a:a9:08:c9:
d0:55:41:53:92:ec:65:e7:b9:ad:a7:ca:91:44:87:
3c:1f:ec:f4:bb:75:e3:66:89:e7:ad:12:ae:d8:d1:
17:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:EC:32:D5:49:A4:13:0B:A6:17:E1:76:9E:77:B4:81:BE:64:0B:A2
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kewy1UmkEwumF-F2nne0gb5kC6I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.51.0/24
Signature Algorithm: sha256WithRSAEncryption
27:58:64:08:bf:14:f8:92:96:bd:ec:ab:34:7f:0f:89:46:2b:
60:87:00:86:0f:6b:c5:3e:bc:a5:2c:8d:27:d3:82:0f:c4:f0:
b8:e6:bb:f3:06:90:6c:91:4c:81:03:4b:db:05:73:ba:de:f8:
81:09:00:63:6d:96:2b:c5:57:30:e5:e6:79:a4:c8:84:12:5f:
a4:20:8d:6a:12:2a:53:af:93:d4:00:0c:d9:95:27:1f:e4:a7:
72:2f:21:7a:22:c5:23:d8:e7:45:fb:34:e7:75:7d:d0:a3:1d:
89:00:c8:b0:32:13:68:cb:da:9f:54:54:39:6b:6b:4e:b1:18:
cc:16:31:c3:85:2c:3d:51:f0:0b:91:10:62:16:87:af:f9:31:
3e:fb:58:cc:c3:f0:c5:2e:1c:ae:c9:77:3f:2a:73:3a:2b:4f:
b5:bb:9a:2c:af:9e:f2:55:ad:d4:ba:6f:eb:f4:ee:fa:2e:96:
d1:d3:62:bb:88:ae:60:be:24:8d:3e:d9:b7:68:03:d3:22:5d:
63:13:00:d1:cf:05:4c:e1:33:3d:39:9b:bc:59:fe:f0:97:04:
70:9a:0b:b5:bb:36:d9:6f:b5:76:39:4f:f9:ed:c1:11:cf:c1:
d7:2b:d6:8d:21:26:7b:96:46:8b:59:c7:9b:2f:c2:1c:e0:9f:
70:d4:25:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org