Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/o3kFNrwl5SE3KZ3zn_7l2B8E464.roa
File: o3kFNrwl5SE3KZ3zn_7l2B8E464.roa (raw, json)
Hash identifier: 21pPauLm0QBKrnMc9XNQUDkghfMABXeUAQfm+kS6lQc=
Subject key identifier: A3:79:05:36:BC:25:E5:21:37:29:9D:F3:9F:FE:E5:D8:1F:04:E3:AE
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1AC0
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/o3kFNrwl5SE3KZ3zn_7l2B8E464.roa
Signing time: Thu 22 Dec 2022 06:07:50 +0000
ROA not before: Thu 22 Dec 2022 06:07:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24165
IP address blocks: 114.198.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6848 (0x1ac0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Dec 22 06:07:50 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A3790536BC25E52137299DF39FFEE5D81F04E3AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:fc:14:0a:81:f9:bd:37:c8:1c:51:73:22:e6:
ed:b0:2b:2d:8f:07:60:b2:f2:6a:df:0e:64:ad:c6:
85:91:f8:d8:38:89:e3:45:76:d2:04:28:d4:03:b3:
e5:f6:de:75:64:4b:08:f4:b7:68:76:73:51:a5:ae:
d4:d8:12:89:74:f8:35:17:90:6e:fd:84:1a:6d:c1:
00:9e:97:2c:fe:3c:39:1c:83:b1:9a:04:55:14:e8:
51:1c:8b:04:6e:12:68:d9:2b:a1:d2:30:7d:bb:f4:
4b:87:00:aa:02:87:6e:51:1d:c0:1c:23:14:88:56:
f0:76:8d:24:62:34:d7:2f:fd:8b:0f:7c:67:83:92:
19:c0:a3:92:2a:fe:64:40:46:ac:3e:e3:13:25:20:
b0:a0:ac:1f:2f:49:7b:c7:6c:ff:8a:92:a1:b1:ae:
b2:39:2e:26:52:f8:00:0f:72:bc:13:c3:76:6b:55:
39:51:9c:4e:ce:34:df:df:e5:ce:46:ce:b1:f9:8e:
7c:27:80:dd:12:8e:3f:50:0e:1d:04:58:16:81:b6:
59:15:fb:7a:e7:39:5e:19:da:c6:24:95:e3:71:86:
8e:b8:44:d9:be:e0:e9:f4:21:28:9f:f0:cf:69:64:
f9:de:97:be:3c:86:7b:de:04:fb:7d:fa:6a:1b:81:
46:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:79:05:36:BC:25:E5:21:37:29:9D:F3:9F:FE:E5:D8:1F:04:E3:AE
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/o3kFNrwl5SE3KZ3zn_7l2B8E464.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.176.0/20
Signature Algorithm: sha256WithRSAEncryption
17:ac:41:67:5d:99:5c:72:3e:21:f0:6a:99:ba:00:77:87:59:
96:1c:f5:06:83:e6:ec:57:6f:20:54:ff:9b:e9:19:5a:27:bf:
f4:c6:8e:a4:18:f6:12:cd:69:ac:40:a9:f2:82:cf:b0:ea:9d:
27:6e:2f:29:57:3d:7e:53:0e:1e:00:2f:b4:af:dd:2d:79:e6:
4a:e7:c8:7a:f8:07:74:b6:6d:0b:ce:a0:33:3a:9d:2f:c6:b0:
c4:30:00:b2:97:a7:c7:35:0c:36:ff:e9:fc:0b:6c:00:72:0e:
ac:2a:4d:72:92:1d:ad:2b:91:19:f8:03:98:d2:f9:96:c1:d3:
c5:33:f2:58:bf:99:85:a6:2a:24:64:b0:62:ee:0d:10:f9:2e:
75:a3:bd:09:c3:61:fc:6d:c0:e2:0a:91:89:0c:a2:a4:fe:1a:
02:a7:01:b7:94:f4:ed:76:5d:df:00:c6:63:be:57:7e:2e:8b:
d2:7f:91:3b:fc:80:59:45:95:1d:26:d3:60:ce:3f:9a:d8:59:
5f:44:30:b0:3b:49:64:95:21:4a:90:6c:de:d5:d9:62:50:cd:
a6:d3:03:02:af:cf:85:44:71:e8:75:4c:11:e0:0c:0a:04:73:
b5:9e:34:fa:e0:9a:59:d4:19:ad:d0:80:ad:65:4c:83:95:c0:
22:a0:45:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org