Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qFqY8FvPHY1wuZuSXTBtmNhv0i0.roa
File: qFqY8FvPHY1wuZuSXTBtmNhv0i0.roa (raw, json)
Hash identifier: YT/9woY/m1Pw67BieLQ2WjmlPxuVmMK29vlwVrQ7lN8=
Subject key identifier: A8:5A:98:F0:5B:CF:1D:8D:70:B9:9B:92:5D:30:6D:98:D8:6F:D2:2D
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0EE9
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qFqY8FvPHY1wuZuSXTBtmNhv0i0.roa
Signing time: Sun 07 Feb 2021 12:30:46 +0000
ROA not before: Sun 07 Feb 2021 12:30:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 123.0.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3817 (0xee9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:30:46 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A85A98F05BCF1D8D70B99B925D306D98D86FD22D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e2:21:6d:9c:40:40:73:03:4b:8e:4a:d8:17:
d9:a3:2b:9a:82:a0:bf:ec:f9:a8:75:47:2f:bc:19:
df:65:7d:ae:ff:f7:1b:79:d3:1e:94:05:f2:6c:9b:
34:d6:5a:a3:2f:57:76:90:49:82:08:b2:bb:4f:eb:
6d:77:bc:72:5e:70:c9:98:29:3f:06:2a:71:1b:55:
9a:d7:bc:25:82:3f:a5:40:a3:43:95:2b:58:e4:d2:
0a:76:68:b9:e0:65:2c:34:1f:35:c5:f9:7b:53:77:
59:3c:b2:81:44:c0:f8:8a:ef:71:78:cb:89:53:5e:
9f:23:c1:df:df:70:0a:9d:16:91:31:44:ab:28:a4:
60:51:82:e5:c7:ff:79:5a:f4:79:8b:98:35:c0:23:
30:5c:8c:02:6e:c9:a0:e9:b9:f1:23:6a:75:12:92:
91:2e:a3:33:80:ad:a5:22:ea:9c:0f:9b:e2:05:36:
f5:8e:23:ca:b6:cd:0b:95:b5:2a:11:aa:21:5a:16:
a6:30:28:c4:b3:ad:0a:4b:11:6c:9d:1f:7d:89:6f:
19:72:a4:2a:17:4a:7c:c2:87:36:59:66:15:7a:0b:
40:eb:82:62:db:ae:dc:13:4e:e3:2a:71:e7:36:7c:
b4:7c:cb:f0:23:e0:ca:5e:24:77:5a:fc:8f:ee:82:
fb:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:5A:98:F0:5B:CF:1D:8D:70:B9:9B:92:5D:30:6D:98:D8:6F:D2:2D
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qFqY8FvPHY1wuZuSXTBtmNhv0i0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.0.42.0/24
Signature Algorithm: sha256WithRSAEncryption
56:03:9d:ac:74:af:67:e2:5d:8b:71:46:35:95:2a:52:77:6f:
4e:b3:cb:d8:a1:10:f2:85:b2:69:95:c3:e2:2f:65:b1:f5:e7:
90:22:a9:06:e0:2c:6a:f6:72:f3:46:a6:01:bb:bf:02:a1:3c:
12:62:57:c4:50:4b:4b:c7:59:20:33:21:f8:32:f2:39:94:65:
30:ba:97:9b:36:d6:13:bd:62:57:2f:70:78:20:c8:f0:7c:cf:
9c:1b:7c:e0:28:0b:0e:90:b0:a1:f0:cc:68:67:53:d0:ed:20:
7c:23:58:ad:84:d9:9a:0e:2f:2d:a7:0a:16:a9:8b:4f:e4:7f:
99:81:aa:0c:12:4b:05:f8:63:32:3b:f6:63:71:fc:d8:e9:17:
0d:44:1c:48:24:1e:84:29:c9:ef:dc:5c:e6:fc:a7:a2:f0:9f:
64:33:d4:49:16:09:cd:46:b1:da:36:1c:e4:88:1f:9b:ef:f2:
06:29:fc:7e:fe:7b:bc:8c:77:26:aa:07:ef:f3:79:00:4b:5d:
46:aa:55:73:70:aa:27:89:75:67:f5:d0:84:95:b8:8c:75:c6:
62:cd:72:40:26:ef:69:ab:6b:80:c1:7a:09:46:19:34:09:6e:
18:a7:6d:3f:68:7a:9d:0e:e7:e1:c9:d8:96:c4:72:29:34:fa:
d0:b0:2e:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org