Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vNLdKr_hrhAVMYt2v8KrWiYre9w.roa
File: vNLdKr_hrhAVMYt2v8KrWiYre9w.roa (raw, json)
Hash identifier: PsKBmkxNV18BLP40Zsu7shQhJYW2jBGStuE/Pp+9kMo=
Subject key identifier: BC:D2:DD:2A:BF:E1:AE:10:15:31:8B:76:BF:C2:AB:5A:26:2B:7B:DC
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1240
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vNLdKr_hrhAVMYt2v8KrWiYre9w.roa
Signing time: Wed 29 Sep 2021 02:54:22 +0000
ROA not before: Wed 29 Sep 2021 02:54:22 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 114.198.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4672 (0x1240)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:22 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=BCD2DD2ABFE1AE1015318B76BFC2AB5A262B7BDC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:78:80:f5:4f:96:02:12:b1:cc:dc:d8:5d:10:
c9:47:06:3d:f8:44:54:f1:11:f4:d0:92:47:31:f7:
84:f2:c7:95:dd:cf:dd:90:01:88:f3:c9:54:0f:d4:
66:b3:23:94:ff:67:3e:32:1f:5c:63:12:7d:a9:14:
bc:a7:e5:3d:b6:b8:ee:47:53:8f:a5:68:3b:a2:f6:
42:6c:0b:d2:a6:ef:76:01:13:05:0a:c7:4a:6b:5e:
27:e3:cd:77:d9:31:75:08:f1:1c:20:f4:aa:80:fb:
89:14:9f:19:fd:de:a2:c5:4b:55:81:e4:d3:9c:bb:
b2:e2:36:c1:a1:97:bb:da:0e:51:47:4b:99:d3:8d:
f1:5f:37:e7:fb:7d:24:63:6e:f9:fa:0c:a7:7e:0e:
db:56:50:27:6b:bc:f1:bd:df:1c:48:4e:49:63:41:
71:32:d4:a4:3b:7b:cd:0c:e1:5a:9c:09:4c:d6:2d:
93:f8:04:4f:54:e6:d7:13:18:1b:70:b9:5b:f9:c8:
e1:07:9a:8e:7a:5a:4f:45:80:59:e9:a6:8c:d2:5a:
c2:e0:fb:05:49:36:af:c5:4e:73:84:42:de:91:b8:
13:c7:71:d1:f8:81:b0:7f:ee:35:b9:26:68:94:93:
e4:2c:ba:a7:89:a9:7a:17:44:af:7e:b1:7a:60:b5:
6b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:D2:DD:2A:BF:E1:AE:10:15:31:8B:76:BF:C2:AB:5A:26:2B:7B:DC
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vNLdKr_hrhAVMYt2v8KrWiYre9w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.168.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:a7:45:b1:20:77:0f:b4:a4:4a:42:17:b9:48:13:7f:8b:dc:
74:01:47:95:b3:e5:7f:cf:f5:36:40:07:a8:fc:9c:36:c0:d0:
b2:52:bf:42:0e:d2:dd:59:34:df:90:a8:9b:18:5c:a5:e1:fc:
6f:1d:e8:3b:50:7c:72:5f:01:0d:53:25:66:5f:81:63:27:bc:
36:f8:16:5b:23:a5:ff:2f:e8:7c:72:23:da:6d:60:a9:f3:5f:
7a:1c:f2:c6:63:09:ab:32:52:8d:58:62:54:8b:46:2b:f0:35:
89:02:2f:d7:36:47:e0:17:c3:5b:d0:5e:03:3b:27:02:f2:41:
09:df:35:6a:9f:dd:50:c0:45:6c:ee:c2:99:f4:3d:20:e0:13:
75:3c:f7:81:47:a5:ed:e5:38:85:bc:64:62:a9:18:b5:69:9f:
ed:89:1d:46:ca:08:5e:27:d2:ab:3a:ba:b6:4c:c1:25:71:49:
88:79:69:4b:c8:ed:d2:2c:ca:c6:ca:0d:00:7b:54:ec:2e:96:
5b:c8:da:d9:ff:03:87:bd:12:9c:71:09:77:16:b3:87:61:1c:
df:a1:d6:17:76:5c:06:0d:1f:a9:1e:f1:be:00:8b:73:90:de:
69:2c:86:ef:31:ed:22:48:4e:88:b2:f9:82:44:a1:62:bb:02:
3a:9f:be:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org