Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vZ64UzzzMtXawtaIThZWDCNTq90.roa
File: vZ64UzzzMtXawtaIThZWDCNTq90.roa (raw, json)
Hash identifier: 9Gm4ZxajTV+eA3oN2GlmjMpUTxhUOSJ94md8WX3yaS4=
Subject key identifier: BD:9E:B8:53:3C:F3:32:D5:DA:C2:D6:88:4E:16:56:0C:23:53:AB:DD
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0D27
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vZ64UzzzMtXawtaIThZWDCNTq90.roa
Signing time: Thu 14 Jan 2021 07:16:16 +0000
ROA not before: Thu 14 Jan 2021 07:16:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 115.165.220.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3367 (0xd27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Jan 14 07:16:16 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BD9EB8533CF332D5DAC2D6884E16560C2353ABDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:aa:06:57:0b:f4:42:b2:a5:04:47:61:71:98:
e5:45:38:9c:92:6f:ae:a5:70:6f:72:5e:d0:14:63:
0b:4e:97:09:6b:48:04:e8:5d:e4:18:ba:25:50:cb:
ba:09:06:47:a7:5e:f2:26:bc:df:fd:ac:15:61:dc:
32:d2:f4:d6:1c:d9:fe:cc:db:e1:00:13:5f:d3:8a:
cd:a5:8d:8d:40:ef:90:64:6b:bc:b4:07:66:e1:3e:
6a:cb:c8:f3:ca:bb:0b:b0:d3:40:bf:9c:c7:c6:63:
25:e8:16:a5:cd:5a:d2:5f:95:df:60:f7:50:80:4f:
64:5b:37:9f:80:ff:88:8f:61:fd:63:77:0c:39:17:
ac:bc:df:63:0d:b6:5b:7f:17:fc:4b:65:90:bc:89:
0d:a9:f7:1f:3a:99:d8:db:cf:1d:a5:6d:86:f6:cf:
24:7e:ee:5b:f8:32:1a:03:dc:f8:5a:00:c2:7f:01:
d5:e3:eb:12:a5:d4:81:64:15:06:d7:ef:33:dd:d4:
2e:22:fd:e8:a9:7b:81:e3:ad:55:d4:39:63:4f:f9:
c6:59:9a:44:5b:1d:18:e1:37:cc:93:98:36:56:04:
b0:14:66:28:60:dc:38:aa:eb:8a:55:7e:e7:1f:45:
d1:38:b3:52:f2:b1:40:56:e4:c7:0b:2a:ad:36:57:
43:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:9E:B8:53:3C:F3:32:D5:DA:C2:D6:88:4E:16:56:0C:23:53:AB:DD
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vZ64UzzzMtXawtaIThZWDCNTq90.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.165.220.0/23
Signature Algorithm: sha256WithRSAEncryption
63:d8:2b:be:3f:b4:bc:3c:2f:81:15:98:33:a6:b0:f7:0d:e6:
f1:5c:e1:6a:e8:a8:71:b3:e5:23:19:da:2e:bf:21:c0:ba:e5:
00:e5:05:1f:f4:84:22:5d:4c:7c:ef:e2:9d:29:09:d2:92:bf:
72:16:34:fa:78:e1:77:f8:b4:e7:80:9e:52:ea:b3:ad:a4:74:
a7:22:29:55:c0:95:41:fc:53:9a:11:44:3a:17:5a:f5:8e:f4:
a7:83:3f:dd:1f:69:a3:5f:4b:2f:0d:f7:22:2f:9f:5e:1c:1d:
c2:2f:9c:42:63:c3:8f:18:24:b1:03:17:7a:f3:5b:3a:c5:9e:
c0:4b:49:b9:c2:0c:b8:11:a9:c1:61:bc:7c:29:f4:fa:0d:09:
23:a6:e0:dc:f4:b4:dd:8f:d7:cc:54:bd:09:2b:9f:a5:18:cd:
32:0b:42:47:47:d2:94:7b:19:e9:6f:72:89:25:c1:09:06:08:
30:33:61:42:49:7c:55:0e:2b:23:7c:f4:ab:6c:4e:bf:fb:62:
3b:1b:4b:83:69:6c:9f:9a:46:0d:be:83:ce:99:e3:00:b9:3c:
60:c0:75:f6:6b:c0:a4:cd:6c:52:c9:43:25:6f:06:de:db:77:
9b:26:59:a1:d4:0e:97:3b:f2:10:be:23:b2:27:a9:41:03:5a:
e7:c1:14:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:50 2024 by rpki-client on console-ams.rpki-client.org