Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0U2mVvnlZzSjrhGJJ795HTnMHac.roa
File: 0U2mVvnlZzSjrhGJJ795HTnMHac.roa (raw, json)
Hash identifier: oQXqEvCVzl62wgyHtpSyghRcfS06Xv8+aFikEyNM3/k=
Subject key identifier: D1:4D:A6:56:F9:E5:67:34:A3:AE:11:89:27:BF:79:1D:39:CC:1D:A7
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 192D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0U2mVvnlZzSjrhGJJ795HTnMHac.roa
Signing time: Sat 22 Oct 2022 06:06:11 +0000
ROA not before: Sat 22 Oct 2022 06:06:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 2407:4b00:fd01::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6445 (0x192d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:06:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D14DA656F9E56734A3AE118927BF791D39CC1DA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ff:01:59:16:68:73:54:82:8c:ba:b3:db:5e:8e:
e8:4f:88:81:ac:85:f2:c0:cc:c6:3f:1b:88:9e:68:
91:a5:71:a5:33:8a:0e:1c:5b:e2:9a:de:ee:95:a5:
c5:97:8e:cd:48:37:4a:c7:b5:13:3c:6a:4c:99:ed:
39:d6:81:44:5c:89:4f:9c:3a:3f:db:84:ee:67:8a:
b8:bf:28:3d:de:a8:74:7f:ad:08:73:35:92:38:d0:
98:7a:fa:e7:2e:e7:cf:76:e7:5b:f9:e2:b1:b3:fa:
30:5c:a2:e2:96:3a:dc:37:62:53:19:ce:75:d8:7e:
43:2d:9a:f7:d0:63:17:64:d4:d6:2f:b7:81:03:06:
d5:08:71:74:d4:63:d7:97:a0:e3:ce:45:d5:60:de:
f7:ec:9d:29:81:eb:a6:f5:47:3a:7a:d9:6e:bc:26:
df:60:e7:a9:ad:51:9a:33:b5:59:3f:8f:f6:92:04:
37:a3:9a:e2:2d:3e:e0:58:0a:02:99:07:39:30:49:
7f:63:cb:17:a5:a3:63:32:f6:0e:03:21:3a:04:1a:
90:96:58:d3:e3:2d:87:4f:2e:26:97:47:12:a7:61:
ee:a1:db:32:df:09:35:41:e9:40:b3:5d:5a:a5:2f:
bc:36:55:8b:2d:cf:70:05:28:36:8c:7f:b5:f7:bf:
46:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:4D:A6:56:F9:E5:67:34:A3:AE:11:89:27:BF:79:1D:39:CC:1D:A7
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0U2mVvnlZzSjrhGJJ795HTnMHac.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:4b00:fd01::/48
Signature Algorithm: sha256WithRSAEncryption
31:f4:8f:98:43:e4:27:e5:56:e1:09:9c:6f:cc:95:a0:35:21:
40:26:fe:c3:10:ba:1d:a5:9f:4c:45:d3:40:78:c3:16:1f:b5:
d8:3e:6b:18:2b:38:57:1a:ae:f7:cf:10:b9:04:48:0a:e7:f6:
48:6b:37:7b:c0:12:91:92:65:68:bb:e4:39:a6:5d:a7:30:3c:
44:e2:12:b4:ce:0f:f0:16:41:d8:aa:42:36:e3:5c:c5:12:fd:
33:f5:ed:36:dc:4c:a1:9d:b9:f3:c7:34:96:a9:65:37:73:57:
95:c7:59:ff:8c:b0:fe:83:b1:c3:dc:4a:d0:00:58:e8:fa:38:
32:50:a4:57:86:e1:d9:92:3e:49:a4:b1:c0:e5:41:fb:f8:e4:
18:4b:70:13:35:c2:01:f0:7e:29:78:1d:95:34:8a:a0:27:7e:
9b:57:d8:9d:c6:c8:45:9c:8a:d3:c5:59:8d:f6:96:1b:8b:96:
13:51:8f:78:c3:4c:29:6f:f8:e7:83:2f:c8:3f:0c:58:00:3b:
4b:be:fa:7e:ec:8b:fa:23:b1:35:23:03:19:82:8e:21:ed:48:
d9:fe:6f:1b:57:ef:48:73:2d:f8:6d:ea:2e:38:fb:36:d3:f0:
87:cb:0b:ee:35:45:fa:9c:96:b2:34:2a:36:8e:97:a2:b3:b2:
3d:de:4c:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org