Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2TiLxXjlFYkUIx1Bvq5n_AmxxBg.roa
File: 2TiLxXjlFYkUIx1Bvq5n_AmxxBg.roa (raw, json)
Hash identifier: cuUM/3mabnDJPerhCjN4AgEXKSsJQhBK56VwGeqzI2M=
Subject key identifier: D9:38:8B:C5:78:E5:15:89:14:23:1D:41:BE:AE:67:FC:09:B1:C4:18
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 124A
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2TiLxXjlFYkUIx1Bvq5n_AmxxBg.roa
Signing time: Wed 29 Sep 2021 02:54:25 +0000
ROA not before: Wed 29 Sep 2021 02:54:25 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24165
IP address blocks: 115.165.208.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4682 (0x124a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:25 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D9388BC578E5158914231D41BEAE67FC09B1C418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b1:65:c4:a5:43:9c:0e:85:f5:d3:12:42:f0:
d8:5d:04:b0:23:74:28:c3:15:49:83:7a:a9:85:8b:
55:6b:ba:79:92:d2:f6:a0:24:b8:d0:0a:50:aa:ae:
bd:2b:a3:f8:78:9a:22:52:9a:1e:5e:09:c4:51:cd:
1b:07:d7:03:cf:ff:59:4d:a3:fe:91:4c:2b:15:b6:
60:47:01:03:da:9c:01:1c:23:bc:87:ad:72:5a:29:
f2:1b:a5:42:38:7d:56:ab:62:c2:a5:50:89:43:7b:
40:b4:68:eb:da:e1:da:0d:a9:d5:78:6f:b3:4c:96:
36:56:a4:82:20:65:21:8f:c5:97:cc:b2:9d:dc:de:
d4:0b:7e:4c:96:de:e2:6d:51:2e:73:37:40:34:0e:
aa:90:0b:96:f1:13:aa:ed:06:a4:ef:63:14:1e:12:
d7:1a:db:d0:bb:b2:d0:c7:47:28:78:92:02:eb:35:
27:bf:f5:8d:94:20:bd:5f:09:57:4b:e8:c1:c0:3e:
6f:9e:78:2a:3e:d7:1f:5b:df:1b:34:4a:f7:e0:42:
7b:ad:9c:39:0a:4a:81:82:17:36:33:94:88:eb:b3:
68:51:ce:fe:ad:dc:ea:f0:5f:a5:60:0c:c2:96:8c:
42:59:a3:c9:3c:7d:d3:0e:2a:de:c0:7e:aa:dd:8a:
a7:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:38:8B:C5:78:E5:15:89:14:23:1D:41:BE:AE:67:FC:09:B1:C4:18
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2TiLxXjlFYkUIx1Bvq5n_AmxxBg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.165.208.0/21
Signature Algorithm: sha256WithRSAEncryption
96:14:9b:f3:39:6c:b2:4d:a1:01:99:3b:8f:fd:0f:fe:5c:a7:
cc:f3:af:f1:81:43:64:31:8b:25:86:69:58:60:a4:e8:94:9a:
87:8a:c2:57:45:34:09:da:98:55:73:56:38:1a:90:9f:43:ab:
69:8a:5a:12:22:70:90:fa:81:fe:d0:97:8d:75:ef:73:99:29:
21:8b:dc:6b:5e:96:44:40:51:08:e1:f9:15:43:60:d9:28:7a:
e1:01:4a:24:9a:fb:71:2a:68:fb:1c:69:c2:b3:51:a3:9b:4d:
8c:4e:da:ac:72:d9:95:09:2d:19:ba:50:57:ac:99:61:80:91:
eb:4d:70:b6:92:1c:45:91:8b:f7:e6:9c:45:81:4d:c2:d5:7c:
97:19:33:75:b1:6b:10:fc:a3:13:d4:89:45:f5:42:f9:16:fe:
8b:77:6f:05:6c:a0:48:83:4a:b5:c0:c7:a8:ed:5f:25:8d:d1:
12:d3:1b:d2:1e:35:a6:41:db:c2:ed:16:54:5d:46:30:19:1d:
90:b1:54:d7:22:76:ad:7d:4b:1f:aa:88:6a:61:88:ab:f5:c5:
cf:2c:07:34:24:eb:28:17:be:6b:fa:c6:3b:a1:4a:31:d1:f2:
45:8b:7f:84:aa:d4:16:5f:60:c2:43:16:94:76:d6:05:d6:b0:
ad:e5:cf:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org