Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3Tjmg5XkWjX3DdPUwWmfsLnbaPY.roa
File: 3Tjmg5XkWjX3DdPUwWmfsLnbaPY.roa (raw, json)
Hash identifier: BcnwiosimkoQaJpSmqJ2sEeAEyrqLxjJMz3oxC3fnAQ=
Subject key identifier: DD:38:E6:83:95:E4:5A:35:F7:0D:D3:D4:C1:69:9F:B0:B9:DB:68:F6
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1284
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3Tjmg5XkWjX3DdPUwWmfsLnbaPY.roa
Signing time: Wed 29 Sep 2021 02:54:40 +0000
ROA not before: Wed 29 Sep 2021 02:54:40 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24165
IP address blocks: 45.64.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4740 (0x1284)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:40 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DD38E68395E45A35F70DD3D4C1699FB0B9DB68F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:1a:12:9c:66:ad:ba:70:d2:c6:dc:b4:e2:69:
59:00:4d:3c:0d:bb:f5:b5:ef:af:21:df:c6:9f:d6:
5d:83:3f:71:5b:47:1f:bf:a2:b1:e6:ea:7d:3b:03:
cf:13:58:5e:1d:3d:94:16:e0:8a:a6:93:ca:4b:e3:
9a:f4:cd:1f:77:d7:92:41:77:90:94:77:29:00:5a:
8f:69:99:b3:fa:04:af:e2:17:e2:21:53:83:8c:c7:
10:2f:1b:bb:11:88:05:87:5b:8a:a3:5d:97:e6:42:
eb:90:3c:2f:03:93:cf:44:f7:6f:2e:31:46:a5:70:
5a:87:58:97:d0:29:fc:66:88:96:1f:b4:fb:e9:d3:
77:c8:a9:fb:a9:19:4f:33:1a:a5:3b:26:f2:f6:b5:
d9:f1:aa:fb:43:bb:ed:ee:75:ab:6f:a7:6d:22:a6:
fb:c5:1d:ea:47:b4:95:ad:b1:00:8f:91:89:44:1c:
fb:bd:0f:06:e6:51:0e:48:97:0a:52:72:9e:c4:87:
f6:2a:d9:6d:b4:7c:df:8e:a7:7c:83:6a:57:3c:d5:
5a:d7:e1:17:31:00:79:50:1b:ee:b3:84:6d:bd:4e:
76:83:b6:d0:e0:37:62:48:3d:6d:f9:15:80:93:53:
c0:3d:6b:1d:5e:1c:b2:8b:42:99:b9:51:b0:d4:f7:
b7:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:38:E6:83:95:E4:5A:35:F7:0D:D3:D4:C1:69:9F:B0:B9:DB:68:F6
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3Tjmg5XkWjX3DdPUwWmfsLnbaPY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.64.34.0/24
Signature Algorithm: sha256WithRSAEncryption
50:f1:ee:ea:98:7b:df:5f:1d:a0:7c:d4:b5:96:f0:b7:35:9a:
80:2b:26:2c:68:ea:bb:39:fd:fa:b2:58:10:0e:58:36:08:4d:
a2:41:2c:22:f7:bb:69:72:ab:72:8c:b1:b4:9b:12:8e:9f:84:
cc:74:24:77:c0:8c:d3:d2:ff:d5:c2:a0:98:14:99:df:ff:bc:
43:33:ea:21:c9:9c:d5:de:a4:70:28:bf:60:c0:12:05:f2:42:
c3:02:e5:44:43:f7:d0:e3:3d:f4:ec:94:73:fe:0d:d0:8e:32:
87:2b:a8:da:9e:c8:a9:c3:fb:a1:7d:7a:92:4f:12:ba:a7:8a:
27:40:7f:ed:52:4b:bd:3b:66:82:8e:ca:f5:3a:0a:3c:da:a9:
03:1c:c1:bd:d0:83:62:47:49:6d:2a:11:c4:52:ab:13:b9:77:
b7:a2:35:88:77:b9:22:2f:e7:ac:42:e6:65:81:51:0d:0b:35:
fb:61:a8:1e:41:fd:6b:25:54:38:70:82:c4:4b:8b:aa:97:4c:
2e:6c:48:8e:94:db:47:fe:de:b7:8d:8e:0e:37:ff:bd:52:36:
fb:05:ae:c8:3f:48:66:20:ee:a1:27:8b:20:73:bb:05:b4:4c:
74:95:eb:97:f8:a3:7b:7d:0d:76:cd:80:da:1a:0c:a1:dc:5e:
21:63:12:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org