Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/46lVvpNVX_XW-24SdeI4aavOYCE.roa
File: 46lVvpNVX_XW-24SdeI4aavOYCE.roa (raw, json)
Hash identifier: epezzafvXpNlYBELG//TyGt8WSX4cCOpytdoh3uUdrc=
Subject key identifier: E3:A9:55:BE:93:55:5F:F5:D6:FB:6E:12:75:E2:38:69:AB:CE:60:21
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12D4
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/46lVvpNVX_XW-24SdeI4aavOYCE.roa
Signing time: Wed 29 Sep 2021 02:55:03 +0000
ROA not before: Wed 29 Sep 2021 02:55:03 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24165
IP address blocks: 61.64.16.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4820 (0x12d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:03 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E3A955BE93555FF5D6FB6E1275E23869ABCE6021
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:44:9f:88:f9:88:85:7f:0c:13:99:d1:77:02:
53:f4:33:16:bb:8a:d6:26:a5:d9:58:5b:ab:8a:c7:
ec:84:01:9a:81:0e:40:76:01:14:74:21:6f:36:51:
d4:c5:b9:7f:a3:09:64:d1:97:50:ab:81:a1:5a:c2:
52:49:46:8f:3a:a6:db:04:83:68:83:cb:19:c1:20:
b8:b2:02:a7:f9:76:6a:68:b1:37:18:8c:d8:35:04:
2c:6a:aa:c5:dc:45:0c:7d:4a:95:b0:18:78:c3:09:
39:cf:65:49:74:1b:5d:41:d9:46:6e:eb:f4:a2:2d:
11:cb:35:0b:63:e6:26:29:12:40:7e:eb:7a:41:34:
a7:db:a8:95:7f:56:24:a6:67:d4:bb:99:60:ee:84:
68:9a:a7:96:e9:75:f2:c8:60:4f:17:07:8a:b7:61:
20:0b:df:e0:41:1f:76:ad:b8:8e:19:12:6f:80:3e:
3e:a6:a6:b6:99:39:ff:3a:90:ba:58:72:72:46:15:
10:a7:88:8c:c3:3d:ef:e8:53:c5:28:72:06:9f:41:
6b:99:ae:f8:e3:f1:15:3f:90:24:e1:ee:9e:0f:3e:
b2:98:fc:30:0e:9d:13:15:06:c9:05:40:97:08:47:
0b:bf:22:f6:86:fa:02:fb:26:9b:1a:fd:c4:34:e1:
59:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:A9:55:BE:93:55:5F:F5:D6:FB:6E:12:75:E2:38:69:AB:CE:60:21
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/46lVvpNVX_XW-24SdeI4aavOYCE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.64.16.0/21
Signature Algorithm: sha256WithRSAEncryption
4d:5b:22:ba:93:b6:3e:76:04:57:17:95:f7:22:d8:11:2c:05:
86:df:1e:3c:6b:39:ee:a7:c2:d0:f3:c0:1a:51:0b:6e:30:ca:
9a:4f:cf:60:95:b3:11:36:76:45:77:c1:b0:ac:25:ed:14:f6:
71:a1:6c:e6:67:54:6e:f5:8d:9a:2f:dd:48:f9:69:4e:91:48:
42:2f:93:9d:a3:03:f8:cb:93:cd:a7:97:de:3c:53:e0:27:68:
dd:66:ae:2e:4d:5d:49:cc:c1:44:89:a6:03:22:c5:bd:a2:1f:
56:e0:22:76:da:c4:ac:85:cc:b5:c4:8b:cd:ee:4c:e1:d3:cc:
d6:97:a9:43:c1:04:f8:08:57:97:02:61:54:89:a6:e0:71:06:
74:db:57:e1:f2:72:9f:74:ae:bf:c9:f0:68:ae:b9:3c:47:56:
62:f3:7a:4e:87:2c:32:29:69:10:c2:1b:e7:a5:73:6f:cb:b8:
44:af:56:54:41:d9:52:4a:92:14:d3:56:95:b3:74:2d:b6:b2:
f8:a8:99:f8:f9:37:dd:df:0b:7c:ce:a0:28:5d:a4:dd:7e:22:
f9:97:ab:47:34:f4:a6:9b:d5:13:15:11:09:2b:d1:75:0c:67:
54:2c:6a:c2:2a:9a:d7:fe:5f:45:6a:18:84:29:5f:32:50:88:
d1:8b:96:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org