Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/71ctCnqlGGD-Or7BkKO0_UyH384.roa
File: 71ctCnqlGGD-Or7BkKO0_UyH384.roa (raw, json)
Hash identifier: GdZemBcBUlYgsuhKsmIH3p7C+gDpK+Cp62FFHZ4i/Fs=
Subject key identifier: EF:57:2D:0A:7A:A5:18:60:FE:3A:BE:C1:90:A3:B4:FD:4C:87:DF:CE
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1A6F
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/71ctCnqlGGD-Or7BkKO0_UyH384.roa
Signing time: Tue 01 Nov 2022 02:24:21 +0000
ROA not before: Tue 01 Nov 2022 02:24:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24165
IP address blocks: 115.165.208.0/21 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6767 (0x1a6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Nov 1 02:24:21 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EF572D0A7AA51860FE3ABEC190A3B4FD4C87DFCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:28:04:c3:16:67:c5:7c:58:eb:62:b1:1e:51:
f9:7d:96:df:c6:52:b1:7f:40:b0:f1:c1:45:f5:95:
21:59:9c:f2:90:98:ac:a5:fb:01:1d:74:91:4d:24:
44:af:a2:0f:c7:b1:98:d2:aa:45:0f:0e:2f:8b:71:
6f:0e:84:84:95:f8:11:8a:03:f0:04:f2:45:56:47:
65:fe:d2:c6:a7:bf:e9:98:ef:a6:24:79:48:cd:49:
da:bc:cc:64:5c:a7:4d:36:45:0d:6c:c5:98:8f:ff:
b2:aa:31:1f:ed:ca:a9:7d:68:16:39:c2:e6:3c:0a:
42:1e:71:2c:dd:58:ca:3b:1a:f1:7e:7e:85:5b:ac:
3d:a7:a2:ba:5a:78:0d:7c:60:0c:45:da:af:79:c6:
a7:c0:a3:74:33:c7:f8:3e:01:9b:dc:48:f0:3b:25:
88:2e:a3:13:be:a0:f9:1e:05:63:84:16:85:e8:e0:
45:92:a8:62:fd:51:3b:e4:84:d6:30:72:44:6a:c4:
e4:d7:fd:e6:01:b4:bf:b5:f8:97:8f:09:14:e3:d2:
f5:33:05:d3:2e:8c:61:72:dc:20:6f:b3:1f:8f:05:
44:b9:85:c4:3e:40:bf:fd:fc:f0:9c:da:98:98:4f:
9d:e5:fb:e6:d2:be:e2:e7:31:1c:e7:d5:c8:86:08:
3b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:57:2D:0A:7A:A5:18:60:FE:3A:BE:C1:90:A3:B4:FD:4C:87:DF:CE
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/71ctCnqlGGD-Or7BkKO0_UyH384.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.165.208.0/21
Signature Algorithm: sha256WithRSAEncryption
96:d4:a4:39:37:7a:27:4c:bb:f0:ff:eb:b6:3c:a0:d7:1a:71:
5f:62:26:57:d6:9d:be:e7:68:ed:27:b8:ac:7b:9a:dc:7a:ea:
8d:b8:5a:ce:58:c9:cd:17:a4:21:a1:e2:2a:d9:5b:57:14:c3:
d4:a7:5f:f6:d5:06:f6:08:14:cc:9f:ae:92:7f:b6:d7:42:25:
df:71:42:77:05:4b:59:7d:13:b5:6c:2c:7f:43:89:ec:2b:00:
a1:91:4f:c7:f5:73:8d:b7:6c:ee:42:26:78:23:7b:b0:ba:68:
26:b0:33:08:36:b6:47:a0:63:1d:6d:ab:65:d5:39:01:1c:ce:
95:09:81:d6:14:8e:87:b7:df:e8:62:9e:ea:66:5c:42:00:75:
2f:de:e3:52:66:6b:58:a6:8a:bd:19:40:70:95:b0:6d:72:2a:
c1:5f:7e:8c:85:e3:ea:79:2e:16:5c:61:55:7f:a8:ae:99:cb:
42:8e:08:80:b9:a3:50:cf:ed:fd:4d:0d:78:b5:f6:d5:67:78:
2e:05:67:f4:ff:67:1c:22:08:3b:b9:d8:53:5c:71:68:77:33:
82:5f:60:a5:f6:ac:1e:99:43:2f:99:7e:d9:a6:9a:76:6b:0a:
bc:55:22:af:ed:0f:c2:83:fe:b2:5a:56:2b:d8:39:89:0d:cd:
91:2e:23:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:45 2024 by rpki-client on console-ams.rpki-client.org