Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AEY7e0_LdplqndWk3czcY-GOjjg.roa
File: AEY7e0_LdplqndWk3czcY-GOjjg.roa (raw, json)
Hash identifier: aCjCgIFSl7hLn1/4dTYMm5Opa3IA26O2biYwonnulbg=
Subject key identifier: 00:46:3B:7B:4F:CB:76:99:6A:9D:D5:A4:DD:CC:DC:63:E1:8E:8E:38
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0B58
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AEY7e0_LdplqndWk3czcY-GOjjg.roa
Signing time: Tue 29 Sep 2020 10:08:19 +0000
ROA not before: Tue 29 Sep 2020 10:08:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 123.0.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2904 (0xb58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:08:19 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=00463B7B4FCB76996A9DD5A4DDCCDC63E18E8E38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f1:cc:01:2a:50:52:cc:ce:31:1e:6c:48:89:
fa:12:87:af:a9:f0:7b:ac:cd:b5:e4:49:5a:7d:af:
12:dd:98:ee:b5:83:13:54:fe:df:33:38:9a:a2:b0:
f4:25:8f:7c:10:e7:99:c8:be:38:91:96:3b:22:45:
db:b2:e0:fe:41:ce:2c:df:d8:e5:15:14:b8:47:7c:
ee:b7:ce:d2:32:7d:c8:c5:c9:19:d3:3e:e0:96:6e:
c3:e6:75:b9:fd:b3:3c:8b:0a:fb:d2:fa:80:eb:b7:
4e:02:4c:e7:55:f6:88:b2:51:03:00:93:92:ef:98:
52:b5:91:2f:a9:45:bf:47:c8:43:8a:b2:54:df:bc:
04:e9:c0:b8:ab:77:90:ff:8d:e9:07:35:14:d1:c8:
d6:5e:2e:59:97:8f:10:0f:97:61:f7:88:ff:15:d9:
e1:c2:44:50:b4:3d:10:bb:0f:b2:94:b9:3a:84:58:
a7:de:64:6b:e6:77:96:f3:d7:b0:88:e5:22:cb:e6:
25:79:69:25:7f:40:37:43:2a:b8:9c:3e:23:21:32:
e1:74:51:f7:62:69:d5:44:9d:9c:43:dc:60:9b:8b:
de:ec:0a:46:d6:db:33:ed:62:bf:7d:e7:56:92:03:
e9:d3:8e:20:7b:d0:60:25:e7:5a:ec:3e:08:09:56:
4d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:46:3B:7B:4F:CB:76:99:6A:9D:D5:A4:DD:CC:DC:63:E1:8E:8E:38
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AEY7e0_LdplqndWk3czcY-GOjjg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.0.46.0/24
Signature Algorithm: sha256WithRSAEncryption
81:da:59:64:14:11:a9:40:fa:fb:16:25:b6:d3:8b:ec:3e:51:
d7:fe:91:e9:04:5f:06:57:df:79:59:9d:7f:da:e3:bd:25:dd:
b8:b9:92:9f:a2:08:51:58:55:44:23:0f:58:98:4f:65:7a:39:
68:a7:e7:05:01:b5:f5:19:13:83:2f:66:7b:5a:ab:93:48:5e:
d1:9d:4b:e4:9c:39:f0:e9:68:87:b2:ba:a1:d1:d8:7c:c5:d5:
36:f6:40:64:34:13:16:a4:1d:0d:3d:bb:95:f8:58:2b:29:d0:
4c:c9:62:09:2a:06:4e:72:c7:05:1d:6a:b7:ce:73:d9:d7:78:
c4:d9:51:c5:b2:f5:d5:f4:ee:a4:61:91:b7:d2:1f:11:81:1c:
d8:84:39:5e:ce:51:5e:ef:f9:6f:8a:18:c2:99:d2:31:ba:9f:
f9:4a:b8:6f:83:7f:59:07:4f:61:35:19:53:33:74:b9:21:be:
db:f4:e6:86:1b:fd:e4:ed:ef:a9:f7:be:9e:4c:d4:0f:8e:cf:
bf:55:73:09:d2:07:d7:6c:bb:9e:30:02:1b:e2:68:1a:36:1c:
a3:99:eb:86:ba:08:70:76:33:d3:0d:02:a8:e9:73:e8:47:1a:
c5:3c:cc:48:bf:5c:c6:d9:67:df:28:7c:60:ef:e9:9e:a7:71:
89:bf:84:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org