Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AEcXYe-i_F4Ja_ur9tltDo3Hu_U.roa
File: AEcXYe-i_F4Ja_ur9tltDo3Hu_U.roa (raw, json)
Hash identifier: FKXNltWaaTjPqFNBbkh6bUDlSgQEGuc8NfGfxVUCim8=
Subject key identifier: 00:47:17:61:EF:A2:FC:5E:09:6B:FB:AB:F6:D9:6D:0E:8D:C7:BB:F5
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1277
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AEcXYe-i_F4Ja_ur9tltDo3Hu_U.roa
Signing time: Wed 29 Sep 2021 02:54:36 +0000
ROA not before: Wed 29 Sep 2021 02:54:36 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24163
IP address blocks: 211.76.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4727 (0x1277)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:36 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=00471761EFA2FC5E096BFBABF6D96D0E8DC7BBF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9b:a5:91:f7:4f:ce:4c:39:54:aa:29:83:7f:
a5:0b:bc:2c:13:b6:d7:dc:51:43:91:b7:43:d7:1c:
71:49:cc:47:a5:db:cc:16:c6:af:c3:59:be:eb:e8:
4c:b1:8f:34:84:f0:09:42:f5:28:34:89:88:0a:0e:
99:31:92:71:d7:31:98:cf:9e:71:bb:57:de:e8:fa:
46:b4:60:56:ff:f2:d5:d5:5b:8a:76:0b:1b:ba:c8:
1c:d4:93:ce:6c:d1:99:f0:87:78:d8:f4:72:99:de:
75:00:c2:f4:e7:ee:cd:08:4f:5d:7c:cb:ab:13:aa:
e0:f9:09:fb:97:39:4f:6c:8e:00:31:7c:04:c4:a4:
38:f7:51:b5:72:4f:56:5c:f8:31:87:ec:0a:9e:7a:
af:0c:d4:85:cc:d9:ca:3e:8f:36:ea:de:ba:84:08:
04:2d:78:39:f4:6e:e0:c8:6a:2f:ed:3f:04:bf:9f:
6b:4c:3e:63:96:40:6e:3f:fb:e9:24:a5:a3:3d:12:
f1:40:62:11:10:b2:5f:b0:5e:e6:35:40:2f:b2:e1:
91:62:0f:53:aa:c5:96:0a:27:b8:22:6c:5a:dc:a0:
0a:c3:71:1a:1d:21:ca:fc:bc:e2:a3:57:79:d5:e9:
56:f3:99:96:29:ab:ef:a7:ff:f9:cc:9e:2d:bf:bb:
d4:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:47:17:61:EF:A2:FC:5E:09:6B:FB:AB:F6:D9:6D:0E:8D:C7:BB:F5
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AEcXYe-i_F4Ja_ur9tltDo3Hu_U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.45.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:f0:99:cb:d0:98:53:77:1b:ca:5b:eb:1b:bb:53:20:4e:bf:
de:7d:fa:f7:7f:f5:fc:e2:1c:a2:07:81:ef:e6:60:f7:2d:76:
6b:0a:df:f5:a3:3f:98:ff:17:9f:5c:d3:6e:16:5d:8a:ac:44:
ae:1b:7a:82:9e:7f:ba:f1:5e:6a:09:c2:0a:e5:2f:72:80:54:
60:bf:8d:1d:65:43:95:14:00:41:eb:e7:12:36:75:63:ad:4f:
df:d3:c8:e5:49:80:5b:f0:58:c2:27:b4:a3:71:b9:59:39:33:
28:65:5a:c9:e4:7c:32:01:f8:60:a7:b4:2f:b8:d0:01:b9:6f:
dc:a8:82:74:57:9e:99:a3:25:4d:f9:00:1f:b2:b6:c0:20:a9:
3e:42:32:b1:97:4b:9c:27:c1:df:8b:59:e7:8c:46:46:1e:0c:
87:39:ed:3e:67:00:b5:14:ea:59:f4:be:21:3f:b8:95:ff:7d:
9d:41:e6:8c:79:d8:c5:a2:83:ae:d9:30:cb:34:ca:57:92:a3:
1b:a8:4b:75:17:61:66:10:32:60:04:17:32:09:46:4f:42:16:
c5:b5:5e:ba:99:19:29:87:73:9b:41:c4:0e:4c:9d:56:67:de:
f6:66:d2:78:b5:76:8c:7c:d1:34:a8:23:cd:b5:43:e8:1c:de:
14:b8:51:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:46 2023 by rpki-client on console-fra.rpki-client.org