Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AZn2MHw4lOXfz7NnRJA7DcvGwL4.roa
File: AZn2MHw4lOXfz7NnRJA7DcvGwL4.roa (raw, json)
Hash identifier: +gE4yx6/yg7DY4huvZKmsKln7KFEDYwyr2eFwQhTGgM=
Subject key identifier: 01:99:F6:30:7C:38:94:E5:DF:CF:B3:67:44:90:3B:0D:CB:C6:C0:BE
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1832
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AZn2MHw4lOXfz7NnRJA7DcvGwL4.roa
Signing time: Sat 22 Oct 2022 05:52:31 +0000
ROA not before: Sat 22 Oct 2022 05:52:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24165
IP address blocks: 2407:4b00::/32 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6194 (0x1832)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 05:52:31 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0199F6307C3894E5DFCFB36744903B0DCBC6C0BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8e:73:c9:d9:f9:3e:b8:29:93:56:72:c0:cd:
3f:12:c9:49:9d:56:a3:ea:4a:1b:d6:a8:05:ea:59:
66:66:b7:6f:e8:9a:94:4f:6a:b0:e4:f7:88:8c:1e:
4a:c4:78:db:bd:ad:bd:9d:0c:ba:22:83:d3:bb:89:
78:fa:bc:9f:a8:2d:c7:2e:71:e9:e6:c9:85:c8:b6:
da:47:e3:5f:6d:d3:f1:c9:39:75:bd:72:7b:ef:ce:
d0:e9:ad:47:60:17:83:e6:d4:50:55:a2:77:e0:3b:
0a:0e:56:d4:09:3b:a6:e2:94:b9:1f:5f:9f:88:26:
49:21:4a:66:17:7d:13:15:51:88:49:c0:46:0e:96:
5a:d7:07:0d:21:51:2d:50:04:63:cf:a1:ed:bf:7a:
b5:af:12:d9:09:f3:39:9f:52:33:ab:e5:fd:87:a0:
15:a7:5e:3e:b6:6b:bb:44:62:43:57:f5:49:2f:e4:
f3:9e:f8:c5:eb:87:d7:b8:4c:f6:bf:ca:29:9e:ad:
f9:3b:11:c3:54:dc:18:0c:bf:fa:8d:64:17:b4:00:
2f:e2:bf:86:2d:1c:57:3e:2b:5e:9a:3c:91:31:76:
e0:80:a9:1f:78:03:91:7d:08:f4:aa:34:38:fe:1a:
24:ce:49:48:44:37:fd:f8:3e:97:16:df:13:76:36:
5f:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:99:F6:30:7C:38:94:E5:DF:CF:B3:67:44:90:3B:0D:CB:C6:C0:BE
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AZn2MHw4lOXfz7NnRJA7DcvGwL4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:4b00::/32
Signature Algorithm: sha256WithRSAEncryption
96:62:cb:96:92:ff:c2:87:b3:f9:7b:b5:fa:eb:50:d4:07:f6:
9d:05:29:51:b0:e9:ec:71:5e:54:10:e0:84:52:dc:d3:40:cf:
b2:9d:d5:07:4a:07:52:62:56:4a:f5:fd:2b:26:74:bd:91:9b:
a0:08:76:7e:10:44:b1:47:30:e7:05:19:08:a7:63:b1:88:1e:
14:0b:94:69:58:1d:31:f2:c2:da:7f:0b:ed:ae:fd:e2:a8:78:
19:17:81:93:8e:06:91:fa:d2:9b:06:53:92:e0:f4:bd:a1:e5:
6d:d4:e5:2f:e0:a6:1a:65:1f:ab:cc:e3:c5:11:39:eb:1a:b9:
93:3e:35:b0:13:b3:32:3f:27:9f:7e:4b:6c:eb:59:a3:38:41:
0f:d6:0f:1f:7a:a0:21:8b:61:f2:75:4c:c2:e0:6e:32:e5:95:
a1:d5:b9:37:ec:7a:54:e8:d1:11:aa:d0:c5:18:6b:ac:76:fa:
a7:1a:10:d8:23:f2:d4:d7:a5:1f:c0:d4:4a:0d:2c:90:e4:1d:
e9:f4:0b:a3:a2:22:63:32:23:84:a9:e5:2b:c6:d3:2c:3b:b6:
d8:f2:bd:b4:f5:33:92:aa:8b:af:55:58:da:19:46:13:bb:f6:
77:b8:be:93:4b:af:83:f0:59:d4:b7:54:6b:5e:58:6b:54:07:
5d:fa:41:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:45 2024 by rpki-client on console-ams.rpki-client.org