Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CLNwM98JgJGPbhqkSBLbrkLxIBY.roa
File: CLNwM98JgJGPbhqkSBLbrkLxIBY.roa (raw, json)
Hash identifier: B96GkciDwt/lEF81uAEibhZyJSOFeKOrIB6A7d31t6A=
Subject key identifier: 08:B3:70:33:DF:09:80:91:8F:6E:1A:A4:48:12:DB:AE:42:F1:20:16
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CLNwM98JgJGPbhqkSBLbrkLxIBY.roa
Signing time: Thu 15 Sep 2022 02:35:30 +0000
ROA not before: Thu 15 Sep 2022 02:35:30 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 123.0.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:35:30 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=08B37033DF0980918F6E1AA44812DBAE42F12016
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:55:eb:8c:41:d6:12:b1:ae:6b:88:08:96:9d:
68:4f:b7:c3:14:58:6a:84:fb:b0:b7:a1:fa:95:0e:
b5:9f:99:0d:19:df:a4:4e:9c:81:79:60:d6:59:03:
34:ab:14:1e:09:56:ab:17:a6:99:ec:f0:2e:fb:f4:
fb:8a:99:57:f2:ea:82:e8:1f:8c:3c:fe:95:36:e7:
a2:b0:f1:54:00:c6:83:a2:2e:71:02:04:11:03:32:
3e:82:c3:29:df:ad:cd:20:ec:14:b3:0d:f5:ce:1f:
ec:8b:21:8f:b0:e0:27:38:c0:d8:a3:fa:f3:79:71:
6f:54:7c:8b:80:dd:00:9a:5c:37:39:33:1c:ff:0f:
a2:0a:be:7a:ad:22:0e:1c:de:5f:0d:65:d5:86:a2:
f8:45:82:14:6c:7b:54:29:8c:6b:49:ec:09:4b:b9:
1e:6a:70:5b:de:7c:74:5c:91:cd:1a:14:b7:01:48:
e5:59:66:d7:40:c0:04:1c:00:44:9e:af:52:4b:49:
7b:38:31:06:12:b7:00:a3:f1:88:40:fd:1e:c8:dc:
10:50:5a:b8:2f:04:8b:c8:4a:c8:dd:ee:01:5a:6d:
9f:ed:d8:81:e3:09:f6:ad:cb:ec:9d:07:d8:a3:47:
97:5f:ab:af:05:3a:a2:64:93:73:f8:61:a4:18:ca:
b5:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:B3:70:33:DF:09:80:91:8F:6E:1A:A4:48:12:DB:AE:42:F1:20:16
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CLNwM98JgJGPbhqkSBLbrkLxIBY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.0.46.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:4f:0d:d1:5a:aa:07:cb:87:9d:2b:06:13:0c:29:86:d7:25:
5c:21:9b:8f:a6:96:90:cc:54:03:cd:02:82:bd:61:ae:a6:3d:
ce:1e:a7:9d:1c:f9:47:79:d7:84:35:83:e3:36:de:c2:97:af:
80:a8:4a:b5:73:31:dc:05:23:13:61:32:6b:09:56:09:b6:c6:
2f:37:2c:fb:9a:d5:a3:1b:cf:fc:6b:92:fe:f8:e7:f8:a4:a9:
24:20:3d:b8:cc:03:ff:14:81:6f:60:50:69:f0:df:9e:e0:bd:
bc:c4:3f:c2:c1:6a:80:f9:b2:50:4e:61:7f:a9:0b:7e:22:c5:
3d:45:a2:03:99:3f:de:72:80:74:3b:d3:bc:9f:2a:be:7f:c1:
44:a6:eb:8c:37:55:07:cf:47:bd:d7:71:6d:88:99:b0:b2:9f:
81:45:2d:fb:26:40:7e:d1:1f:51:8a:c7:5d:93:df:ad:c4:af:
4a:0f:29:ec:9b:88:46:70:e6:e1:f6:e1:6e:d4:2e:38:cc:5d:
79:de:28:29:1f:6c:9b:6b:82:b2:bd:16:27:0b:bc:67:77:43:
78:24:c9:b4:3f:a2:c8:89:82:32:80:e4:4f:3d:4d:e6:4b:8d:
0b:72:0a:97:ae:37:7d:9e:4c:09:f6:ef:ea:e8:55:d3:73:9c:
e5:70:ee:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org