Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Dn3klriGxFmIGOICdVkXgQtswIs.roa
File: Dn3klriGxFmIGOICdVkXgQtswIs.roa (raw, json)
Hash identifier: 4zpAg5zmMQlDSe5Gm6LZmMyGYFGgFRSaDJpS8vXRsjA=
Subject key identifier: 0E:7D:E4:96:B8:86:C4:59:88:18:E2:02:75:59:17:81:0B:6C:C0:8B
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1911
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Dn3klriGxFmIGOICdVkXgQtswIs.roa
Signing time: Sat 22 Oct 2022 06:06:04 +0000
ROA not before: Sat 22 Oct 2022 06:06:04 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 45.64.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6417 (0x1911)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:06:04 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0E7DE496B886C4598818E202755917810B6CC08B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:15:a6:74:e9:d6:7d:9f:56:eb:46:a8:e8:38:
4d:78:74:6c:9c:f4:5a:a4:3d:03:c8:49:5d:7d:a1:
0c:67:9c:6f:51:55:05:45:b9:7a:53:5f:01:49:ff:
82:7d:d6:b7:b3:38:4f:74:55:c5:2d:aa:db:ca:cb:
20:c0:09:11:60:f8:50:6c:fc:89:9e:74:0a:8a:ac:
8b:7e:80:75:bd:d1:fe:f1:6a:63:fc:a2:6f:55:e1:
37:d4:9d:a8:ef:50:69:81:a0:7d:97:a3:01:3d:b4:
04:50:6e:a6:7c:0d:b0:1c:17:b6:1b:32:59:9b:4d:
85:b1:47:95:66:d1:6c:f4:40:5b:72:74:8d:6d:84:
71:8f:fb:a1:77:89:2c:4b:95:89:3e:e1:e3:a4:32:
b9:68:c1:f7:28:b0:02:f4:cf:6d:95:35:f5:ea:29:
45:6c:da:5a:7a:2e:51:a1:be:32:13:5a:c8:7a:55:
62:39:3e:1f:69:7c:0a:e2:6e:fb:89:e2:fb:e8:c7:
f9:ed:77:39:e3:11:50:72:1d:37:c0:dc:f0:72:0f:
8f:a4:ec:c9:d4:e2:e9:61:c3:ad:f5:2b:a5:7b:db:
59:e2:c8:08:aa:33:d4:9a:69:f4:0e:d9:b1:b6:43:
c6:88:71:ec:70:51:1f:45:42:52:28:8b:15:fd:47:
ba:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:7D:E4:96:B8:86:C4:59:88:18:E2:02:75:59:17:81:0B:6C:C0:8B
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Dn3klriGxFmIGOICdVkXgQtswIs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.64.32.0/22
Signature Algorithm: sha256WithRSAEncryption
28:5d:0a:e9:d6:41:d0:7f:6d:01:9e:45:7b:05:07:41:cc:f8:
f8:d4:a4:ea:57:32:32:f0:40:eb:12:d6:96:cf:16:00:a8:3b:
bb:f9:16:70:13:d8:2d:3c:87:44:7f:40:67:a1:11:28:e2:b7:
93:47:33:a8:c2:31:bb:d9:81:cb:65:34:a0:95:96:91:6f:18:
4a:76:fb:b0:d9:12:21:e6:69:25:d7:15:30:e4:b8:ef:6a:b9:
67:90:43:86:f8:4c:29:97:99:56:38:32:13:1b:c2:15:cb:e4:
6e:f1:55:1e:84:a7:ec:35:1a:ba:bb:63:c1:e0:5b:ca:b8:c4:
80:6f:96:d9:f0:ee:f3:6e:7a:07:ca:d5:80:35:c6:a4:c1:f7:
83:b5:2d:8e:81:2e:51:f2:bb:b3:40:f3:6e:80:29:60:09:ec:
74:71:ea:dc:b7:4b:28:aa:8c:66:ca:47:d1:10:a5:c4:69:d5:
0a:7c:bf:57:72:cb:d3:fd:dd:1f:d3:e3:3f:b0:79:b2:09:8a:
a2:2a:6f:72:8b:49:51:48:9a:4e:b2:41:39:93:54:a8:1b:87:
9c:c6:ac:ee:7b:87:d9:0c:fb:4c:6e:82:38:ec:36:94:53:79:
1c:54:d9:74:df:91:95:5e:39:b9:23:52:c3:58:30:86:4a:98:
0c:b1:55:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:45 2024 by rpki-client on console-ams.rpki-client.org