Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Dr7Bxk4MloCx3jEFYcycoyInqiA.roa
File: Dr7Bxk4MloCx3jEFYcycoyInqiA.roa (raw, json)
Hash identifier: 2ulylS9YTko0344GERk2jsaPuYL76ByH5vDoCNXisB0=
Subject key identifier: 0E:BE:C1:C6:4E:0C:96:80:B1:DE:31:05:61:CC:9C:A3:22:27:AA:20
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1529
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Dr7Bxk4MloCx3jEFYcycoyInqiA.roa
Signing time: Fri 21 Oct 2022 08:25:46 +0000
ROA not before: Fri 21 Oct 2022 08:25:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 122.100.112.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5417 (0x1529)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 21 08:25:46 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0EBEC1C64E0C9680B1DE310561CC9CA32227AA20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:98:2e:b9:5a:e1:af:c0:99:f1:13:dd:42:e8:
6c:42:fe:97:a7:bc:0e:7e:e6:34:78:4e:44:20:46:
39:ba:90:9d:f1:c0:b7:8a:5f:d5:76:56:b4:b2:57:
0d:1b:18:58:d1:9f:f3:ce:f6:51:9e:84:28:e6:57:
1a:fa:48:4a:66:95:ff:82:90:94:3d:12:97:24:08:
39:2c:6e:7c:0e:37:f3:a1:ac:68:c4:1a:7a:e7:71:
a0:05:fd:f6:69:58:c5:5f:40:53:b4:ed:da:55:1b:
c8:c3:8e:47:f0:ba:58:c7:f5:ad:73:77:d1:a6:35:
3e:98:bd:ce:74:de:96:72:b4:c0:7b:bf:7e:60:9c:
90:6c:ec:1e:4f:70:52:6e:17:7f:be:93:6d:1f:d8:
01:2d:a8:18:74:2b:4d:01:41:4a:a0:89:69:48:55:
f1:ea:f8:4f:fc:33:00:ee:52:20:66:04:41:65:38:
11:d5:ae:92:36:44:6e:1e:24:08:34:48:60:77:31:
62:25:67:01:ee:b7:2c:c9:8c:34:5e:d5:49:22:58:
96:79:db:b8:8e:37:09:fd:3b:93:94:4a:5b:ac:16:
c5:d4:bc:6c:f4:33:7a:85:fb:37:ed:ce:84:bd:10:
6b:ff:ec:a0:26:72:1f:fa:4b:93:87:02:56:a7:e2:
43:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:BE:C1:C6:4E:0C:96:80:B1:DE:31:05:61:CC:9C:A3:22:27:AA:20
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Dr7Bxk4MloCx3jEFYcycoyInqiA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.100.112.0/21
Signature Algorithm: sha256WithRSAEncryption
41:b5:e5:80:24:c0:ef:54:e5:d3:04:60:d9:96:dc:cf:b6:9b:
77:60:3e:29:b3:7c:8e:9e:40:eb:a5:b7:03:a7:ab:e3:53:fe:
5b:3a:9e:44:56:7e:6e:60:0f:a8:25:a3:9c:7a:46:5a:aa:de:
79:c1:c0:de:63:2f:e0:5f:f5:c8:58:66:6d:ee:c9:8a:fd:b1:
88:e0:fa:21:cb:c6:1a:2f:51:55:21:77:81:52:31:43:1e:cf:
65:94:ec:62:ff:cb:8b:22:91:81:c1:9c:6d:5e:63:8b:a6:e7:
6a:e7:ee:99:14:f8:e5:1d:26:1f:10:b2:80:70:05:4d:f8:aa:
d6:98:91:bf:1c:5e:ad:7e:e5:5f:e5:44:0d:fc:c4:e6:ad:ba:
37:07:9d:50:aa:bd:56:26:64:93:bb:49:bc:9a:20:77:fc:b5:
2b:e3:a6:a0:dd:fa:36:7c:c6:e5:30:a8:3d:12:38:77:fc:74:
36:49:b5:cb:d4:14:ec:f7:8d:02:96:a2:97:d2:d5:3c:13:92:
80:3e:70:10:29:09:da:43:ba:04:08:f7:b2:01:0a:61:57:a6:
96:31:8a:39:6b:33:64:fe:01:ce:6b:cc:55:8a:eb:3f:7a:1c:
fd:ec:b0:fb:13:26:10:cb:91:b3:51:b9:40:de:3a:4d:54:9d:
16:c0:d1:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org