Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/G3YpZ8f-FtlOnX2XmIVMLTbfUgc.roa
File: G3YpZ8f-FtlOnX2XmIVMLTbfUgc.roa (raw, json)
Hash identifier: EbpgHMM1JPCLaVH6+FTjz6Ym0e6Rp0z1RXa1bcGgGzw=
Subject key identifier: 1B:76:29:67:C7:FE:16:D9:4E:9D:7D:97:98:85:4C:2D:36:DF:52:07
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0F31
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/G3YpZ8f-FtlOnX2XmIVMLTbfUgc.roa
Signing time: Sun 07 Feb 2021 12:33:13 +0000
ROA not before: Sun 07 Feb 2021 12:33:13 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 115.165.216.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3889 (0xf31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:33:13 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1B762967C7FE16D94E9D7D9798854C2D36DF5207
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:21:51:d9:1c:8c:9b:b1:63:51:72:6e:da:b6:
aa:fe:79:3b:37:13:55:70:08:de:b5:b6:a3:34:98:
7c:0d:34:c1:58:6d:c0:af:47:ef:4c:5c:99:2c:96:
bf:1c:0d:4c:0b:14:ee:bc:a2:92:d9:42:72:cb:b2:
fa:18:81:24:73:45:b3:eb:62:ac:b1:0f:05:8b:7b:
3a:72:c3:54:b5:14:36:cf:37:03:f7:22:16:ae:76:
08:bb:7e:99:08:2e:ca:fb:47:3f:a7:51:2d:88:d5:
80:c3:e7:71:a9:01:97:5e:13:d9:ee:76:99:03:44:
2a:fa:25:b9:9d:ec:58:d4:11:fa:52:bc:af:fb:b6:
c8:71:61:7a:d1:07:5f:a3:d8:69:2a:32:a9:c4:45:
39:16:cf:78:7f:89:47:6a:88:37:9a:f2:91:c3:53:
9b:54:28:ca:35:1c:58:e0:5e:ab:fb:78:d7:5f:f2:
30:05:ff:99:68:ba:6f:fb:f3:5e:3d:3c:ed:13:aa:
4e:c8:e9:dd:b3:86:3d:55:24:b5:7a:49:c4:18:c4:
f7:02:60:96:f7:3f:dc:af:1c:8f:59:6b:d2:48:84:
86:80:91:26:93:fb:bf:cf:2f:72:5b:38:89:55:27:
3f:2c:7d:2c:2a:de:2f:76:71:3e:6b:15:0c:de:55:
4c:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:76:29:67:C7:FE:16:D9:4E:9D:7D:97:98:85:4C:2D:36:DF:52:07
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/G3YpZ8f-FtlOnX2XmIVMLTbfUgc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.165.216.0/21
Signature Algorithm: sha256WithRSAEncryption
28:f1:ac:f1:1d:9e:ec:7d:93:b7:93:88:ba:d1:ba:9e:b2:e6:
fd:71:ef:17:e9:a1:ad:4b:67:15:e2:33:0d:b6:d9:bf:a6:55:
d2:08:1b:f8:94:80:67:92:f9:fe:b1:5d:2c:86:07:0f:8f:3f:
c1:ed:94:7d:6b:fa:33:ab:85:af:55:28:a7:e2:94:2e:2f:1d:
0c:d3:57:1e:71:2b:ce:1f:dd:35:5e:26:ee:26:e3:9a:23:d4:
3d:9c:c3:1f:d7:71:f3:cb:87:5f:e2:24:92:d8:98:06:06:a4:
ce:c6:2b:26:80:13:33:6d:27:20:bd:35:c7:e0:70:de:8e:97:
cf:bf:0b:e6:b2:62:dc:48:1a:e9:51:7e:61:77:fb:05:4e:e7:
46:15:bb:28:dc:7f:9c:40:cf:b3:a7:c9:bc:b4:d6:2b:af:7d:
bb:89:dd:8b:dc:a1:e6:c1:67:70:47:02:73:f0:71:37:00:ef:
e2:92:68:f2:a7:f1:46:8f:0f:a8:20:4a:c6:cd:fb:6e:84:7a:
10:b3:34:bf:99:7d:b4:6d:d9:7f:74:10:ae:0b:e1:34:6e:ed:
0e:81:95:7e:b2:47:b2:31:ce:7a:3e:65:b3:b6:27:b2:8e:0d:
a4:56:7c:f9:3e:4c:8a:8e:8b:bd:e5:cf:d6:2e:a7:14:5e:88:
8a:63:33:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:35 2023 by rpki-client on console-ams.rpki-client.org