Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GaPWkymGK3JNPzUwz5Mi0yFU1uM.roa
File: GaPWkymGK3JNPzUwz5Mi0yFU1uM.roa (raw, json)
Hash identifier: nQjXSx26DASk9aszsWrFseDGfYVn/7q8vqUUTt9KP4c=
Subject key identifier: 19:A3:D6:93:29:86:2B:72:4D:3F:35:30:CF:93:22:D3:21:54:D6:E3
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1093
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GaPWkymGK3JNPzUwz5Mi0yFU1uM.roa
Signing time: Sun 07 Feb 2021 12:46:17 +0000
ROA not before: Sun 07 Feb 2021 12:46:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 123.0.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4243 (0x1093)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:46:17 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=19A3D69329862B724D3F3530CF9322D32154D6E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d1:16:a9:d9:d0:12:2f:1d:8f:d4:b8:42:8c:
80:6c:b5:6d:3f:d5:01:c1:aa:99:e1:b5:a8:c7:e6:
76:e8:bd:00:33:dc:ab:a0:d9:11:25:63:95:b1:19:
38:da:b0:d2:c7:ed:51:0b:35:cf:7c:7d:2a:df:90:
ae:53:3c:7b:98:fc:b9:5b:f0:d1:f9:43:66:f1:18:
0a:5d:e8:4c:7b:61:4f:de:d6:2e:04:63:17:3b:6c:
74:74:59:af:da:91:36:22:a1:f6:32:b6:ab:ba:38:
af:25:93:0b:6f:dd:68:fb:47:cf:4b:78:4c:35:36:
1d:46:b0:41:66:3f:5b:37:d5:84:cb:ec:db:7b:49:
10:8f:e0:ae:d9:15:29:62:cc:93:d9:eb:6e:c4:b6:
be:39:26:d3:e8:7a:11:3a:31:ab:d4:c9:e9:32:57:
ea:68:9a:ba:2e:39:0e:1a:e0:1d:f6:21:61:64:94:
f0:dd:ac:78:2e:b7:19:1a:f0:4f:ef:d5:a2:70:d0:
ff:8b:e3:8e:2d:12:f8:51:e9:fd:a7:65:d7:6e:d3:
e0:97:b3:5b:e9:b7:5b:a8:22:5c:5c:17:87:bd:36:
7e:a7:42:70:dc:9d:57:48:78:89:dd:48:3c:6b:a8:
91:20:35:35:5e:06:8f:4e:d4:a2:c3:27:36:25:8b:
7c:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:A3:D6:93:29:86:2B:72:4D:3F:35:30:CF:93:22:D3:21:54:D6:E3
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GaPWkymGK3JNPzUwz5Mi0yFU1uM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.0.45.0/24
Signature Algorithm: sha256WithRSAEncryption
72:28:21:70:a2:30:b6:fd:d9:41:76:ea:b8:89:1c:cc:b2:25:
d3:15:da:cd:56:a8:5f:da:11:47:87:39:71:32:52:6b:04:4d:
0d:52:c4:f3:17:f3:8a:11:a6:a8:76:c1:26:93:15:8d:18:ec:
4b:e9:5d:ed:12:04:aa:eb:66:be:e2:a0:71:e4:09:5e:ec:f2:
a6:7c:a2:1b:fe:59:d5:0b:40:42:70:29:8c:ee:b7:36:5b:a0:
bf:df:3c:d0:f4:bd:27:ad:77:c7:97:85:9e:1c:99:cb:f0:7d:
47:d5:bb:53:a3:78:41:d8:49:55:3f:1c:97:20:ae:64:cf:7e:
1e:dd:6e:1b:9b:9b:b8:6a:9c:ce:bd:07:ea:0c:27:1c:08:f3:
39:c8:c2:c5:fc:b6:8d:0d:09:43:f0:75:30:5f:17:9f:39:10:
45:48:95:51:60:04:f2:83:9f:b9:36:34:e3:4a:52:6d:bd:d3:
3c:9b:e1:dd:2d:07:2f:be:fa:69:0d:a2:a6:62:a5:d9:6c:ec:
68:5d:43:18:4d:a7:a2:c0:37:8a:5f:52:04:59:6e:97:08:17:
77:4f:0e:af:7f:93:2d:27:c5:cd:02:6f:cf:34:05:9c:1b:cd:
45:d0:00:7b:b2:d7:3f:09:12:4e:a4:2c:4b:87:0d:97:2d:f0:
99:fb:b2:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org