Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HFCGy1td0whtJPZbasPpKwYw71U.roa
File: HFCGy1td0whtJPZbasPpKwYw71U.roa (raw, json)
Hash identifier: owTcdGL42KxR7rAKEEBFUiilNsaVJD6CK0h3FG5DDik=
Subject key identifier: 1C:50:86:CB:5B:5D:D3:08:6D:24:F6:5B:6A:C3:E9:2B:06:30:EF:55
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 108F
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HFCGy1td0whtJPZbasPpKwYw71U.roa
Signing time: Sun 07 Feb 2021 12:46:12 +0000
ROA not before: Sun 07 Feb 2021 12:46:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 211.76.46.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4239 (0x108f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:46:12 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1C5086CB5B5DD3086D24F65B6AC3E92B0630EF55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:90:5f:41:c1:d9:33:a9:0a:84:97:21:32:41:
b2:5c:22:dc:05:9b:2c:31:3b:15:f8:de:c1:3b:1c:
e6:a5:f4:3a:57:80:bf:4d:7b:f1:0f:03:ee:40:24:
4c:e6:4b:21:c5:38:ef:41:6c:53:9e:e0:ee:49:df:
b8:93:b0:c0:60:7d:28:02:6a:f8:06:4d:36:e1:a6:
86:80:db:5d:01:12:57:76:75:72:34:11:3e:e1:62:
23:09:3e:90:d8:b0:5a:17:0f:17:1b:64:d0:0b:53:
eb:67:5f:fa:29:6f:ee:88:08:91:59:40:26:73:46:
be:a2:8b:e9:5d:57:5a:0f:0b:85:34:9c:ae:33:e1:
85:b3:53:64:3e:b6:7b:82:d5:bc:14:0c:93:b1:ff:
6d:d9:9e:4d:eb:70:9b:f3:ba:a9:97:2d:44:40:9f:
8b:e8:4f:b1:e6:02:7d:d6:fe:ca:74:2d:f2:74:d2:
7a:5b:dc:0b:6a:1e:b3:97:6a:3c:72:f3:60:bc:f1:
8d:88:f0:d0:0b:4c:c8:ac:c3:7f:54:1c:4d:53:ce:
40:18:8d:74:82:25:7d:00:41:3f:d2:8c:cb:13:6f:
9b:ea:14:c9:5f:1b:3d:33:2c:03:6c:37:9f:85:2d:
df:18:a9:7b:da:3b:ea:a9:53:5e:8d:5c:0f:6c:cf:
a0:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:50:86:CB:5B:5D:D3:08:6D:24:F6:5B:6A:C3:E9:2B:06:30:EF:55
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HFCGy1td0whtJPZbasPpKwYw71U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.46.0/23
Signature Algorithm: sha256WithRSAEncryption
37:5b:cc:5f:ca:7a:cf:73:51:1b:98:0b:fd:53:28:4f:51:3e:
b1:a9:48:2d:3c:97:20:f6:7e:84:48:f4:55:db:f8:a7:45:00:
87:69:ea:2b:32:9a:f1:e0:6f:16:92:9e:f2:9b:40:28:50:d8:
05:e6:c6:da:c5:75:53:ef:c5:d6:ff:6f:e9:be:01:ee:6b:80:
e0:a0:13:15:f9:57:2d:d2:c1:b6:cb:5a:3f:6e:61:f4:c7:f5:
15:01:00:df:46:34:04:69:59:7d:16:7b:73:4a:02:63:2f:81:
5b:09:e7:43:f2:a8:b6:0b:e5:0d:e7:55:fc:95:98:bb:e6:b3:
6c:73:33:6d:f8:67:d2:4b:3f:c9:53:33:65:5b:06:d5:5b:87:
c2:70:a0:4d:09:6b:f7:66:11:d7:12:d8:fd:25:49:6c:96:47:
56:fd:4d:01:de:12:3d:df:cc:cc:54:1b:cb:d9:db:7c:1d:92:
59:72:05:5e:6a:fe:f7:57:95:1a:a4:27:52:19:c4:03:ba:e6:
aa:2d:a6:85:9d:a9:8b:91:3a:69:0d:5d:c1:aa:3d:d0:9a:2b:
ca:00:9c:8b:e0:ec:44:ff:c6:ad:87:a7:ce:9c:d7:1b:e8:b9:
1d:e3:6e:92:8c:63:40:cb:ce:3d:7a:3b:2c:f4:02:6b:41:f6:
43:30:13:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:35 2023 by rpki-client on console-ams.rpki-client.org