Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Jnb9T9mPu6mEZsj1uMHTXGBoAR4.roa
File: Jnb9T9mPu6mEZsj1uMHTXGBoAR4.roa (raw, json)
Hash identifier: SjyXb/3Kw9W/tHR5wUbTwEW7cVcAImcHiRDhVtbn14Y=
Subject key identifier: 26:76:FD:4F:D9:8F:BB:A9:84:66:C8:F5:B8:C1:D3:5C:60:68:01:1E
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1ABC
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Jnb9T9mPu6mEZsj1uMHTXGBoAR4.roa
Signing time: Thu 22 Dec 2022 06:07:29 +0000
ROA not before: Thu 22 Dec 2022 06:07:29 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 114.198.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6844 (0x1abc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Dec 22 06:07:29 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2676FD4FD98FBBA98466C8F5B8C1D35C6068011E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1e:70:4d:07:d9:b3:ad:78:78:21:71:84:80:
f6:80:67:2b:2a:3d:55:04:7c:d4:64:6e:e4:39:33:
f6:77:3f:d5:91:14:01:57:50:ed:45:3e:a4:1a:50:
0a:ce:48:5e:2c:c9:7d:64:15:aa:9a:23:9c:65:80:
b7:18:d6:92:3c:ac:83:54:74:0a:8b:cd:fa:d9:97:
05:10:c8:d4:56:bd:cc:23:54:f6:c3:c3:2f:41:21:
cf:d1:66:57:26:0a:3c:7d:ac:1a:86:bd:3e:c0:57:
fe:3d:e5:63:b8:6b:21:f2:18:f9:18:c9:5f:9c:83:
cf:e9:2d:e2:80:fb:a1:e4:b0:9c:6d:b1:f4:c3:65:
21:48:e5:67:cf:0f:20:39:20:cc:b6:8a:a8:98:48:
d7:d6:62:ba:84:bd:73:eb:d5:2d:c6:fe:dc:be:a2:
f5:1a:14:62:21:8a:2c:00:9a:a1:c2:13:26:45:cc:
e0:34:be:3b:fb:34:75:b9:04:9c:a6:72:93:48:2b:
d0:ef:12:82:9d:6c:bb:34:de:88:04:fd:34:5a:c6:
e4:23:a1:83:0c:2d:6e:62:ae:8d:20:d3:2c:e5:a6:
57:a7:41:5b:64:b0:f9:3b:f5:b1:d5:48:7e:94:17:
b6:37:c8:c6:37:1d:7d:22:65:ea:d6:e7:6b:d0:0a:
be:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:76:FD:4F:D9:8F:BB:A9:84:66:C8:F5:B8:C1:D3:5C:60:68:01:1E
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Jnb9T9mPu6mEZsj1uMHTXGBoAR4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.176.0/20
Signature Algorithm: sha256WithRSAEncryption
93:3e:b3:0d:2f:c5:0e:33:82:f8:44:09:3c:33:a0:76:0f:17:
0b:e9:3b:c9:d1:09:02:91:e6:61:32:4f:af:fd:02:16:d5:95:
f2:32:27:8f:ed:d7:34:cd:ca:91:f9:bb:31:d7:3a:9a:b6:d1:
00:ac:77:bd:a9:33:63:8e:7c:7f:47:04:14:2b:8b:10:3a:dd:
3f:c9:db:ac:05:4c:83:20:95:f0:c1:f8:16:a1:1d:0b:c0:67:
62:ca:93:d2:cc:b0:2a:53:37:4a:a1:46:68:71:51:12:92:da:
48:c1:d7:76:55:1c:c9:69:7b:ec:b0:b8:3f:65:ab:f7:89:07:
e3:22:40:26:1a:9d:40:53:84:e1:a8:7e:80:b2:c3:ca:1d:28:
90:c9:35:7a:14:98:fc:fb:0c:f3:4b:e4:20:66:8d:6b:34:68:
54:4e:e0:f5:e8:7c:92:73:78:b2:96:05:25:bf:a1:40:72:21:
3f:fd:45:72:45:e8:2b:e8:a6:cd:c9:cf:f6:89:a8:97:72:f5:
38:ea:c2:4b:f8:84:44:ad:15:39:43:b9:88:f1:f8:9a:3b:25:
8e:78:fb:4e:b6:3b:3a:3d:75:87:6c:e0:1a:b1:b7:f4:9d:46:
7d:55:4a:c6:c7:53:d5:2f:f2:89:ff:e8:9a:55:be:3d:00:f8:
59:27:b2:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org