Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/POaOnlHqpMvWhUvgDzbW5eJvcYY.roa
File: POaOnlHqpMvWhUvgDzbW5eJvcYY.roa (raw, json)
Hash identifier: drLAAqP1b6cWtFJRYTqhAVIDwHIaMpAXwFn9/aDX4Uc=
Subject key identifier: 3C:E6:8E:9E:51:EA:A4:CB:D6:85:4B:E0:0F:36:D6:E5:E2:6F:71:86
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 133D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/POaOnlHqpMvWhUvgDzbW5eJvcYY.roa
Signing time: Wed 29 Sep 2021 02:55:31 +0000
ROA not before: Wed 29 Sep 2021 02:55:31 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4662
IP address blocks: 211.76.64.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4925 (0x133d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:31 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3CE68E9E51EAA4CBD6854BE00F36D6E5E26F7186
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f1:dc:f4:a2:8d:30:0c:d1:01:17:5b:cc:f1:
1d:4c:70:84:c9:f0:d0:56:98:25:61:0d:3e:f5:45:
2e:10:77:e4:db:3c:e3:08:b7:b9:fd:27:21:39:02:
4d:b1:d5:4f:be:30:5d:b9:5e:d2:f1:02:18:a5:48:
88:55:18:90:03:76:ae:04:38:81:be:00:ca:33:a2:
38:79:eb:27:bb:64:26:b0:4a:ff:db:87:c4:1f:c3:
23:d0:4c:78:fd:31:c5:12:75:8f:a3:42:42:eb:05:
de:55:10:2f:3a:12:b7:06:32:8c:8c:7c:9a:2e:ec:
97:c1:8a:3d:29:58:e7:0a:19:d1:a7:31:0a:f9:e2:
b0:c8:c6:ec:37:a0:40:d7:92:a8:ce:2e:a3:15:96:
2d:97:28:27:01:85:67:1e:e4:31:3b:44:e7:b2:5d:
3f:fc:57:0f:d6:5f:01:b7:2d:df:73:c8:c3:39:5c:
03:f8:d0:f9:2d:46:27:98:18:8a:82:bb:01:49:8e:
08:27:76:90:fd:93:78:88:fb:94:df:b3:cf:82:73:
0a:8c:92:85:94:d4:12:c4:8a:d8:04:e5:71:22:e4:
ae:46:e3:53:d7:0d:68:93:48:c1:7f:d6:38:22:0e:
82:43:c4:d0:02:88:7d:25:a1:50:8d:4e:c4:50:27:
3f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:E6:8E:9E:51:EA:A4:CB:D6:85:4B:E0:0F:36:D6:E5:E2:6F:71:86
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/POaOnlHqpMvWhUvgDzbW5eJvcYY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.64.0/20
Signature Algorithm: sha256WithRSAEncryption
5a:2a:26:ce:94:7d:12:b0:43:47:55:10:0b:9d:44:64:b2:a4:
0f:27:df:db:13:fe:1e:78:6b:2b:a6:25:aa:53:3f:21:35:29:
6b:bf:96:3c:96:4e:77:d2:85:fa:f4:99:ae:d3:4e:44:1a:46:
93:f7:6c:fa:3c:9b:c7:3e:2c:05:77:bb:b6:e5:92:c8:b9:aa:
9a:20:bc:87:3a:63:45:0f:fe:dd:39:98:80:dd:7a:95:dc:f6:
a1:57:e0:43:bb:e0:34:dc:a1:73:61:f1:61:d8:54:8a:a4:c7:
11:d5:1d:41:df:a0:65:12:ba:a4:dd:51:bc:f7:fc:f8:f8:98:
be:c9:39:b6:ab:45:18:19:74:90:1f:62:78:c8:73:f0:36:aa:
b1:1a:87:ac:f6:79:6c:6e:f9:69:da:de:2c:23:08:16:5f:1a:
57:4b:22:90:c3:de:11:6c:c0:7e:32:fb:5c:2d:f7:d6:a4:06:
26:78:8d:c7:15:be:ca:05:2b:4d:be:f8:fb:4a:a6:9f:08:ca:
1e:ef:3b:b8:24:3f:7f:be:40:46:be:1e:ae:0c:bc:2e:91:2b:
c1:8e:09:67:ce:b5:f2:1f:91:70:3c:06:eb:86:c2:b3:49:14:
75:ae:27:4f:c4:6d:e1:e1:3f:89:6f:53:6a:1a:61:23:4b:22:
91:3f:17:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:47 2024 by rpki-client on console-ams.rpki-client.org