Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PqbhtGQ7lK-jaZ3OPz9F5upd2Mw.roa
File: PqbhtGQ7lK-jaZ3OPz9F5upd2Mw.roa (raw, json)
Hash identifier: VKHEAwI8VOcTBLXRqHGdbASNHTbIRNqXBhpk8VIbkuM=
Subject key identifier: 3E:A6:E1:B4:64:3B:94:AF:A3:69:9D:CE:3F:3F:45:E6:EA:5D:D8:CC
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 10C5
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PqbhtGQ7lK-jaZ3OPz9F5upd2Mw.roa
Signing time: Sun 07 Feb 2021 12:48:46 +0000
ROA not before: Sun 07 Feb 2021 12:48:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 103.225.0.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4293 (0x10c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:48:46 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3EA6E1B4643B94AFA3699DCE3F3F45E6EA5DD8CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:70:9e:67:d2:82:ae:41:ef:ee:00:b8:05:74:
7f:87:42:d3:97:19:46:ac:d5:79:b8:cd:3e:e4:84:
c0:3a:07:4b:24:61:b1:53:7f:f9:5d:da:a6:64:9c:
7e:95:30:87:6e:65:31:0c:b7:6f:4e:c1:19:f7:7e:
32:91:da:0e:f4:db:3c:d6:86:2d:cd:1b:ca:05:c4:
c8:c1:a4:43:8c:d6:e3:63:d5:50:e3:3b:e1:cc:3b:
3d:ac:e5:60:b3:4d:e4:ec:d6:62:96:e2:e8:c1:ef:
50:f6:33:a1:04:bc:ad:e9:99:47:80:a5:41:bb:80:
03:36:90:10:ad:a0:dc:a7:a7:4e:42:5d:f3:6d:a7:
d0:a7:c4:82:f9:84:6d:cb:df:0e:8c:a4:6b:37:3f:
96:63:ec:21:94:35:6d:96:8e:b8:29:3b:65:ac:eb:
40:10:3d:4f:43:9a:24:8e:f3:d5:4a:7c:b1:4c:85:
52:96:4d:b3:42:85:cf:76:b1:24:a6:d4:50:60:0e:
82:bc:0e:bc:1a:b9:60:dd:2b:32:70:db:ba:9d:d8:
9a:b9:f1:86:49:c3:d8:60:1e:cc:56:ec:3c:51:ad:
04:25:f1:c9:b0:9c:29:8c:19:6b:57:43:37:1e:6e:
46:38:78:25:6b:d2:cf:aa:2d:fa:45:a7:5f:0e:03:
ef:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:A6:E1:B4:64:3B:94:AF:A3:69:9D:CE:3F:3F:45:E6:EA:5D:D8:CC
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PqbhtGQ7lK-jaZ3OPz9F5upd2Mw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.225.0.0/22
Signature Algorithm: sha256WithRSAEncryption
72:04:00:17:10:7b:ad:99:f6:6c:9e:b8:e8:f4:08:33:ee:46:
38:24:ab:e6:dc:3f:19:ab:da:02:1b:8a:2c:bf:3c:81:26:47:
c8:ad:a6:2d:4d:8e:fe:77:d9:c3:8b:c5:61:00:98:bb:ab:c0:
34:7f:7f:4e:47:bc:df:6f:f8:5c:b0:7d:75:e9:3e:70:74:77:
ff:38:3f:b6:a0:b3:57:fa:1d:9c:82:67:18:82:9c:63:ce:d2:
59:c2:f6:6d:22:74:a6:53:3e:e8:27:0f:8c:f7:39:e1:44:09:
4d:b0:60:ab:2c:37:52:9e:9f:7c:9e:23:e7:82:57:0a:ca:4f:
7f:34:65:76:6e:15:74:e4:f1:89:7d:72:3e:68:76:96:a9:0b:
9a:a9:71:a8:a5:24:46:c1:3e:d8:ed:ce:1f:42:8e:48:24:63:
88:3f:10:f0:8d:67:64:19:ef:54:84:e0:26:d9:75:e3:a8:9e:
18:24:f7:33:fc:3d:fd:6b:f1:08:ca:14:07:33:9c:53:59:59:
02:ed:8a:06:9a:c1:bd:98:90:a3:d0:53:f5:d9:2d:ea:4e:dc:
fa:d6:8b:20:7c:78:cc:7c:13:a2:91:79:cc:5a:66:cf:c3:4a:
58:62:8a:6b:23:1c:92:cd:8e:81:0a:3a:f2:1a:f7:74:3d:17:
9c:fc:e6:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:36 2023 by rpki-client on console-ams.rpki-client.org