Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/SIsgxF7V6tYD7dv9OiSMbJYznDQ.roa
File: SIsgxF7V6tYD7dv9OiSMbJYznDQ.roa (raw, json)
Hash identifier: 7dTdQJZVG4Lv9v8OhXEiDU+uuJY1kqr8YaRF0fJ1+zI=
Subject key identifier: 48:8B:20:C4:5E:D5:EA:D6:03:ED:DB:FD:3A:24:8C:6C:96:33:9C:34
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 123E
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/SIsgxF7V6tYD7dv9OiSMbJYznDQ.roa
Signing time: Wed 29 Sep 2021 02:54:22 +0000
ROA not before: Wed 29 Sep 2021 02:54:22 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 114.198.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4670 (0x123e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:22 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=488B20C45ED5EAD603EDDBFD3A248C6C96339C34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a2:a2:bb:af:83:aa:38:ad:52:59:6e:2a:24:
17:4e:c1:ac:e5:34:24:8b:59:69:b3:25:ac:fa:0b:
e9:dc:2b:53:ba:34:e1:1d:d3:7b:6b:20:c3:96:d1:
54:2a:ec:4f:cf:23:ea:a0:10:5a:18:97:65:64:30:
d5:48:55:28:73:ed:0c:bd:0e:d8:89:57:b9:63:59:
28:ac:c3:cd:14:2a:e8:76:2f:c3:7b:61:e3:55:ae:
77:d6:eb:b3:02:e5:b8:17:21:ed:fc:c8:23:c1:73:
85:38:0f:19:47:1f:f1:e4:c8:7b:62:4f:0e:bb:8e:
d2:58:08:db:42:cc:8c:f1:06:00:6d:70:fa:f2:97:
a3:ab:e6:42:97:3a:a6:ac:b3:4c:bf:b1:a2:ee:59:
cc:80:0c:45:28:72:f3:2b:a4:f7:f6:e8:0a:95:70:
87:92:0b:9e:f6:12:8d:65:1c:0b:a6:98:d3:4d:fa:
24:bf:35:4b:ed:14:ba:73:bb:19:6b:96:74:9b:3a:
f0:65:d2:1d:7e:8f:8a:34:da:b2:b3:06:40:2d:59:
e2:32:09:63:e0:d4:d8:0c:58:eb:b2:7a:57:b5:9d:
01:73:13:0e:e0:79:f6:f0:d3:d3:bc:16:19:6a:0a:
47:db:34:c5:18:29:6a:40:25:57:fc:ed:19:8d:ef:
ba:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:8B:20:C4:5E:D5:EA:D6:03:ED:DB:FD:3A:24:8C:6C:96:33:9C:34
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/SIsgxF7V6tYD7dv9OiSMbJYznDQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.163.0/24
Signature Algorithm: sha256WithRSAEncryption
77:fe:ce:16:16:60:c1:bb:25:d3:2c:e9:5a:12:57:39:f7:85:
0f:98:a1:3c:48:5e:41:45:8b:3f:ff:08:f0:b4:d3:10:ec:ab:
f6:3c:a3:80:a2:6c:e2:aa:b3:8d:d0:9d:39:5d:ac:76:4c:59:
ff:58:af:c9:17:fe:35:4e:01:ce:e6:d2:ee:80:10:5c:c0:1e:
8c:1f:0a:64:eb:cc:d7:81:21:36:81:fb:53:33:2f:27:0e:da:
a8:38:17:ae:de:4c:ed:b1:60:31:16:8e:d0:9f:90:b5:da:a9:
33:89:ef:e6:71:04:f4:00:b4:3b:49:d0:00:20:3f:d5:1f:0e:
52:e6:d9:e4:c4:cb:4d:a2:72:4e:75:3a:31:bb:63:58:b9:40:
12:01:c5:0b:43:81:46:fb:df:9e:be:c6:89:d9:b0:9d:88:4a:
2d:49:a7:93:df:ae:65:28:dc:7f:1a:69:73:7e:b6:e1:8c:97:
bd:60:30:69:6f:d7:5e:41:0f:25:ef:82:0c:1c:81:64:1b:47:
2c:03:f6:82:ed:9e:98:73:b6:89:c4:ca:28:b3:ef:33:33:f9:
09:53:1d:9d:47:31:c1:12:01:d5:59:60:7b:8c:79:f6:4c:fa:
c6:61:5b:a8:ff:eb:0c:39:18:38:80:9d:9e:19:54:95:77:c9:
bb:25:c7:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org