Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Vbx6ScQS3rh1d-Y15CE7kLuBIQU.roa
File: Vbx6ScQS3rh1d-Y15CE7kLuBIQU.roa (raw, json)
Hash identifier: j1aOvJAIn5TlxlNcaEZuzvSD1bbqG1Im5Kur/O4vh2E=
Subject key identifier: 55:BC:7A:49:C4:12:DE:B8:75:77:E6:35:E4:21:3B:90:BB:81:21:05
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 153B
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Vbx6ScQS3rh1d-Y15CE7kLuBIQU.roa
Signing time: Fri 21 Oct 2022 08:46:11 +0000
ROA not before: Fri 21 Oct 2022 08:46:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 211.76.52.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5435 (0x153b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 21 08:46:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=55BC7A49C412DEB87577E635E4213B90BB812105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:26:e9:a4:3c:d3:cc:37:df:aa:c5:0f:71:71:
6b:8c:8f:ec:6a:cd:72:ed:b7:68:70:ba:2b:5e:12:
f5:ca:a4:46:0d:76:69:5e:dd:1f:7f:18:07:bf:61:
71:7e:e3:40:71:a6:8b:59:1a:62:29:99:81:1e:2e:
c7:96:c5:29:e1:2c:43:bd:06:b9:48:cd:e3:f9:80:
91:55:07:b0:5a:ba:17:83:51:fd:ff:1c:b6:32:28:
7b:7b:3e:83:28:40:a7:c8:24:08:08:4d:ee:d9:d4:
b5:2e:72:6f:41:dc:99:cf:5b:29:eb:ab:32:45:c7:
b4:c3:6d:8b:b8:c4:f6:ca:c7:8b:02:2d:d8:5f:9b:
da:b4:cf:58:8d:dd:56:53:c3:59:79:96:36:d6:30:
7e:f7:cf:00:f9:33:b7:1c:8b:a1:15:36:97:a8:58:
59:bc:ee:9b:ea:51:0f:30:cb:b2:5f:3c:80:2a:ef:
78:d1:da:bd:0e:3e:1c:f2:1f:be:5f:a6:92:96:3e:
33:27:85:b2:b3:a9:62:83:02:bf:cc:24:c8:7a:e1:
d1:dc:cc:15:aa:95:43:cb:8a:13:aa:ed:c1:08:27:
c4:e9:fd:51:7d:29:c2:f6:88:87:db:a0:98:62:c4:
11:d8:10:a9:d6:b9:48:38:9d:99:b6:98:eb:4f:cf:
7b:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:BC:7A:49:C4:12:DE:B8:75:77:E6:35:E4:21:3B:90:BB:81:21:05
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Vbx6ScQS3rh1d-Y15CE7kLuBIQU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.52.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:08:56:7d:07:a2:0c:72:2e:d7:13:16:6a:25:ec:85:b2:0a:
3f:77:7f:11:83:92:c8:06:b6:94:db:89:47:fb:15:73:01:be:
69:59:90:31:6c:36:5e:74:cc:a9:05:94:b0:69:fc:e1:c0:b3:
6a:5a:34:b5:73:cb:d5:c1:b0:75:63:7a:70:a9:94:f2:7a:cf:
09:88:7a:43:e0:1f:67:4b:08:0d:70:58:48:18:16:85:e1:5a:
13:c9:3a:e5:90:fe:9e:32:75:0c:d9:b8:ea:17:ff:5c:02:18:
4b:d3:b8:b4:f9:da:4d:96:58:37:f9:5b:cd:8d:33:80:12:cb:
b6:e7:86:c2:86:d2:cf:46:a7:a3:d4:8d:e3:1c:5b:e5:5f:c1:
34:ab:05:e8:f4:62:8c:84:99:89:bd:06:da:9e:9c:13:36:36:
7a:f1:78:44:06:77:27:28:d9:db:82:33:f7:67:12:36:4f:d0:
37:f2:f3:74:ce:fc:54:6b:1c:ed:13:13:ac:f9:a2:23:94:3f:
cb:8a:26:4d:fb:c7:8b:14:ce:3c:42:af:92:3c:62:b8:b5:0f:
54:14:a9:86:3a:3e:40:97:52:b4:e0:8b:f8:ea:6e:7d:44:56:
31:24:ca:ae:24:ab:9d:cb:02:31:6d:ee:75:f1:bb:cc:f6:54:
99:9d:d3:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org