Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/WMT100clGFsuguiAM-jWwhda3Os.roa
File: WMT100clGFsuguiAM-jWwhda3Os.roa (raw, json)
Hash identifier: ilDDlt8d/YkYuam8v87Cr4//SIqGeFxg5UKl9oTaDB8=
Subject key identifier: 58:C4:F5:D3:47:25:18:5B:2E:82:E8:80:33:E8:D6:C2:17:5A:DC:EB
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 123C
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/WMT100clGFsuguiAM-jWwhda3Os.roa
Signing time: Wed 29 Sep 2021 02:54:21 +0000
ROA not before: Wed 29 Sep 2021 02:54:21 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 114.198.160.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4668 (0x123c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:21 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=58C4F5D34725185B2E82E88033E8D6C2175ADCEB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:06:81:23:f2:bd:a7:cf:1f:e8:db:fb:e3:89:
4b:14:a2:99:e6:60:b8:18:39:22:d0:4f:e8:63:f1:
49:f3:fa:f7:96:c6:c0:d4:29:51:a3:51:1e:e0:e1:
f1:0e:3a:cb:25:7f:63:a7:e5:cb:c0:12:79:3c:7c:
87:94:33:cb:14:93:72:de:b4:5b:32:76:12:b1:b6:
d5:7c:d7:7f:1b:2a:ae:ba:74:b7:32:9e:cb:d8:d1:
28:dc:cf:ba:06:bc:9a:71:7b:5c:a6:dc:3c:67:3f:
8e:a3:f1:51:12:b8:de:fe:9f:ba:9e:37:3b:d7:23:
18:a2:6b:a6:21:af:d3:9a:87:d4:1a:e6:44:a6:ac:
d3:ca:d7:a3:98:06:21:4f:7b:a5:7c:27:da:9a:d2:
f3:0c:34:d1:da:43:d6:9b:25:b8:d0:41:52:ea:6a:
01:5a:54:a9:c0:21:3a:22:8b:97:8d:02:3e:c2:6e:
42:21:b7:31:2c:b8:7c:88:2d:31:85:b5:7b:1a:4f:
bb:36:2f:e9:80:83:df:1d:46:68:8c:1b:29:5e:a7:
31:93:27:22:34:da:3a:9d:b8:8f:46:08:00:13:79:
c0:93:c2:69:cb:ec:5b:b1:a0:99:7c:5f:92:db:dc:
c1:4f:fe:8d:73:d9:2c:40:f5:b2:bd:7d:f6:d1:c9:
91:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:C4:F5:D3:47:25:18:5B:2E:82:E8:80:33:E8:D6:C2:17:5A:DC:EB
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/WMT100clGFsuguiAM-jWwhda3Os.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.160.0/23
Signature Algorithm: sha256WithRSAEncryption
89:1e:4c:d7:45:92:0d:87:03:26:f5:af:0e:74:bc:79:84:99:
b6:6a:2a:dd:3b:ab:22:eb:54:1a:6a:fb:5e:37:8d:14:7b:16:
04:59:53:f0:45:3d:a1:f1:d7:01:56:bf:1d:b5:be:eb:75:6e:
22:18:a6:0e:86:c2:b3:14:35:0b:b4:af:4e:3d:10:9b:d0:e4:
85:02:02:e3:3e:b7:f6:74:e9:9b:b1:c9:27:80:b4:9a:6a:f3:
b1:56:d1:09:03:e4:de:e8:0f:62:4f:65:0c:cf:0d:c5:46:29:
08:c8:8d:56:9d:ce:41:aa:be:96:cf:24:6b:6d:58:1b:03:22:
09:dc:e6:53:c0:71:73:23:f1:78:ab:70:d6:a8:a0:4b:4b:37:
f5:76:fe:d4:7e:b7:2a:ea:44:f0:95:65:60:a0:63:f7:cf:cd:
ed:b1:26:d1:8b:f4:31:82:92:f0:a9:47:86:8d:c5:3c:57:7f:
21:9c:05:50:70:63:20:86:df:e3:c6:79:cd:79:b4:dc:ec:5d:
4b:55:e2:69:fc:f6:03:ca:99:b9:e7:f0:08:82:96:ed:40:d9:
c0:9d:34:bc:f6:de:16:cc:eb:79:b6:e0:3a:4a:03:89:96:5a:
56:cd:b6:f7:57:39:63:fa:26:c3:f2:bc:b8:09:48:8d:ab:93:
bd:b5:25:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:49 2023 by rpki-client on console-fra.rpki-client.org