Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Z7FS4s07Z5bxnhlkCfQPu0pBSjU.roa
File: Z7FS4s07Z5bxnhlkCfQPu0pBSjU.roa (raw, json)
Hash identifier: UAFOdNOKvttDlnItJ75Lz3QHlW/H3cAs2wt9fKfk5do=
Subject key identifier: 67:B1:52:E2:CD:3B:67:96:F1:9E:19:64:09:F4:0F:BB:4A:41:4A:35
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1B26
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Z7FS4s07Z5bxnhlkCfQPu0pBSjU.roa
Signing time: Thu 02 Feb 2023 07:14:16 +0000
ROA not before: Thu 02 Feb 2023 07:14:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 122.100.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6950 (0x1b26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 2 07:14:16 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=67B152E2CD3B6796F19E196409F40FBB4A414A35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6d:5e:80:97:fe:4c:3d:a6:cd:81:eb:fc:c5:
88:84:ee:5d:43:5e:25:05:e1:ec:3b:60:c8:44:62:
66:4d:10:66:a1:f3:aa:14:e8:41:68:17:e0:d4:8c:
75:a9:57:98:30:c2:0d:78:82:5a:3f:c2:67:a6:8d:
37:47:ee:08:61:9c:c1:c7:96:ab:3a:82:fe:cf:e7:
ed:2f:7f:ff:a3:ff:0a:bc:bf:04:52:a0:00:5f:b8:
c3:fe:bd:e7:f7:e6:d1:96:fd:43:6a:5f:50:2e:9e:
1a:ec:33:d9:5c:25:f1:cd:8b:39:d3:69:a6:d6:10:
23:c5:d0:aa:ef:13:d4:ca:94:3b:a1:53:8b:6a:1b:
27:45:3f:32:e4:c4:b7:16:e6:32:db:e1:a6:bc:a7:
ef:47:75:f1:86:ad:0d:57:3c:fe:19:7f:f9:d1:ad:
36:81:54:6a:af:56:0e:bf:a2:ae:71:11:1d:61:2f:
a3:19:ff:19:ab:f7:17:f2:a4:46:60:d1:56:a9:f7:
82:68:36:db:a8:d6:9f:07:52:7d:08:d9:a4:8c:03:
46:be:2b:96:2d:c7:15:fc:45:82:64:70:31:76:3d:
b0:89:47:6a:ec:a7:e3:14:97:a3:3c:9f:22:d0:5a:
0d:28:30:cb:53:04:ae:55:5e:27:f2:47:b4:e3:4f:
02:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:B1:52:E2:CD:3B:67:96:F1:9E:19:64:09:F4:0F:BB:4A:41:4A:35
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Z7FS4s07Z5bxnhlkCfQPu0pBSjU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.100.64.0/18
Signature Algorithm: sha256WithRSAEncryption
7b:96:5a:6e:3b:dd:fe:8f:46:52:dc:7f:38:4f:b1:1f:ab:b6:
f6:37:8d:c6:a8:40:8d:36:88:05:31:94:bf:f4:1b:28:ec:07:
4e:73:b5:cc:fe:57:5b:8b:7e:3c:de:22:6f:e0:6a:6c:c4:49:
17:cd:04:ec:99:5e:80:0e:d5:d2:20:bd:d1:03:6e:e2:5e:27:
bc:15:9f:36:53:41:19:03:01:f0:2f:07:d2:2b:3c:f3:4a:21:
1f:45:58:34:f2:08:ea:15:10:c2:5f:19:20:b9:84:08:b6:e6:
d4:3d:5c:b0:0a:3a:87:e1:0e:57:98:42:22:cf:37:97:fc:b7:
06:1e:8e:60:5e:a6:3c:a5:2e:6f:e2:fb:63:9c:63:60:c6:a4:
bd:34:99:96:1b:2d:e9:e7:e0:92:ee:81:81:cd:94:78:9c:c4:
f0:65:ab:e1:b0:f1:0d:fd:d2:47:a0:1e:07:e8:b6:db:aa:11:
0d:25:0a:6c:3a:a4:7b:30:6a:07:9e:2e:68:6b:a6:4b:90:68:
6e:73:0f:48:3f:1e:6b:5f:1a:f4:17:db:fa:6e:6a:9b:e0:f9:
12:be:5e:26:7f:b4:a3:4a:ee:34:5b:d4:c2:17:34:bb:78:9d:
97:2c:30:61:7d:37:8f:6a:2e:c1:9f:0f:66:f3:f4:4f:9f:06:
5b:e6:bd:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:48 2024 by rpki-client on console-ams.rpki-client.org