Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/aZ4ZSU8M7wSF23bgyMoXMjPWYM0.roa
File: aZ4ZSU8M7wSF23bgyMoXMjPWYM0.roa (raw, json)
Hash identifier: OEK+HD/cRvWmuDaNcuGXQsgWHGtfj2qfzlZ97ZUT9+I=
Subject key identifier: 69:9E:19:49:4F:0C:EF:04:85:DB:76:E0:C8:CA:17:32:33:D6:60:CD
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/aZ4ZSU8M7wSF23bgyMoXMjPWYM0.roa
Signing time: Thu 15 Sep 2022 02:36:18 +0000
ROA not before: Thu 15 Sep 2022 02:36:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 211.76.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:18 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=699E19494F0CEF0485DB76E0C8CA173233D660CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:4a:e6:32:3d:75:62:54:61:28:0a:12:f7:79:
4a:e3:b2:3f:90:57:94:53:be:6c:26:d0:31:02:c8:
c2:a2:ec:2f:1b:c2:b7:c0:c2:cb:aa:9a:dd:2d:55:
06:08:ab:52:3b:9f:37:a8:3a:8a:39:07:1c:44:d7:
39:8c:22:14:a2:4d:56:09:bf:91:ba:f2:7e:b8:8d:
44:4e:a1:d2:3f:f0:e3:cc:a7:f9:83:2e:0d:58:80:
8e:89:e6:82:52:df:00:7e:eb:1f:8c:eb:91:63:1d:
d4:4b:6a:42:cd:28:8a:b8:58:8d:31:67:f8:24:35:
0a:e4:73:8b:4a:e5:58:7f:c9:b2:77:66:6d:bb:f2:
54:27:f6:1c:47:35:c4:1d:7b:60:d7:48:42:3f:08:
31:2e:b6:76:3f:7c:22:bc:80:5a:c0:7c:94:5e:fc:
da:14:86:fb:e6:42:b3:83:96:31:d1:10:3f:3f:dc:
88:e9:ae:69:db:d0:86:06:06:b6:10:86:08:ab:6d:
24:26:15:3d:74:1e:2d:d2:65:03:ce:1e:20:db:41:
37:17:5a:b9:09:53:e5:b0:e7:be:98:83:ed:80:e3:
6f:dd:17:18:85:96:72:07:a2:2d:e1:bc:2f:95:8f:
e7:64:fc:41:2d:ad:a8:b7:ae:d7:2a:51:53:c2:3a:
73:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:9E:19:49:4F:0C:EF:04:85:DB:76:E0:C8:CA:17:32:33:D6:60:CD
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/aZ4ZSU8M7wSF23bgyMoXMjPWYM0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.45.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:64:93:1e:03:2b:34:dc:3c:a0:d7:62:42:50:1e:a4:1e:bc:
15:81:40:03:f5:77:7f:42:13:d4:f3:be:4e:eb:3f:f7:97:a6:
4b:a9:5d:4b:da:a1:c1:ea:e7:b1:0c:40:5c:4c:87:8e:38:d3:
c1:cf:1f:21:f8:4d:8a:16:c6:08:ea:54:70:d5:5c:8a:bd:11:
70:34:e6:c5:38:2a:cd:c5:25:55:88:c4:65:8e:cf:51:46:76:
ae:f8:62:1a:3e:d1:14:4d:43:29:76:92:3d:b5:75:09:e2:6d:
54:4c:2b:44:33:d4:d2:03:7c:00:3b:f4:60:2a:82:11:0d:a8:
68:ae:cd:28:48:46:95:f1:06:fb:26:72:46:ff:64:a5:de:26:
8b:36:59:56:13:a1:bb:b6:d8:5f:eb:99:1d:05:77:d1:cd:5e:
77:f2:51:b5:ac:93:18:55:c8:53:b7:70:6e:ba:f3:c0:e0:21:
49:6b:d0:ef:f7:61:22:a9:d7:d4:dc:ad:4f:f8:43:ff:51:8c:
dc:d5:5e:dd:b4:e4:31:81:8f:bc:ad:2c:bf:27:4b:04:e0:57:
84:d0:16:d5:b5:0f:f8:f1:b9:1a:a4:fe:61:eb:bd:a1:09:e1:
d9:95:69:95:a9:d3:2e:37:21:44:7a:44:9c:2f:d1:a5:df:82:
1a:d6:8e:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:48 2024 by rpki-client on console-ams.rpki-client.org