Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/f9gYyIDmsGjvLtyQPUmyfnv1z5w.roa
File: f9gYyIDmsGjvLtyQPUmyfnv1z5w.roa (raw, json)
Hash identifier: mhsQ2IcbmxyK1WlO+R/rCieeX22mnwMcdtExBVm5nfk=
Subject key identifier: 7F:D8:18:C8:80:E6:B0:68:EF:2E:DC:90:3D:49:B2:7E:7B:F5:CF:9C
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/f9gYyIDmsGjvLtyQPUmyfnv1z5w.roa
Signing time: Thu 15 Sep 2022 02:36:28 +0000
ROA not before: Thu 15 Sep 2022 02:36:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24165
IP address blocks: 115.165.232.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:28 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7FD818C880E6B068EF2EDC903D49B27E7BF5CF9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d7:bd:b2:4c:35:61:3f:41:24:ae:6a:2d:76:
5a:82:db:a0:f1:3f:d7:5e:2d:df:b1:1e:b7:8b:28:
32:88:7c:5d:12:95:0c:ed:10:c0:b2:05:2c:04:7c:
30:25:d1:77:7b:6b:7f:27:de:a3:5c:e3:79:2d:94:
20:d8:e5:69:ea:04:55:3d:b6:51:ae:a0:18:66:5b:
08:94:c1:de:44:5d:97:fb:f4:81:32:a8:ef:f3:de:
02:cc:a3:4c:47:f6:c2:cc:50:29:dc:05:22:8c:0d:
6c:62:4d:3d:e3:33:90:c8:a1:2d:88:f7:aa:2d:3a:
28:35:07:64:86:95:e6:fd:b6:8d:12:ec:d8:db:b7:
98:85:e5:1e:2c:22:d3:bf:76:ff:3e:f4:7f:ee:c7:
a3:53:14:0d:a4:6a:f9:11:33:e7:8b:76:ca:68:c8:
f6:18:ae:af:b2:1d:01:64:90:ee:d5:fa:39:bf:98:
e6:50:b8:8b:28:11:01:f7:c8:bb:df:7a:c1:84:60:
df:6e:fd:e3:57:e7:c3:63:3e:6c:b8:37:e5:ee:ed:
02:2a:0b:05:47:a8:8f:d5:84:ff:3f:9c:28:1e:8d:
72:5b:d0:0b:05:8a:1e:d8:7f:db:62:87:28:e1:e9:
bd:7e:e1:03:6f:66:45:d8:42:f5:83:34:6b:1c:00:
f5:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:D8:18:C8:80:E6:B0:68:EF:2E:DC:90:3D:49:B2:7E:7B:F5:CF:9C
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/f9gYyIDmsGjvLtyQPUmyfnv1z5w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.165.232.0/22
Signature Algorithm: sha256WithRSAEncryption
74:19:fe:c5:df:e6:97:be:e4:51:fe:e1:3f:b5:83:e6:44:d1:
df:9f:34:e1:c1:24:47:f0:29:73:1f:5d:68:d0:e1:20:a7:88:
5a:91:49:c7:c7:35:2d:90:a9:21:5d:b5:1b:aa:25:8f:9c:77:
d2:b6:ad:0c:f0:f0:61:cd:f9:7b:e7:03:ff:a6:41:ec:f4:c2:
01:c6:68:e3:89:95:6b:09:92:e6:4c:eb:3e:1b:06:d9:fa:e1:
11:5d:93:72:95:24:69:f9:a3:43:c4:a4:d0:ef:0f:54:52:b0:
f6:9c:06:34:63:3b:b9:a3:32:d9:62:9b:39:06:11:46:48:2a:
1e:0f:e8:9e:2e:ef:11:6e:2e:b9:6e:63:cf:ed:c2:ce:9e:41:
9c:63:47:47:45:31:61:04:53:ce:47:4b:e9:92:ac:99:ee:42:
c8:83:bb:ef:b0:3f:25:a3:fa:ec:ad:3b:1c:af:c7:4c:2b:43:
4d:9f:65:79:ec:bb:8c:5f:c4:42:68:23:8e:ec:b0:f9:06:5b:
38:e4:50:6f:dd:14:7a:7c:4b:3c:a9:0e:56:02:ec:97:ae:55:
67:e1:22:df:54:6f:1b:6c:41:8d:fe:19:c0:86:bf:25:1d:05:
5f:04:e6:18:87:ae:b1:18:a7:d0:c8:c1:a6:78:c9:9c:9e:4e:
71:41:82:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org