Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/h38QZ2iUYllQsYczVknq3nZ51I8.roa
File: h38QZ2iUYllQsYczVknq3nZ51I8.roa (raw, json)
Hash identifier: tlMUNex24Gl7vQ6VQ0gdqkhLRcdtA+/pAy/BP5kapBc=
Subject key identifier: 87:7F:10:67:68:94:62:59:50:B1:87:33:56:49:EA:DE:76:79:D4:8F
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1472
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/h38QZ2iUYllQsYczVknq3nZ51I8.roa
Signing time: Mon 06 Jun 2022 13:58:04 +0000
ROA not before: Mon 06 Jun 2022 13:58:04 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24163
IP address blocks: 2407:4b00::/32 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5234 (0x1472)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Jun 6 13:58:04 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=877F10676894625950B187335649EADE7679D48F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b7:f6:e1:6f:96:7d:a0:9b:46:9f:f3:75:61:
a4:65:83:01:cc:b1:36:37:d3:bd:1d:20:05:9f:35:
d7:b8:65:8e:e8:ea:17:21:1b:fd:dd:6e:29:97:9a:
84:be:99:59:8b:b7:9a:c9:1f:37:9b:4c:74:4d:ef:
be:79:d6:d0:e7:2a:fe:ef:35:9b:df:2a:7d:19:b6:
d3:7f:db:d2:29:55:79:ff:e4:1f:b5:34:ab:1a:86:
42:35:fa:f9:62:d8:cd:5b:36:e4:7b:5c:50:ed:11:
f5:2a:d2:ef:b9:4e:61:97:ae:70:60:72:7a:0e:4e:
bb:d2:1d:e7:43:e3:ff:8f:bd:71:5a:73:a9:7b:f1:
e7:75:50:74:4a:6c:d4:57:bd:e9:2c:47:d7:3c:1a:
eb:b4:1c:3e:68:3a:b2:1b:95:d7:c5:2f:4e:fa:1a:
b7:34:7a:c5:aa:35:aa:98:56:b0:d5:5b:77:45:49:
84:04:87:be:64:57:06:4b:af:86:ce:8f:ad:78:09:
32:00:7d:30:65:5e:dd:e1:d3:c9:e8:17:cc:eb:15:
cc:83:fd:f5:9c:ac:b1:15:a8:79:40:a3:81:c6:51:
16:7d:23:71:76:34:f0:75:4e:3c:51:b1:e3:8c:27:
ef:82:ba:0c:13:8e:e0:4f:a4:f7:4c:2a:d0:c8:df:
1f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:7F:10:67:68:94:62:59:50:B1:87:33:56:49:EA:DE:76:79:D4:8F
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/h38QZ2iUYllQsYczVknq3nZ51I8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:4b00::/32
Signature Algorithm: sha256WithRSAEncryption
4d:3f:da:ac:08:bf:fd:a3:10:c0:79:92:af:3b:62:8c:e4:1a:
17:34:3b:dd:50:d2:e6:f4:35:b5:43:b8:4c:48:20:e5:86:7b:
21:67:fd:f4:84:1b:6d:a1:a6:78:ab:39:2d:45:03:a3:18:42:
05:20:bd:93:96:ef:48:6b:d5:13:f1:da:56:ca:b5:1a:15:88:
c4:9c:dc:df:7d:b5:8e:2d:f4:11:c7:cd:7e:bc:96:fd:78:44:
f2:88:1a:4f:4c:4f:f0:cc:cc:01:2d:0f:e0:83:52:ed:4c:09:
a7:a9:27:f9:25:8d:f4:40:b4:83:5e:ee:b8:ea:84:31:e8:37:
f3:9f:a7:82:d6:4f:91:34:fa:b1:60:02:f1:ad:5e:65:35:97:
ea:c6:02:d3:dc:0e:3a:24:22:c2:07:6f:a5:6f:a8:e4:37:d5:
33:c5:cd:6a:ec:77:40:6c:51:0c:a1:46:18:6e:62:2d:c9:7b:
65:4a:60:61:45:52:0a:30:1e:c2:b2:57:1e:1f:97:90:6e:0c:
96:d7:c4:02:56:bb:76:14:39:f1:13:14:94:aa:bd:66:b0:86:
54:c7:3c:46:fe:45:39:43:fb:93:04:b8:64:7a:bf:e5:0a:59:
ca:21:12:07:70:07:af:3d:c9:8a:b5:f8:c5:78:eb:2c:b6:6e:
62:a9:2a:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org