Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/h5HuLnsYIf80pHxKoS0ZNgtx_e4.roa
File: h5HuLnsYIf80pHxKoS0ZNgtx_e4.roa (raw, json)
Hash identifier: hxOIedCkLWzYn9l64vG8K8uKYyQjYWHSP5LB6G8hMiE=
Subject key identifier: 87:91:EE:2E:7B:18:21:FF:34:A4:7C:4A:A1:2D:19:36:0B:71:FD:EE
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1A4E
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/h5HuLnsYIf80pHxKoS0ZNgtx_e4.roa
Signing time: Thu 27 Oct 2022 02:43:08 +0000
ROA not before: Thu 27 Oct 2022 02:43:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 114.198.160.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6734 (0x1a4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 27 02:43:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8791EE2E7B1821FF34A47C4AA12D19360B71FDEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:52:a2:c1:a4:b7:52:cc:9b:f1:a0:aa:3b:e8:
27:7d:84:d7:97:46:12:b4:e4:15:32:58:81:1e:9d:
88:48:c9:6c:c7:49:87:49:76:4b:0b:59:28:14:d3:
f6:dc:9e:50:b0:7e:69:d4:9d:b8:66:1f:84:b7:18:
dc:9f:3d:29:db:8c:79:3c:92:fc:e1:bf:49:16:e9:
0b:cf:49:02:64:4b:b4:7c:2c:8a:8c:da:46:11:c8:
3a:db:d2:6b:c6:38:cf:5e:44:7c:41:91:e7:2c:8f:
d2:15:4d:14:35:82:91:fe:e1:43:64:af:5d:7e:8b:
ad:d6:0e:be:ca:4e:2c:b0:5f:f7:d4:73:19:05:b2:
87:6f:ac:cd:f1:3e:bc:6c:4c:57:04:be:98:74:33:
3d:44:32:f8:8a:9a:2b:95:8f:c8:40:98:62:57:b4:
bb:3b:46:f4:17:d9:ae:16:1b:39:fe:e4:a9:8e:6e:
50:39:a6:9f:0d:81:fc:4c:b1:1c:f5:6d:65:c6:95:
67:99:8d:0d:44:f7:c7:fc:2e:34:16:ef:81:74:91:
67:f0:05:40:e0:bc:23:fe:2d:54:eb:e0:2d:85:c7:
9b:9b:cb:72:b5:98:e7:f3:cc:70:bc:c9:01:53:2b:
b5:c9:a6:b3:be:6a:fe:94:e5:02:64:17:3e:6d:69:
d4:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:91:EE:2E:7B:18:21:FF:34:A4:7C:4A:A1:2D:19:36:0B:71:FD:EE
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/h5HuLnsYIf80pHxKoS0ZNgtx_e4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.160.0/22
Signature Algorithm: sha256WithRSAEncryption
41:f1:e9:6d:2f:d4:fc:3f:19:50:33:d5:51:3b:74:de:c3:01:
77:64:e5:88:0e:cb:ad:0a:ab:af:2a:3b:45:52:74:00:c0:4f:
02:26:37:e0:f3:73:e9:ca:5f:93:ae:5c:e3:eb:7f:4a:48:97:
d6:bb:3f:b9:fa:51:32:6f:54:f6:a0:45:70:f4:c1:33:31:fe:
b7:96:82:a6:02:3c:1a:84:84:82:55:45:e5:aa:3d:46:8c:1e:
35:a0:b0:7b:f3:ad:5b:8a:e6:fd:39:c2:14:b2:a8:c1:8c:7b:
8d:ea:57:e2:79:f1:91:a7:0c:ee:3c:6f:b0:34:eb:a0:18:64:
0c:fa:46:54:2d:ed:7d:b2:a1:c3:be:4c:5b:41:92:78:ce:71:
ea:a5:10:25:e1:f4:34:b2:05:c3:73:11:8b:a8:b0:43:41:fe:
67:25:5a:28:ad:42:51:7f:20:a9:4a:e2:74:77:98:87:4e:5e:
66:a5:09:fa:ef:0e:25:08:c6:ac:33:6c:5e:4c:1c:4e:74:bd:
18:e5:37:4e:01:98:af:cd:96:67:03:67:aa:a9:fd:3d:53:6b:
66:e9:d3:4a:b3:36:3d:62:8b:2a:a9:09:b6:c8:5d:12:a8:e5:
76:b9:c9:5b:41:93:e5:28:6d:7a:1c:f0:91:ab:da:67:77:1d:
ef:7f:bc:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:49 2024 by rpki-client on console-ams.rpki-client.org