Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ir5nrM1UtsZ4YTJX2qjK9S0kICE.roa
File: ir5nrM1UtsZ4YTJX2qjK9S0kICE.roa (raw, json)
Hash identifier: jnMCtjhPONx/vBko3J/RIhWaUup4pGi+QcBwmCZo7d0=
Subject key identifier: 8A:BE:67:AC:CD:54:B6:C6:78:61:32:57:DA:A8:CA:F5:2D:24:20:21
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1324
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ir5nrM1UtsZ4YTJX2qjK9S0kICE.roa
Signing time: Wed 29 Sep 2021 02:55:24 +0000
ROA not before: Wed 29 Sep 2021 02:55:24 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 45.64.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4900 (0x1324)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:24 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8ABE67ACCD54B6C678613257DAA8CAF52D242021
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:56:d6:26:97:ad:fe:09:b7:4a:ab:db:79:57:
be:fe:b6:ac:e0:ea:0f:4a:71:cb:8a:09:f0:d2:2c:
c3:de:1a:aa:f0:9b:ed:e4:30:58:4d:57:c9:7f:c6:
11:ee:0e:26:e3:8d:7c:94:41:e7:bc:93:82:6d:6d:
1b:62:95:31:9c:76:02:ba:8b:b9:35:32:3e:80:b7:
6c:00:d0:76:9d:c3:5c:37:cb:e5:c0:ba:ca:cc:41:
07:24:57:1d:a0:94:46:ce:17:d1:a1:93:9d:8c:4a:
86:59:36:2e:0a:40:c9:60:bf:be:53:18:a8:1b:92:
25:5a:c2:f6:9f:74:e7:0c:00:35:ad:2e:0d:c7:7d:
1b:04:72:68:cb:1c:60:73:97:13:ae:15:60:58:2a:
0d:00:62:b1:d4:8f:b8:2e:11:0e:44:b9:00:8e:cc:
17:d0:b6:e6:b8:9a:45:c4:3b:dc:8d:c1:57:10:da:
ef:81:0d:4d:91:ec:62:f6:81:67:13:83:30:73:21:
c2:57:16:e0:5f:32:a0:79:00:a3:72:be:a3:bf:26:
86:04:b1:95:61:6b:71:a3:90:ea:a3:ac:74:52:47:
8c:22:77:53:f8:d9:99:85:50:b6:59:4b:dd:35:14:
30:1e:1b:fc:47:75:e0:e7:e7:bb:a7:36:e1:a3:9c:
59:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:BE:67:AC:CD:54:B6:C6:78:61:32:57:DA:A8:CA:F5:2D:24:20:21
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ir5nrM1UtsZ4YTJX2qjK9S0kICE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.64.32.0/22
Signature Algorithm: sha256WithRSAEncryption
74:67:41:85:8d:d6:55:d2:95:e3:7c:0e:28:90:0a:3a:c1:04:
2a:06:f8:31:20:31:16:84:0b:1e:f6:dd:86:6d:cd:17:ae:64:
1a:5f:4a:55:2a:44:e4:40:5e:89:a6:79:f1:56:49:85:20:1a:
a3:0e:a8:1d:34:61:55:0f:76:37:16:e0:62:3c:14:e1:ca:17:
4c:eb:d3:7a:c5:0c:63:f6:d9:ff:d0:9a:05:00:c9:2d:37:e7:
97:9d:e6:c9:35:98:b5:37:4d:3d:72:a2:12:70:9d:17:a0:6d:
c2:c8:0f:50:d3:00:d0:17:10:15:8f:a3:73:c9:cf:5c:02:2b:
82:14:94:40:1e:1e:52:b5:ee:53:4a:e3:89:0e:91:31:ed:88:
56:8e:24:8a:6c:b0:90:b2:60:b4:50:9f:ca:c3:f5:61:a5:cc:
48:62:1a:5b:f6:b5:c5:06:d9:1a:a5:c7:8c:6f:c3:62:75:ac:
8b:bd:2d:81:5d:fd:b4:f9:c1:de:7f:12:93:4e:e4:56:3c:1e:
42:48:9a:1e:91:12:9b:44:a1:9a:1a:e9:af:3e:29:96:77:10:
fe:1b:e4:6a:2a:09:c2:4f:a4:de:e6:d4:61:ab:f5:8d:dd:a2:
e2:1c:83:8d:01:a8:54:f9:ae:b2:62:dc:8e:24:25:90:96:dc:
28:49:f7:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org