Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lG1ZpPfaR8g5DBuAvZTKqrI_bTM.roa
File: lG1ZpPfaR8g5DBuAvZTKqrI_bTM.roa (raw, json)
Hash identifier: 7RlRJkpX03dAzIZ6G0MKoqyuoZop8GdBO+GpzpT3ytw=
Subject key identifier: 94:6D:59:A4:F7:DA:47:C8:39:0C:1B:80:BD:94:CA:AA:B2:3F:6D:33
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0F49
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lG1ZpPfaR8g5DBuAvZTKqrI_bTM.roa
Signing time: Sun 07 Feb 2021 12:33:33 +0000
ROA not before: Sun 07 Feb 2021 12:33:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 122.100.126.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3913 (0xf49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:33:33 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=946D59A4F7DA47C8390C1B80BD94CAAAB23F6D33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:46:b6:df:03:93:f5:b3:ed:7d:12:75:45:a0:
fe:dd:a4:c4:ab:71:25:c6:fc:3b:20:d4:ee:64:29:
01:44:82:3b:75:5d:7c:d9:e9:a8:58:7a:41:6e:d9:
69:30:38:ce:0c:ae:18:7e:a9:9f:b1:6c:ab:10:da:
43:86:0e:1c:d2:d2:47:4f:8d:a3:39:b8:ea:a9:f7:
58:1e:83:dc:ab:15:ab:63:d7:78:17:85:28:e3:10:
f3:eb:43:49:d9:f9:19:6f:55:89:03:f6:ab:f7:85:
ed:f4:13:90:40:71:cd:43:18:d7:a1:0f:10:37:e7:
f9:2d:7e:66:ac:cb:e8:68:cd:1a:8c:48:e6:2a:bb:
13:1a:c4:b0:d0:94:7f:f1:b1:55:46:fe:08:6d:d8:
41:72:bb:40:01:a0:ce:cc:6d:1d:ea:46:d7:ac:c0:
3c:67:bd:3c:aa:15:fd:44:32:0c:ad:ab:e2:59:ff:
ff:09:31:01:d9:04:fc:45:5c:b5:f2:59:94:24:33:
35:7b:13:29:e3:be:b1:9a:0e:34:e6:60:31:1f:db:
4c:80:5a:bc:8c:08:06:2b:c0:e0:df:3a:8e:90:9b:
4f:cb:0e:ea:f3:92:86:9a:ad:af:84:22:4a:bb:a7:
6c:e0:02:b9:fb:7b:9d:4e:d5:69:e2:71:7b:4a:6f:
bc:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:6D:59:A4:F7:DA:47:C8:39:0C:1B:80:BD:94:CA:AA:B2:3F:6D:33
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lG1ZpPfaR8g5DBuAvZTKqrI_bTM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.100.126.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:c1:3e:3e:e8:94:2a:8a:2e:71:f1:23:55:f2:8a:6c:d0:5d:
9f:69:85:5f:2c:26:12:2f:4c:77:c4:da:a1:98:f0:9a:56:64:
d2:8c:a7:95:34:46:17:ad:57:4e:e5:eb:d1:c6:17:d7:51:df:
f3:c5:9f:eb:e2:f8:00:76:c2:33:c4:9b:fd:c1:26:a5:0a:0d:
f8:8f:5c:22:c0:4e:b3:e1:33:e9:69:5c:3f:06:da:6d:53:dc:
41:be:4c:7c:a6:6f:b3:ec:3d:42:0b:94:27:1d:93:98:e4:87:
2d:83:a9:e2:04:eb:67:35:0d:ee:e4:7e:db:2a:92:d0:95:2e:
c8:7d:42:b5:d3:e5:1a:ae:c1:13:8f:92:f6:b8:16:1e:29:1c:
00:89:1d:de:f8:bb:ae:68:a4:de:24:f1:31:ab:82:fa:e3:0c:
b2:28:87:2b:87:4a:41:67:13:9c:f7:2c:93:de:23:c3:0a:87:
46:98:9b:18:46:00:a0:78:02:52:41:9a:d4:c6:21:d0:cb:33:
ed:e6:bb:b2:83:93:27:f9:d2:6e:20:1f:c5:5b:32:d6:7a:c3:
d6:64:20:7b:76:a4:0f:38:90:40:a0:f0:e9:9d:5a:f8:b8:b6:
b0:c6:23:ec:c8:c8:15:e9:a6:e2:54:af:68:9e:97:bb:86:53:
c4:d1:9a:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:49 2024 by rpki-client on console-ams.rpki-client.org