Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lZXZRuJZ9DiMw_kR4o6oNXbqGCQ.roa
File: lZXZRuJZ9DiMw_kR4o6oNXbqGCQ.roa (raw, json)
Hash identifier: xg/AByy/KEPr7MKpzHiHudct+uMGmNjKVqTRgWdAkGE=
Subject key identifier: 95:95:D9:46:E2:59:F4:38:8C:C3:F9:11:E2:8E:A8:35:76:EA:18:24
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 126D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lZXZRuJZ9DiMw_kR4o6oNXbqGCQ.roa
Signing time: Wed 29 Sep 2021 02:54:33 +0000
ROA not before: Wed 29 Sep 2021 02:54:33 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 123.0.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4717 (0x126d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:33 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9595D946E259F4388CC3F911E28EA83576EA1824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c8:98:53:15:a0:cd:59:b4:82:0d:a4:35:b4:
3d:46:23:33:35:df:ab:68:3f:ea:2a:df:61:97:de:
4d:74:5d:8f:fa:20:b9:4e:c6:77:8b:d8:51:7c:ff:
22:7e:b6:2d:31:9e:bd:78:61:d8:4d:4a:4c:4a:e4:
68:51:3a:7c:d3:d3:f3:cf:40:12:aa:f6:59:0c:9f:
a6:22:c2:ea:ed:b7:03:2f:4b:ff:e6:0e:1a:13:b1:
23:3d:6a:d4:e7:46:f8:7a:b6:84:26:07:ce:58:20:
76:82:4f:32:b8:55:2c:b5:b3:29:d4:39:ae:f1:c6:
d0:b0:24:b1:32:77:3d:be:77:bf:6d:71:fa:00:2b:
a7:13:e0:25:0d:0b:2e:b3:76:19:98:47:f1:f7:05:
b5:08:50:c0:73:f6:f9:09:b3:2a:d0:16:76:db:88:
77:47:26:2d:6f:9b:66:9e:88:91:a1:85:22:76:94:
fc:ed:5e:e7:05:83:d0:6c:4a:79:75:1c:1c:6a:25:
38:00:99:9c:39:5d:5e:3e:82:54:29:e5:85:0b:9a:
e4:c5:b9:61:e7:1d:75:d5:52:75:93:fc:ac:14:fa:
b2:33:c1:62:e1:4f:7b:2d:5e:d9:04:db:f1:16:d0:
88:32:92:8f:c2:30:44:b0:e7:1d:2e:3f:cf:76:10:
79:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:95:D9:46:E2:59:F4:38:8C:C3:F9:11:E2:8E:A8:35:76:EA:18:24
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lZXZRuJZ9DiMw_kR4o6oNXbqGCQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.0.43.0/24
Signature Algorithm: sha256WithRSAEncryption
26:da:7c:f5:a2:04:34:8e:e9:86:f2:33:06:b2:8d:74:7d:14:
ca:a0:58:27:81:3e:8f:70:c8:fa:ad:9c:62:ee:09:85:af:94:
75:33:6f:cd:57:ce:d8:43:c5:5a:09:20:88:1a:69:b5:82:99:
15:6b:37:57:1d:03:24:87:9d:10:14:34:c3:69:cf:7e:01:be:
57:b4:a7:91:62:0e:eb:5f:63:8e:01:1d:02:b8:ea:03:ae:04:
4e:78:ba:4a:98:d4:46:56:fc:9a:96:c8:3d:10:3b:78:0a:fa:
61:f3:2e:a3:8d:57:43:9d:13:86:2c:e3:b6:9c:b5:84:0d:d1:
37:9a:ac:5d:83:74:d4:f8:27:37:d2:77:26:2f:e4:51:e8:0f:
4f:a5:8a:fa:d8:ec:9e:2d:37:0e:70:0d:33:55:fe:05:f3:5c:
42:56:b9:ec:3a:67:57:24:ed:09:99:0f:3a:60:07:40:e6:66:
de:87:09:ac:9f:21:ed:ed:39:95:20:9b:35:37:b8:8a:4e:6f:
e8:69:b9:f4:48:69:61:1e:0b:70:7a:38:55:ce:d5:9b:d0:23:
1a:8f:22:55:82:a6:1e:e3:11:a4:6c:4d:e7:94:fd:07:b1:5d:
97:45:2f:0f:b8:2d:d9:dd:83:e1:82:71:dd:87:43:70:e7:10:
0b:97:43:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:49 2024 by rpki-client on console-ams.rpki-client.org