Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lpTm5LJx-w7IeaVsS6is9UAixZw.roa
File: lpTm5LJx-w7IeaVsS6is9UAixZw.roa (raw, json)
Hash identifier: qvqtmUR2U3f4xXmxV/lhEx2Oxbk//EP2gegaCf7cQzk=
Subject key identifier: 96:94:E6:E4:B2:71:FB:0E:C8:79:A5:6C:4B:A8:AC:F5:40:22:C5:9C
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0F7B
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lpTm5LJx-w7IeaVsS6is9UAixZw.roa
Signing time: Sun 07 Feb 2021 12:34:20 +0000
ROA not before: Sun 07 Feb 2021 12:34:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 211.76.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3963 (0xf7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:34:20 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9694E6E4B271FB0EC879A56C4BA8ACF54022C59C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:64:06:0f:26:8e:1c:8b:35:4c:2e:81:c9:c2:
03:ba:25:eb:cf:d4:f4:ea:75:41:9a:7f:28:ff:98:
db:2e:5e:89:e7:bc:77:ce:81:14:a9:21:17:f7:0e:
3e:f0:ed:50:d0:e5:4c:26:ce:6d:99:11:dd:7c:f5:
d9:84:9a:ca:ed:92:54:ec:42:ab:79:5e:1e:fa:e5:
0f:fc:3a:c9:4d:a2:56:13:60:bd:44:ec:60:15:b3:
c3:46:4d:fd:24:9a:15:a3:4e:c8:df:72:60:c6:ad:
12:07:05:fb:be:cc:f8:45:10:7b:a5:34:08:26:38:
d4:b1:ac:70:f1:4e:79:a8:28:2e:fc:fa:2f:67:d8:
f1:b9:1b:e1:bd:3f:fa:e2:34:38:7a:85:b7:9d:67:
d4:59:8c:bd:a2:72:f4:5d:92:aa:36:57:c4:0e:ec:
cd:38:6e:83:3f:13:c3:77:8b:50:aa:5f:3f:f3:ca:
de:28:60:a0:bb:3e:3c:1e:7c:b5:ee:0c:c1:64:39:
c9:6b:f2:7e:a2:f7:b1:b7:d9:59:23:24:11:dd:be:
65:11:ad:ff:55:85:4a:8b:3c:db:d5:26:71:13:fe:
02:40:02:da:bf:77:a0:07:71:ee:f9:2e:2d:e9:06:
98:73:77:85:56:18:7b:fe:6e:41:d9:00:ca:bf:12:
98:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:94:E6:E4:B2:71:FB:0E:C8:79:A5:6C:4B:A8:AC:F5:40:22:C5:9C
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lpTm5LJx-w7IeaVsS6is9UAixZw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.43.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:78:e7:82:8f:33:06:9f:7b:7f:18:7b:0f:a5:3f:b0:38:73:
3a:c3:84:8f:28:66:81:8e:1a:16:bb:68:a7:e1:e7:65:21:68:
27:1c:c7:fc:b1:e7:49:40:99:4a:18:d9:9a:77:b0:71:7e:02:
04:9a:75:9a:35:03:fb:01:6f:20:75:51:0e:09:d1:8c:53:0e:
86:87:31:f1:c4:27:07:58:28:93:ed:5f:47:bd:bd:24:56:97:
44:2c:69:80:e3:a7:34:a3:a5:4c:d0:09:64:08:e5:89:ea:c0:
8a:68:35:54:64:4a:8c:18:c2:03:9f:30:c4:1e:4c:7a:39:e1:
ce:81:60:16:4e:b1:d8:9d:4c:71:79:b1:67:26:27:63:2f:b6:
79:84:df:02:1d:da:6e:72:13:20:53:b0:9e:3b:d9:1c:d3:09:
06:eb:06:d4:3f:1b:3f:e5:03:da:ce:c7:d8:d2:03:c6:86:8d:
6a:d3:78:57:d1:eb:5c:6d:f2:f5:4a:49:a1:21:a4:0b:d0:2b:
d7:27:32:06:9e:69:f5:27:45:61:69:20:10:88:a5:3d:4c:c1:
3c:d5:f2:10:19:f6:08:a6:20:52:93:b3:32:5f:5a:94:43:74:
00:7b:bb:5b:5f:f4:fb:4a:d3:2a:dc:cb:dd:42:ce:c0:e7:e2:
69:a2:f1:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:39 2023 by rpki-client on console-ams.rpki-client.org