Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/mIspVh4N2HMv7ZDPDWn3oaIoqQU.roa
File: mIspVh4N2HMv7ZDPDWn3oaIoqQU.roa (raw, json)
Hash identifier: Xcqf1GTFfVT6qxu5wtQwIF77iAqDHtI+tKMmIKhXrTA=
Subject key identifier: 98:8B:29:56:1E:0D:D8:73:2F:ED:90:CF:0D:69:F7:A1:A2:28:A9:05
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 18D5
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/mIspVh4N2HMv7ZDPDWn3oaIoqQU.roa
Signing time: Sat 22 Oct 2022 06:05:47 +0000
ROA not before: Sat 22 Oct 2022 06:05:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 123.0.40.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6357 (0x18d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:05:47 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=988B29561E0DD8732FED90CF0D69F7A1A228A905
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f0:7f:f3:ae:ca:11:f2:87:76:90:2e:f3:48:
35:4f:ee:29:e7:55:4c:18:55:22:47:17:fb:e1:1c:
a3:82:67:00:4a:c8:45:25:1e:c2:67:ee:aa:40:67:
26:e9:a3:d4:2c:45:48:d0:3d:bf:58:0a:13:d4:7f:
23:59:9b:73:f6:50:4c:b4:05:43:fc:56:66:37:a0:
4c:b0:5a:98:0c:96:a7:2e:b0:9e:dd:bd:0a:f9:00:
1c:7e:aa:f1:69:ab:42:98:5e:c6:40:e0:6e:8c:48:
5a:3e:51:8a:27:e5:d3:c7:72:14:7b:61:19:ef:2c:
43:ac:ef:21:75:36:b5:26:ff:2f:d8:79:1c:7c:7b:
96:9e:16:43:29:29:09:b8:8e:dc:28:05:16:be:c3:
ac:48:9c:1f:99:19:57:2c:37:60:84:e8:91:9e:90:
12:22:07:68:7f:02:b5:55:1a:3e:bc:c3:fa:c0:b2:
72:eb:d7:e3:c8:70:14:c8:0a:ba:9d:66:b0:b0:17:
4b:0b:b0:18:71:f8:d5:85:f3:d3:e5:0a:f7:9c:6a:
ae:74:8d:93:91:07:26:57:34:a3:dc:9f:aa:4c:b9:
44:79:e8:c7:ec:30:63:24:63:6c:e5:2f:60:05:96:
ba:f9:7f:f1:03:d7:f1:9f:e5:7b:f0:4e:d6:c3:83:
a8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:8B:29:56:1E:0D:D8:73:2F:ED:90:CF:0D:69:F7:A1:A2:28:A9:05
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/mIspVh4N2HMv7ZDPDWn3oaIoqQU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.0.40.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:90:68:34:b9:43:e7:52:b7:d4:9c:00:98:8a:ff:31:0e:5a:
6e:c7:7b:3b:4d:6c:d4:3e:8f:58:f8:b3:d2:6f:ca:6a:53:7b:
d3:57:41:08:40:53:69:d8:0c:64:a4:9c:c5:8d:37:d9:a0:a3:
88:8e:b0:57:c4:ef:29:27:69:f9:bf:33:30:1f:59:a2:b4:a9:
27:ef:42:85:1e:b3:67:fa:27:42:08:19:28:c7:c3:02:07:da:
c5:85:24:91:9b:4d:1f:17:55:fa:f2:90:b5:fc:23:27:3d:37:
ef:fe:c5:9e:b0:71:aa:07:13:ef:17:d1:fb:4e:8b:c4:de:c6:
fe:10:f5:56:3b:4d:f1:08:b8:47:77:9f:e2:4d:09:ba:e6:e6:
7c:9c:ea:d0:be:34:68:f1:9f:28:78:5d:0f:3b:ce:a2:64:3c:
5a:9f:5c:2c:86:8e:78:11:a6:c0:75:42:b8:71:dd:83:2c:37:
7b:89:6f:2f:2e:71:24:85:f9:1d:c3:93:f6:9c:94:d9:1e:c4:
0e:d1:cf:72:8a:5b:fd:68:79:a1:6f:c7:97:c4:01:fc:e3:41:
76:09:b0:9b:4c:c9:97:24:69:27:5f:4d:2d:bb:63:55:ce:fe:
b8:f9:28:50:f0:29:ad:1f:69:e4:4c:fb:91:80:3b:65:87:a0:
ba:88:36:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org