Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nmtFyTHp0BLHKTs8y0OznEocTQs.roa
File: nmtFyTHp0BLHKTs8y0OznEocTQs.roa (raw, json)
Hash identifier: KUtzEvZej5alW7Hy5V2XK8sMW/sEfI+PrzPIazQ8YmI=
Subject key identifier: 9E:6B:45:C9:31:E9:D0:12:C7:29:3B:3C:CB:43:B3:9C:4A:1C:4D:0B
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1A22
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nmtFyTHp0BLHKTs8y0OznEocTQs.roa
Signing time: Sat 22 Oct 2022 06:19:02 +0000
ROA not before: Sat 22 Oct 2022 06:19:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 61.64.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6690 (0x1a22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:19:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9E6B45C931E9D012C7293B3CCB43B39C4A1C4D0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:43:c7:4b:2c:03:72:0f:5f:f6:d9:f1:6d:2a:
7a:90:10:5f:dd:b4:61:76:6c:72:24:0b:5b:6b:79:
a3:21:71:c5:97:b7:0a:44:2e:68:57:3d:75:2f:22:
82:ac:32:b0:ea:e3:df:c5:e6:52:85:8d:45:11:f8:
bb:fb:9b:5a:0b:7f:5b:9e:6e:72:f6:90:a9:6a:2d:
a9:f4:7d:52:32:15:5b:e1:92:cf:37:65:36:c0:c5:
68:38:6c:78:66:9c:7d:83:9a:0a:22:e5:4e:e7:33:
b3:83:11:3a:03:fe:cc:10:b6:3a:cb:f8:ec:94:57:
1f:71:62:88:63:b1:0e:2e:cd:60:c0:b6:fc:44:9f:
22:3f:5b:bd:e7:1f:5e:e4:0f:7d:2c:f9:87:a5:02:
cd:22:04:4d:a3:5c:e0:d1:2e:15:13:45:2d:bd:04:
90:e6:78:a5:1a:01:13:33:32:57:35:2d:b6:ee:1c:
3e:94:aa:41:09:ef:09:91:04:a1:01:4f:96:e6:e5:
c5:a4:85:ef:14:64:74:35:19:ed:59:c0:e1:58:dc:
46:a7:0a:e4:60:7f:63:aa:f6:d2:a1:cc:79:02:7b:
9d:cd:75:88:b2:38:a6:3a:78:a1:90:e6:0a:86:bf:
c1:b1:f3:c1:e1:fa:20:e2:14:2a:0f:7a:c5:0e:a0:
d1:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:6B:45:C9:31:E9:D0:12:C7:29:3B:3C:CB:43:B3:9C:4A:1C:4D:0B
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nmtFyTHp0BLHKTs8y0OznEocTQs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.64.4.0/22
Signature Algorithm: sha256WithRSAEncryption
35:f4:26:4c:2f:15:34:14:69:fd:b1:f5:c5:dc:c5:b8:85:dc:
d6:26:3e:f4:4a:90:80:be:4a:e1:75:60:da:fd:86:7c:20:8b:
11:e6:bf:a1:22:23:4e:ad:6a:81:e9:c9:1d:7c:9e:0d:82:34:
07:13:30:55:a2:4d:5f:80:dc:35:e5:d1:c6:dd:97:34:33:91:
c1:41:10:b4:53:9e:35:3f:2f:0c:6c:b7:f4:f9:40:a7:11:aa:
c5:a3:c7:4a:c6:14:4a:3e:e9:f7:bc:19:97:95:b8:fd:89:9e:
34:69:57:90:bf:7d:7a:0a:39:ab:e5:0d:53:d7:03:1f:48:63:
15:bf:6f:6e:bf:fc:50:d5:a4:a7:b9:af:1a:eb:74:25:1c:b5:
79:5d:1d:b8:02:43:9d:e1:04:15:3f:a9:78:76:4e:a2:3e:00:
4a:07:4a:23:a1:c6:8c:6c:39:40:47:c7:e2:3e:16:92:14:12:
fe:44:5f:03:34:36:34:09:19:04:7c:a8:73:9d:e0:d0:b4:15:
7c:bf:17:92:bb:f1:93:46:08:43:ff:7d:4d:a2:0f:57:bb:84:
2d:e2:45:10:f7:c3:cd:b0:40:73:76:7b:dc:87:56:8c:00:57:
8d:c2:8c:92:b2:35:c6:c4:1e:f5:91:c9:9d:d4:7d:86:17:93:
eb:9e:68:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org