Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oxDlNvhs3qTnTZuyxwaozadSKds.roa
File: oxDlNvhs3qTnTZuyxwaozadSKds.roa (raw, json)
Hash identifier: wO7jzE01LHlV+8bBsNWHMRJsYaiRIIsjvMsTMdfpn6M=
Subject key identifier: A3:10:E5:36:F8:6C:DE:A4:E7:4D:9B:B2:C7:06:A8:CD:A7:52:29:DB
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 125B
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oxDlNvhs3qTnTZuyxwaozadSKds.roa
Signing time: Wed 29 Sep 2021 02:54:30 +0000
ROA not before: Wed 29 Sep 2021 02:54:30 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 122.100.76.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4699 (0x125b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:30 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A310E536F86CDEA4E74D9BB2C706A8CDA75229DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:60:6b:84:c1:39:92:54:6b:f2:32:7a:85:28:
e5:0d:00:aa:be:31:fb:c8:d0:ed:da:78:47:e2:8f:
9d:ff:f1:0b:5b:2d:1c:1b:f6:83:ef:a4:a9:af:ee:
b7:b0:d2:e5:12:c8:bc:08:65:3a:db:33:fd:cc:27:
4b:85:bd:1d:e1:f8:c9:22:61:5b:47:28:85:15:8e:
35:aa:85:12:74:21:9b:e0:79:a1:ca:3d:2c:11:8d:
de:52:a6:9e:97:9f:74:e6:dd:97:1b:2b:10:6d:08:
68:d2:ca:89:70:fc:fd:e9:69:4d:49:cc:65:7b:f3:
79:81:a4:ff:86:c3:b1:5f:df:58:63:eb:cd:e7:20:
eb:a5:49:9d:f9:35:58:25:4e:d4:1c:9b:7d:5e:15:
10:c4:a6:3c:4b:0d:b2:39:3c:01:63:1c:a5:9a:15:
98:11:cf:75:2c:08:d6:bc:fb:88:84:62:76:c5:fc:
4c:61:b7:e2:79:83:84:81:7b:b8:7e:a0:2d:d9:c1:
bd:d1:7f:21:56:e7:3f:fd:57:dd:6c:c6:86:bc:4d:
50:8a:34:57:4a:73:e3:c5:28:04:6e:19:58:20:04:
13:5a:71:24:32:3e:2b:ce:31:6b:df:11:60:d5:ba:
0a:6d:49:d5:51:e2:8c:a8:5a:60:2b:f1:6f:7e:33:
af:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:10:E5:36:F8:6C:DE:A4:E7:4D:9B:B2:C7:06:A8:CD:A7:52:29:DB
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oxDlNvhs3qTnTZuyxwaozadSKds.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.100.76.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:e5:56:30:03:e7:5b:15:6b:c4:5c:ad:8e:12:ed:9e:b4:46:
25:4e:23:53:81:93:fd:ca:ba:c9:f7:d0:13:e1:00:5e:ee:9d:
0c:dc:d5:1f:ae:9f:5e:49:79:a4:b1:a3:8e:ea:66:e6:1e:5f:
af:8e:93:69:d3:86:5d:25:6a:ee:d3:ef:e2:c5:03:cb:b2:e2:
6f:56:c6:22:27:1a:97:63:bf:20:a0:69:1e:07:d8:bd:dc:0d:
fb:bc:cf:bc:06:de:fa:5e:90:08:97:ec:f8:66:a6:ce:6f:70:
eb:34:50:9c:d7:e3:49:69:61:56:66:e8:7b:8f:04:c2:db:f6:
ad:33:f1:f1:d9:26:3b:08:b1:b1:2a:a9:b7:86:03:af:81:c0:
bb:d9:72:6f:2a:3c:93:3b:30:6d:8e:5f:50:0f:6a:6c:12:46:
33:ec:0b:b8:1e:cd:5b:6c:32:d8:55:ad:2f:7a:6c:a1:d0:a0:
1c:90:e1:5b:82:19:cb:05:70:ae:a1:a6:be:82:74:48:e0:a8:
09:18:7f:70:c5:00:c2:61:65:f9:22:69:44:ef:1f:a3:7b:39:
1a:73:2e:72:02:da:03:de:58:e7:16:07:c8:d1:de:06:0f:ed:
1c:ef:bd:c2:0c:6d:df:92:13:ff:3f:b3:0a:7a:1a:68:c8:36:
4e:ed:94:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:50 2024 by rpki-client on console-ams.rpki-client.org