Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/rM1or7WhWPeOcrwbR6Yn9-pS654.roa
File: rM1or7WhWPeOcrwbR6Yn9-pS654.roa (raw, json)
Hash identifier: biirMEqvf0dTnvgXuG0kAMTJTPsFvrm0IU4TV3Y66RU=
Subject key identifier: AC:CD:68:AF:B5:A1:58:F7:8E:72:BC:1B:47:A6:27:F7:EA:52:EB:9E
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/rM1or7WhWPeOcrwbR6Yn9-pS654.roa
Signing time: Thu 15 Sep 2022 02:36:01 +0000
ROA not before: Thu 15 Sep 2022 02:36:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 115.165.240.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=ACCD68AFB5A158F78E72BC1B47A627F7EA52EB9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:88:55:7b:d2:0a:42:b4:87:4a:23:eb:6c:ce:
83:d9:ee:a1:fb:5f:79:56:f0:3f:1c:aa:4c:f1:7c:
57:51:07:73:d2:aa:73:54:ab:83:df:ac:f9:e4:02:
ec:56:5f:e1:f8:4d:a4:bd:b5:85:99:06:e7:a6:a0:
dd:a6:c0:c4:82:81:dd:9a:c0:4d:02:db:55:4e:98:
9f:c7:ac:3f:19:e5:84:a8:aa:1c:ad:d5:1b:75:d1:
2b:81:86:e8:ab:3b:1b:4f:ff:bc:ff:f8:34:ca:2f:
31:31:7f:f6:df:3e:e5:77:91:0a:c2:12:e1:8b:02:
7d:ed:90:29:99:b1:4e:15:00:c2:2e:47:17:ef:5e:
f0:f8:4d:6d:64:73:08:9f:cc:5a:1c:62:26:c7:46:
c3:8d:70:30:2d:bb:c4:e3:d7:52:aa:11:61:f7:42:
23:b9:b7:62:ae:b4:1a:27:72:28:c4:10:78:58:e2:
a5:da:6a:ac:e3:0a:42:79:93:2e:cb:e8:16:26:0d:
ac:ea:02:89:a3:3c:48:95:74:62:d1:2c:74:11:31:
dc:8b:99:61:74:4e:2e:2b:9f:b6:7c:fe:a5:ab:6d:
d8:49:e4:8c:0f:50:d4:43:07:d0:35:44:96:15:a8:
fe:a7:86:99:0f:19:f8:49:05:33:3e:30:6d:45:ac:
f5:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:CD:68:AF:B5:A1:58:F7:8E:72:BC:1B:47:A6:27:F7:EA:52:EB:9E
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/rM1or7WhWPeOcrwbR6Yn9-pS654.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.165.240.0/21
Signature Algorithm: sha256WithRSAEncryption
37:51:7a:54:92:49:7d:91:b4:42:7c:73:2a:31:73:03:d5:2c:
07:43:90:e9:d6:d0:6a:0b:de:eb:a4:d3:09:8d:42:88:21:cf:
77:01:4d:a6:66:be:8a:61:cb:96:44:0d:e3:57:8e:25:f2:8f:
3b:7b:31:d6:70:96:1d:ca:db:0a:e7:b9:a6:12:44:12:82:2e:
06:fe:e1:c7:92:46:9d:06:b5:b9:53:97:bd:fb:01:29:bd:c3:
88:91:7b:6a:d8:4e:4a:7a:49:73:1b:5e:95:68:f8:b0:bc:52:
a0:86:a6:7e:12:3f:11:18:57:40:a7:70:f4:ac:0f:76:3b:72:
7e:f3:aa:9e:04:c9:56:c8:02:f5:e8:28:1d:3d:bf:c2:b3:e9:
1a:c2:4f:a6:7e:92:0b:a5:3a:21:76:fe:88:dc:6a:13:0a:9f:
4b:e6:03:ab:54:b6:64:98:0c:75:22:f6:7f:1f:ae:45:ed:2e:
17:71:e1:1f:b6:61:b2:1e:73:14:dc:a7:68:ed:5a:eb:99:55:
31:9a:a1:53:0c:bc:c1:d6:51:90:db:6d:46:1f:b2:a5:82:71:
fb:6e:68:6d:94:ad:9a:0e:38:9e:61:4f:9f:b8:12:f6:5a:3e:
9f:ca:ea:f8:1d:2c:2b:00:4d:2a:a5:3d:9b:3b:c2:94:03:2b:
e5:e9:1a:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org