Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/sTSMZIkdrCPzmo0P00dktVTqpKk.roa
File: sTSMZIkdrCPzmo0P00dktVTqpKk.roa (raw, json)
Hash identifier: NS2tNj4KGifxNCvJLpZ3C2mbe4GdeNQfsNqFIFvPfUo=
Subject key identifier: B1:34:8C:64:89:1D:AC:23:F3:9A:8D:0F:D3:47:64:B5:54:EA:A4:A9
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0B20
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/sTSMZIkdrCPzmo0P00dktVTqpKk.roa
Signing time: Tue 29 Sep 2020 10:08:03 +0000
ROA not before: Tue 29 Sep 2020 10:08:03 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 114.198.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2848 (0xb20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:08:03 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B1348C64891DAC23F39A8D0FD34764B554EAA4A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:fb:c3:3b:66:53:3e:15:89:d8:30:05:84:4c:
c2:2f:f2:63:a0:36:43:26:c4:d8:d6:ae:a1:e3:68:
19:24:fe:7f:c0:65:21:66:8c:83:ba:d3:7b:f6:61:
6d:27:8a:ef:18:79:12:1e:54:27:79:67:e1:9e:2c:
23:b2:60:f5:83:f7:86:6d:04:f4:22:6a:55:cb:a7:
de:de:97:0a:8c:10:24:82:cb:40:10:d0:cc:1d:fa:
e0:fd:0d:2d:8a:17:9c:1a:66:67:31:60:00:8e:10:
be:b3:b1:0b:b1:98:2f:59:f8:b4:6f:f0:a6:aa:6d:
2d:73:e5:66:b0:6e:d1:a7:2e:27:48:1f:af:a8:9f:
81:69:fc:8b:78:d4:71:b5:df:8d:ab:e4:b4:f2:a0:
7e:b9:2b:96:d7:e9:86:f8:11:6f:42:7c:f1:63:b1:
73:50:9b:f6:fe:17:e7:3e:59:54:d0:b9:0d:00:0e:
fb:0c:ea:37:4b:e2:da:1e:87:89:2b:11:c5:28:c7:
29:9b:14:b6:6d:aa:a7:80:ad:54:e4:82:93:b4:76:
8d:93:61:57:45:ba:e2:61:2e:8b:96:cf:5c:9d:df:
b1:a0:6d:48:5f:c7:ee:ad:65:45:ed:a9:5e:35:c1:
78:b0:f6:ec:ce:b6:aa:ef:f5:e6:5d:06:c3:9b:02:
09:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:34:8C:64:89:1D:AC:23:F3:9A:8D:0F:D3:47:64:B5:54:EA:A4:A9
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/sTSMZIkdrCPzmo0P00dktVTqpKk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.163.0/24
Signature Algorithm: sha256WithRSAEncryption
11:0e:97:15:77:26:2b:ae:79:aa:0c:bf:4e:2b:17:96:d7:5b:
48:58:2e:85:5c:30:dd:9f:0d:cb:ba:ea:e0:13:fd:fe:ee:2f:
ae:1f:fa:8b:de:a1:af:b6:21:41:5c:38:96:97:ab:e5:de:80:
88:a1:b7:20:dd:ff:2b:07:4b:4c:19:af:3b:0f:6f:09:98:ba:
aa:5f:f3:1c:25:1d:f7:34:d3:08:39:21:9a:59:75:93:5e:fd:
45:5a:2c:4a:f1:d6:0d:78:88:cd:79:4b:65:70:bb:33:36:6b:
61:6f:26:7c:32:95:e1:92:1b:c3:cb:67:f2:b0:fc:39:f5:93:
e1:25:4e:f5:a6:d1:79:84:91:ac:0c:68:14:d7:e6:b2:f5:75:
b7:5a:51:06:ad:b1:65:71:ab:96:50:c1:2c:71:c6:2f:5d:d2:
7d:0d:2e:2e:63:bb:0d:9e:00:db:c0:ef:16:46:aa:bc:06:f2:
14:5b:43:97:c0:81:fb:19:f5:5e:24:44:93:a0:88:28:e0:e9:
02:ac:ec:9f:5c:d3:5d:fa:c3:ba:78:fc:ba:53:18:5f:d5:77:
80:f7:07:ba:70:4a:d9:d1:11:f9:ce:7c:da:0d:e2:87:af:c5:
22:78:61:18:9f:35:ec:b8:a7:15:87:3c:fd:73:0a:87:a2:50:
b1:48:5a:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:52 2023 by rpki-client on console-fra.rpki-client.org