Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/swyS0FVI64J4KZFWnupSQoBIHOY.roa
File: swyS0FVI64J4KZFWnupSQoBIHOY.roa (raw, json)
Hash identifier: S4D9FhabvOa47804/AIShikuIji98PEUd9teEpaBu0s=
Subject key identifier: B3:0C:92:D0:55:48:EB:82:78:29:91:56:9E:EA:52:42:80:48:1C:E6
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1280
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/swyS0FVI64J4KZFWnupSQoBIHOY.roa
Signing time: Wed 29 Sep 2021 02:54:39 +0000
ROA not before: Wed 29 Sep 2021 02:54:39 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24163
IP address blocks: 211.76.72.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4736 (0x1280)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:39 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B30C92D05548EB82782991569EEA524280481CE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:1c:fe:37:e3:5f:57:a0:8a:c9:f5:aa:87:55:
78:d2:24:f4:f4:b3:69:27:71:ba:2a:45:64:fe:83:
14:f6:a0:25:f9:ae:8e:40:28:8b:44:04:8c:2b:ad:
18:19:7a:d2:6a:a2:e8:28:e5:9f:8c:d0:7d:38:1d:
db:f5:29:b5:61:7a:01:53:b4:d3:cc:fb:e0:dd:4e:
75:a4:9c:0a:97:a7:2d:a8:e7:57:49:1e:4b:30:31:
41:f5:cc:d0:ce:88:20:ff:71:b5:da:b8:dc:f2:d0:
9c:00:a5:09:b8:12:d3:89:7a:6e:27:d7:63:a4:a1:
77:f8:34:6c:0f:aa:19:dd:11:4b:77:59:dc:44:75:
4f:29:40:0d:4d:1a:73:cc:43:54:23:b4:c6:0d:05:
76:73:eb:a5:b5:0f:af:25:78:97:31:13:3c:51:ff:
8e:64:3b:b9:75:30:37:76:05:0e:68:b3:b1:b4:79:
2d:bb:5a:5a:1f:64:a2:46:04:03:2f:ad:48:78:bf:
b9:68:76:31:14:7a:be:72:ba:95:d3:de:b4:b0:c3:
32:ff:5f:d1:79:8d:9c:56:26:78:24:36:87:2a:b8:
73:dc:cd:04:6d:2b:3e:62:01:3e:0e:f4:63:64:35:
6f:5b:e3:4d:a6:84:0e:ea:19:8d:04:d5:fe:f7:20:
37:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:0C:92:D0:55:48:EB:82:78:29:91:56:9E:EA:52:42:80:48:1C:E6
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/swyS0FVI64J4KZFWnupSQoBIHOY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.72.0/22
Signature Algorithm: sha256WithRSAEncryption
39:26:60:43:9d:28:78:f2:3d:ae:b6:69:9c:26:d1:e5:76:35:
47:30:67:db:fb:be:8f:0a:65:51:a7:b4:bc:75:c5:89:bb:09:
96:69:b6:c2:bd:8b:6f:b5:b6:81:94:d7:87:8d:8a:60:86:4e:
6d:57:a0:67:40:c5:62:a0:66:79:d1:0c:32:4c:3e:69:fb:ce:
99:fa:80:b1:de:0a:e7:6b:e1:c2:7c:27:21:48:54:6b:c7:0a:
de:4b:9b:d6:13:ed:e0:f2:b0:93:28:da:22:b7:62:5a:c1:06:
6a:3c:55:b0:bb:bb:45:48:8b:2b:50:d5:e6:22:25:cc:39:ae:
07:03:ab:8d:2e:13:90:b4:87:ab:36:9b:97:e1:bc:7d:51:17:
4e:47:3f:40:43:95:b8:8a:99:23:f4:dc:c2:f0:f2:d3:cc:72:
11:f8:1b:3b:09:d7:04:bd:ac:f7:ff:a7:56:f5:b3:ea:55:f9:
4d:73:fe:db:2f:ab:92:2f:bc:de:65:81:38:1e:37:65:95:15:
fe:c7:bd:0c:a3:1d:68:bc:10:06:e9:f9:38:8c:b2:ff:45:f0:
28:84:3f:c6:28:63:aa:6b:0d:a7:ea:24:c2:a9:b5:ab:b1:c8:
2c:70:44:25:ef:82:e3:14:e5:c1:f7:c4:3b:bb:5f:c0:42:3f:
f1:c5:f4:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:52 2023 by rpki-client on console-fra.rpki-client.org