Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/upumxP5ncYba1EcYdVPizWnm75I.roa
File: upumxP5ncYba1EcYdVPizWnm75I.roa (raw, json)
Hash identifier: 8FHRwEdWfr/auHD2afIt9OjQwyoSbJNUUBkLvgAlH6U=
Subject key identifier: BA:9B:A6:C4:FE:67:71:86:DA:D4:47:18:75:53:E2:CD:69:E6:EF:92
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/upumxP5ncYba1EcYdVPizWnm75I.roa
Signing time: Thu 15 Sep 2022 02:35:51 +0000
ROA not before: Thu 15 Sep 2022 02:35:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4662
IP address blocks: 122.100.64.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:35:51 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BA9BA6C4FE677186DAD447187553E2CD69E6EF92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:53:c2:4a:d3:2f:bb:83:37:f0:c9:e4:47:87:
8a:25:84:c1:14:83:d3:9e:57:11:0d:5c:53:53:4a:
0d:fb:8d:ba:99:84:26:39:39:7c:c0:6d:c0:59:e2:
29:3f:38:e5:d7:80:9f:b2:81:f4:75:04:f6:1e:a7:
20:a6:6e:24:6f:30:fa:cf:69:8a:d9:1d:a1:c3:22:
0c:20:57:fa:a8:3e:fb:70:54:a3:b6:55:4c:77:16:
9c:15:57:c9:3e:77:5a:ac:c6:a3:60:e5:d2:88:92:
4f:c8:36:c4:0a:2c:f6:0b:72:22:40:90:c1:2c:cf:
60:45:c1:f1:e5:d4:4b:54:2b:5c:12:d7:be:b3:f6:
4a:0b:23:49:d5:31:90:ee:de:4d:61:a5:fe:7b:66:
5b:87:ed:b6:1d:8e:0e:85:fb:e8:37:35:ed:11:ec:
ec:bf:bd:3c:67:94:65:d4:e8:09:be:57:c9:d9:cd:
63:d8:cd:1f:c2:37:bc:cf:65:7d:34:2a:a6:c7:cd:
f1:62:7c:52:37:fe:72:48:d2:86:4a:c1:bd:03:e1:
3a:4f:31:ae:66:38:b8:80:59:58:db:05:f2:4c:f3:
d4:38:db:41:ba:2b:1a:78:1a:cc:d8:30:13:f8:df:
3e:4a:ad:16:16:4d:8b:5d:b1:ed:8c:02:00:9d:44:
2c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:9B:A6:C4:FE:67:71:86:DA:D4:47:18:75:53:E2:CD:69:E6:EF:92
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/upumxP5ncYba1EcYdVPizWnm75I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.100.64.0/18
Signature Algorithm: sha256WithRSAEncryption
68:28:1f:4a:dd:3c:f6:67:54:09:82:fe:bf:de:8c:23:5a:96:
9f:ae:2b:8c:c2:a7:d0:c0:2c:0e:38:0d:46:d6:39:35:11:c0:
aa:2d:23:55:63:78:a1:f5:50:73:b1:b6:77:8e:b2:2e:39:f2:
14:d2:fe:56:98:cc:84:0d:0d:d2:33:fd:ec:d1:05:ef:f0:ce:
b3:0a:66:87:31:c8:aa:29:c2:1a:cf:45:0c:73:f8:b9:0d:04:
d7:c2:68:bf:63:8c:e6:56:3d:16:c5:67:b6:6f:bf:ad:31:89:
31:64:2c:c4:21:97:47:a0:44:9a:74:d6:6b:72:09:f1:03:0c:
3d:a3:62:e2:50:0d:01:c3:43:29:af:53:49:26:d7:5d:ac:d0:
ce:a7:1d:fc:9e:62:26:25:b5:f1:44:fb:6b:90:1c:8d:41:8f:
3d:30:7c:b5:d0:c7:08:4e:7b:e7:48:1e:c2:c4:00:89:7b:af:
21:c1:87:cd:5e:ce:cd:f4:2d:58:76:b7:9d:25:6e:aa:c9:b1:
3a:e7:17:8f:9c:22:c4:a9:39:6e:94:f3:f2:d7:04:b0:70:8a:
b5:75:ca:7b:02:ce:a0:f9:81:96:bb:7a:b9:2c:1b:3f:08:58:
ae:3f:0d:82:a1:b6:04:ea:99:11:44:6f:49:76:9b:21:53:c8:
6c:1d:7b:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:50 2024 by rpki-client on console-ams.rpki-client.org