Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xHpg_kk_423EZble1Nre2w4AMys.roa
File: xHpg_kk_423EZble1Nre2w4AMys.roa (raw, json)
Hash identifier: zfwICkQ/wJeOwYkrJPCswNZI0fWUovipUFrk/XAQsSc=
Subject key identifier: C4:7A:60:FE:49:3F:E3:6D:C4:65:B9:5E:D4:DA:DE:DB:0E:00:33:2B
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1249
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xHpg_kk_423EZble1Nre2w4AMys.roa
Signing time: Wed 29 Sep 2021 02:54:25 +0000
ROA not before: Wed 29 Sep 2021 02:54:25 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24165
IP address blocks: 115.165.200.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4681 (0x1249)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:25 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C47A60FE493FE36DC465B95ED4DADEDB0E00332B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:d3:37:b2:64:f3:f5:23:b1:15:41:84:96:b3:
86:89:b0:64:ed:0d:a3:37:02:dc:9b:aa:e6:72:60:
25:19:59:b3:86:6c:de:35:eb:57:97:bf:be:b2:67:
0a:a1:a4:6f:52:69:aa:b8:dc:c3:e3:b6:17:69:d1:
47:e0:ac:9e:d6:b9:f7:a2:e7:38:40:92:ad:e0:21:
4d:52:a5:94:3a:e2:a7:27:fb:cf:68:27:36:fb:1d:
08:fa:48:2e:f5:de:8c:03:a0:aa:52:7d:f0:b5:7b:
cf:ca:23:1c:7c:50:c7:ff:37:9e:49:de:33:1b:63:
b2:59:85:d5:51:d7:5e:f6:aa:bb:f6:b7:44:81:ee:
bc:ea:5d:6a:c8:69:ce:c2:da:20:bd:29:1c:c8:58:
0f:ae:fe:fd:c0:2c:1e:0d:48:30:5f:66:23:7c:8a:
f0:a1:71:bc:26:9a:47:b1:b0:f3:5f:7e:6a:c1:a5:
41:d2:c2:64:4e:07:d5:84:ea:70:a3:d1:ed:57:a5:
a2:63:b4:87:4b:70:fe:21:7e:ff:76:3c:c0:ed:24:
dd:0e:15:b4:19:8e:a2:1b:fc:c1:4c:54:a1:bb:e0:
62:c6:27:25:b0:63:f9:d8:4c:46:70:45:30:e4:97:
a7:6b:f5:75:54:3b:b3:6b:36:84:9b:e0:70:b2:bf:
4b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:7A:60:FE:49:3F:E3:6D:C4:65:B9:5E:D4:DA:DE:DB:0E:00:33:2B
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xHpg_kk_423EZble1Nre2w4AMys.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.165.200.0/21
Signature Algorithm: sha256WithRSAEncryption
15:02:75:9f:e4:b9:76:59:5c:a3:bc:8e:19:74:cc:35:49:34:
71:79:a8:f8:78:96:7f:53:81:29:49:6e:19:95:09:64:bc:bc:
7d:e2:19:e3:74:20:8b:d1:09:c6:50:28:10:ab:aa:f3:ee:d6:
9b:87:45:6e:b1:9a:38:17:f8:18:a6:e0:79:58:c4:f0:c5:08:
f4:a3:56:16:ba:61:99:39:e4:9a:2c:4f:64:4c:be:cc:b3:e0:
65:e1:61:3e:04:8d:2c:7e:bc:97:58:ca:39:8a:36:48:a6:e0:
72:05:13:d3:08:68:2e:f4:a4:76:c0:5b:2f:72:49:17:8f:77:
53:e4:6e:d3:96:dc:6a:bf:ec:c2:a4:b8:8c:03:31:92:6c:22:
a1:37:a2:df:c6:9d:07:eb:9d:44:de:fe:13:14:e4:c8:1f:2e:
83:8f:26:19:0d:b3:a8:67:90:82:f0:46:fa:dd:10:a6:00:b1:
73:37:60:29:4d:58:87:73:05:a6:39:4d:cd:24:db:54:ba:64:
aa:3a:4f:df:d9:90:80:13:71:c7:5f:d8:8c:05:34:03:a5:da:
11:41:00:4b:2f:d9:78:65:7b:71:27:e3:dd:dd:cd:03:8b:9f:
83:88:cb:a4:93:32:5c:2f:de:15:16:25:97:24:4d:53:66:c4:
98:2b:b4:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:50 2024 by rpki-client on console-ams.rpki-client.org