Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/zQWw9QMuV8ESKfvBYX9hQbm_pUI.roa
File: zQWw9QMuV8ESKfvBYX9hQbm_pUI.roa (raw, json)
Hash identifier: peVuln8e3J7/e/XsOvZU/NY6cxdmbhpOrTDzZr/Zf3Y=
Subject key identifier: CD:05:B0:F5:03:2E:57:C1:12:29:FB:C1:61:7F:61:41:B9:BF:A5:42
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0F67
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/zQWw9QMuV8ESKfvBYX9hQbm_pUI.roa
Signing time: Sun 07 Feb 2021 12:34:01 +0000
ROA not before: Sun 07 Feb 2021 12:34:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 122.254.48.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3943 (0xf67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:34:01 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CD05B0F5032E57C11229FBC1617F6141B9BFA542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:50:c2:9b:55:77:f6:8f:2a:a6:cb:4c:d5:14:
74:6d:d2:a2:31:fc:e5:47:52:4b:91:aa:f3:63:3f:
ed:47:e2:41:7e:c4:85:76:08:94:ea:a3:c9:f1:b4:
99:fe:d1:24:d3:91:8e:12:9e:9f:eb:27:40:71:ec:
51:da:bd:af:30:4d:8a:17:2a:d5:9a:8e:e8:85:50:
56:68:ef:84:04:91:76:56:b9:b3:24:bf:e0:24:c8:
34:b9:c2:67:3c:7e:55:b4:f8:41:d9:d8:4b:88:04:
00:67:8b:eb:cb:68:93:bd:02:ce:e8:65:a6:68:47:
7f:17:8b:6f:c6:ce:89:c0:bf:38:83:b9:57:84:44:
6a:05:3c:2b:01:a3:9a:c5:18:fa:7d:04:23:f1:fe:
e2:64:15:9f:03:e4:97:61:a0:af:5d:30:7d:07:e5:
c1:60:1f:9c:9f:0f:2e:12:11:0e:86:a5:10:98:a3:
dc:4b:ef:99:e3:99:e9:83:be:b5:36:bc:6f:6b:13:
70:db:7a:29:7e:94:ce:61:3e:56:f5:04:c7:d0:91:
a6:f1:6b:09:0c:e1:b9:06:a3:a5:ef:fb:90:f0:ae:
a1:ff:65:66:cd:c4:2d:29:46:4d:4a:4f:d5:f4:87:
23:dd:d8:2d:ea:1e:85:6b:a6:63:02:76:96:b9:74:
38:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:05:B0:F5:03:2E:57:C1:12:29:FB:C1:61:7F:61:41:B9:BF:A5:42
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/zQWw9QMuV8ESKfvBYX9hQbm_pUI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.254.48.0/21
Signature Algorithm: sha256WithRSAEncryption
19:8c:28:d2:1b:24:e8:c8:54:51:b4:89:ce:9a:96:b3:f6:5c:
ef:fa:2f:b8:91:eb:53:ab:57:41:62:41:fe:cd:20:d9:fb:2d:
37:1d:a8:69:d5:82:74:9e:9a:f4:ae:66:bb:ff:95:5c:0f:f0:
32:e2:95:de:cd:11:7b:ae:49:66:b2:13:15:7b:45:2f:56:0e:
f2:83:e8:4f:58:61:b0:87:b8:eb:d4:0a:3e:f1:51:ca:0a:dc:
70:00:28:56:74:b3:f2:57:fa:fd:bb:60:87:88:d7:08:74:0d:
8e:5e:65:c7:40:39:67:ea:1e:59:03:68:a2:53:45:85:b3:7d:
1b:af:03:5a:22:27:8e:24:78:05:c2:89:e0:75:8a:64:00:4c:
49:70:7b:04:35:20:4d:1f:9f:c8:14:a1:82:d7:2f:0b:9f:dc:
86:7b:cc:e8:a8:72:e4:99:1d:8e:1e:50:d1:61:f7:47:17:b8:
b0:47:00:9a:37:28:fa:c5:97:c5:fa:33:9f:5b:ca:9c:c3:c0:
60:07:ae:68:0d:0b:6b:fa:18:80:1f:97:b4:cc:21:c7:92:ff:
44:28:42:3f:1e:7d:bd:4d:78:89:d6:c3:19:3c:99:af:6e:ab:
d0:01:d5:6e:7b:a1:c6:91:5d:a4:0b:24:e2:75:d3:d8:bb:7d:
71:78:8b:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org