Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-mdihS8tSfMN_meNr3Nox1NvgKs.roa
File: -mdihS8tSfMN_meNr3Nox1NvgKs.roa (raw, json)
Hash identifier: CWzAh8sI4t30S2ehxrZe+Q4xtbdPiCuNaqRVVDQU7Gk=
Subject key identifier: FA:67:62:85:2F:2D:49:F3:0D:FE:67:8D:AF:73:68:C7:53:6F:80:AB
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1212
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-mdihS8tSfMN_meNr3Nox1NvgKs.roa
Signing time: Wed 29 Sep 2021 02:54:10 +0000
ROA not before: Wed 29 Sep 2021 02:54:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 119.77.128.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4626 (0x1212)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=FA6762852F2D49F30DFE678DAF7368C7536F80AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:67:95:a2:9f:2f:e7:9a:d7:81:a7:cd:61:5e:
81:e1:75:e5:63:25:d7:43:2b:b5:03:56:89:3f:1d:
f5:89:4e:dc:8a:31:28:2b:f8:42:f0:b9:57:7d:e4:
e2:fa:46:4d:d7:7b:75:6a:08:1f:9e:83:10:c8:92:
36:63:1f:61:b7:7b:c1:26:d5:93:4d:ed:79:0a:b6:
49:7f:cf:9f:69:1f:49:0f:cf:f6:af:74:c5:78:ab:
47:d6:86:5e:82:9f:ad:f2:93:50:8a:f6:ac:87:cd:
05:12:ee:37:a0:f9:c5:94:c8:e6:80:76:e3:be:fc:
50:ae:c3:f4:b3:d0:71:af:25:a5:9c:d1:e5:fd:6c:
27:65:05:e4:f2:0a:9e:e0:f6:b0:57:c6:e4:b2:f3:
dc:97:0c:35:6a:ba:2a:5c:39:2f:67:14:fb:75:30:
87:af:10:bf:05:06:ca:50:d3:27:20:4c:ce:2f:32:
9d:74:31:6c:5f:34:ce:3e:27:a2:e7:12:a5:e9:df:
ab:54:fd:a7:ca:de:db:c9:ec:2b:b8:6c:dd:63:f0:
b1:66:c1:39:e8:a0:cd:1a:ff:7a:c4:c2:4f:78:df:
e8:2f:31:76:a4:1f:30:19:d8:c1:c2:c5:2a:2a:83:
ef:43:c1:d7:4c:62:9d:8b:c8:bd:22:cf:6e:40:ef:
f2:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:67:62:85:2F:2D:49:F3:0D:FE:67:8D:AF:73:68:C7:53:6F:80:AB
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-mdihS8tSfMN_meNr3Nox1NvgKs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.77.128.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:c7:97:a4:84:5d:1c:5c:c1:28:05:65:bb:24:75:6a:2a:84:
79:89:48:a6:c7:2d:fd:95:f9:de:11:3c:86:2a:d1:72:4e:46:
33:fa:c2:9f:6b:74:82:89:26:e9:2c:a2:42:e7:0d:5e:74:d9:
1a:90:e2:7d:f2:7d:7f:9e:ac:e8:6a:62:51:59:6e:72:67:4f:
28:35:e5:99:67:98:25:9e:b2:b7:41:f8:3a:fc:ab:e4:d8:0b:
ae:78:3e:80:a9:48:85:3d:2a:eb:d8:9c:02:b7:6b:3d:f0:42:
68:7d:b4:90:c6:86:f8:13:ca:7d:af:6d:d1:82:0d:46:43:a0:
22:b1:a1:a4:30:62:19:2c:8e:80:f6:09:d9:fd:0a:71:db:b4:
08:1a:c9:d2:0d:5c:3c:7c:9e:f8:6b:5c:8b:61:83:40:9e:ac:
56:98:43:a9:24:f4:4d:68:e4:34:85:d8:69:f5:30:54:6e:84:
d8:bf:02:e0:77:25:43:14:d6:39:62:5e:6a:c7:79:47:09:22:
bb:da:6e:ab:6c:79:e1:ba:33:9a:41:0d:38:27:e3:2b:10:9c:
39:40:95:9a:8f:1e:d8:ce:0a:8f:3f:3d:d6:c8:99:25:71:08:
7b:2e:d2:b3:04:2d:2d:c9:28:c8:63:17:30:60:23:fb:c6:60:
48:f7:36:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org