Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JNwq2GGH_dD30O2a46Yf_6KgHqg.roa
File: JNwq2GGH_dD30O2a46Yf_6KgHqg.roa (raw, json)
Hash identifier: Hv9j1wEu2o/adxA9jnvmdR24PfvCfMIY4b+xFCyGoSw=
Subject key identifier: 24:DC:2A:D8:61:87:FD:D0:F7:D0:ED:9A:E3:A6:1F:FF:A2:A0:1E:A8
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1B4E
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JNwq2GGH_dD30O2a46Yf_6KgHqg.roa
Signing time: Tue 21 Mar 2023 06:58:18 +0000
ROA not before: Tue 21 Mar 2023 06:58:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24165
IP address blocks: 61.58.112.0/21 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6990 (0x1b4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Mar 21 06:58:18 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=24DC2AD86187FDD0F7D0ED9AE3A61FFFA2A01EA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ff:f7:2d:1e:c7:e9:00:18:7a:3b:b5:8d:0c:
87:53:d6:84:b4:5f:97:71:62:13:d0:a6:b4:66:f9:
04:04:3f:50:0a:31:bc:e1:97:cf:80:a6:00:45:d5:
14:51:9b:e9:05:72:c4:54:4b:57:a3:1d:08:a0:7e:
46:18:68:18:75:0c:59:3e:03:fe:2b:a3:3f:f0:c6:
b6:9b:c9:44:07:52:55:26:64:2a:e8:d1:0c:97:00:
19:d3:b6:99:fc:0f:00:3a:87:e7:6e:b8:b9:8d:1e:
8f:31:40:76:a1:d1:81:e0:9a:2d:ad:59:d4:82:85:
b9:0b:e5:28:32:ad:52:09:9e:5c:b0:d2:ce:9b:9e:
bf:1d:af:49:3b:16:56:bf:05:64:9e:47:62:47:b7:
5d:df:9f:a1:a5:cb:d6:43:3e:c4:25:e7:21:28:69:
d5:0a:90:04:50:b7:39:cd:a3:c0:d8:dc:3e:9a:1c:
51:b5:14:9e:be:fb:d2:63:ad:a2:0b:3c:76:d3:5c:
69:e5:62:d6:9f:28:2b:e9:0a:95:b5:be:bc:75:7b:
fc:8d:aa:15:88:31:8f:ca:48:1c:69:55:0e:3c:be:
79:15:20:08:42:04:82:d0:d5:7d:56:e3:9a:77:c8:
9e:1b:89:e7:f8:a7:a6:e8:23:80:10:31:f5:ce:9b:
c3:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:DC:2A:D8:61:87:FD:D0:F7:D0:ED:9A:E3:A6:1F:FF:A2:A0:1E:A8
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JNwq2GGH_dD30O2a46Yf_6KgHqg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.112.0/21
Signature Algorithm: sha256WithRSAEncryption
3c:02:33:e4:08:d4:5d:c0:1e:2f:23:41:a9:5e:e9:21:71:9b:
7c:ad:ed:2b:f7:57:fd:06:27:0b:97:a8:be:94:36:af:ad:d7:
d4:08:a8:32:d5:52:46:03:6c:44:e8:ff:40:97:fe:60:33:59:
e3:ae:da:6d:e9:7f:36:cb:7a:1d:25:7b:c3:43:7c:16:67:31:
01:83:f1:21:68:45:f7:14:19:43:26:d7:e2:c5:09:7f:10:f4:
93:84:b4:a2:b8:9a:92:85:0e:6c:0d:e1:15:f2:39:dd:92:6a:
a8:29:e0:1a:09:ad:70:0a:8d:d0:4e:eb:d8:9e:6b:7e:f5:60:
0e:22:31:6d:cc:53:1b:fc:8d:17:43:ee:e8:65:7b:c4:8f:1a:
f8:c1:4a:ed:19:a0:98:6e:64:2a:2e:35:1c:49:94:80:98:77:
1d:47:e1:ca:b5:76:05:c5:53:72:08:c7:db:68:d3:12:8c:63:
33:90:30:9a:0d:a2:36:5d:95:3e:c3:f5:ad:c5:40:1b:28:d9:
e5:a7:2f:89:e6:56:81:7a:3a:48:be:23:d8:9f:bf:47:79:3c:
87:e1:18:fc:90:47:59:86:13:d4:68:a8:2a:ea:6a:d7:77:44:
85:82:90:32:6d:7d:b9:3d:83:a7:01:b6:60:12:84:ed:36:98:
f8:3b:d4:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org