Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LRpkHR1elMAkGHEACX--Lduxz5g.roa
File: LRpkHR1elMAkGHEACX--Lduxz5g.roa (raw, json)
Hash identifier: Xd4ExMm0QrFEO4/Z4lqKOOYntsSFtDEHz3N5LuNc1vw=
Subject key identifier: 2D:1A:64:1D:1D:5E:94:C0:24:18:71:00:09:7F:BE:2D:DB:B1:CF:98
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0AF4
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LRpkHR1elMAkGHEACX--Lduxz5g.roa
Signing time: Tue 29 Sep 2020 10:07:49 +0000
ROA not before: Tue 29 Sep 2020 10:07:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 61.58.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2804 (0xaf4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:07:49 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2D1A641D1D5E94C024187100097FBE2DDBB1CF98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b9:30:08:60:89:85:2e:9d:c2:4f:4a:56:84:
ed:fe:a7:30:8d:26:d3:41:4b:25:72:33:b9:29:3a:
a3:77:72:c2:46:ca:34:96:29:5d:28:07:26:8f:16:
1f:92:6b:ec:95:fd:7d:ef:df:88:ad:f8:bd:73:17:
52:24:a1:66:b4:d0:5f:41:15:3b:d2:a9:38:93:6c:
a0:5c:d2:a4:1b:3f:bd:ed:c5:62:64:46:9f:9a:fd:
0a:a6:2b:30:25:63:1d:a9:a6:8a:1a:99:1e:70:ff:
58:90:90:b0:57:cd:0e:59:24:77:c7:20:2e:12:76:
99:29:d1:7d:d7:71:fa:41:d8:96:f6:9a:31:33:91:
23:93:02:60:ec:e8:64:74:06:5c:37:12:97:ed:c1:
eb:4d:65:7a:10:61:28:b8:df:e0:7c:cd:78:b7:4e:
ce:a4:8c:86:e9:9b:de:a4:d6:35:a8:f7:e9:e2:20:
11:60:50:87:1b:03:29:f6:72:be:27:ac:f3:48:7e:
2f:70:b8:16:db:19:b6:bd:bb:dc:1c:8a:e6:c7:15:
d2:c0:12:09:fb:da:a0:10:70:73:3d:e0:14:39:87:
a0:8e:14:9f:d4:b9:e8:f7:2d:9f:6c:3e:18:61:56:
d0:3e:8c:2c:e7:4d:9d:8e:27:61:9c:0c:3c:1b:b8:
e5:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:1A:64:1D:1D:5E:94:C0:24:18:71:00:09:7F:BE:2D:DB:B1:CF:98
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LRpkHR1elMAkGHEACX--Lduxz5g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.120.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:9a:e6:56:b8:c7:84:ae:e5:41:89:fa:f3:01:aa:15:ab:99:
f6:12:4d:b9:e8:a2:eb:58:bf:70:68:1a:27:3a:88:11:fd:b9:
2d:d6:76:ba:c5:1d:9d:e5:b7:c7:ba:be:85:1a:d6:e1:77:28:
8d:80:e1:13:d3:da:2c:cf:9e:58:50:c2:83:6a:1b:5b:34:d0:
28:1d:98:18:32:dd:ea:2b:7b:ae:10:86:d9:54:e8:2f:08:fa:
13:bb:60:21:d9:a6:a2:f0:3d:a9:d0:26:5b:df:ba:0b:ee:67:
5e:2d:c1:58:3f:b6:5b:92:3f:ae:54:2a:6d:e8:a0:5d:80:31:
e2:0a:1b:70:46:2a:76:71:ad:79:ba:3b:d9:c4:62:40:62:39:
d2:a4:93:45:a9:bf:7f:aa:f7:37:d3:8e:7b:73:9d:07:fe:d0:
af:b6:a1:c8:ed:63:30:63:62:22:53:95:ef:0c:ed:2f:bb:bd:
5b:bb:f2:71:9a:62:7b:fc:76:d6:14:a9:04:7d:61:c8:0d:8d:
90:89:0d:80:4f:4d:9b:de:a9:65:f7:f3:1a:4c:c0:2b:28:43:
80:9b:c4:27:95:3a:c3:3e:16:08:47:45:da:b7:68:f8:ca:01:
87:7f:79:ba:eb:67:d5:bd:4e:ea:aa:1d:98:e4:1e:b1:80:b6:
da:8a:76:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:46 2024 by rpki-client on console-ams.rpki-client.org