Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/V2ZfS-iBQRL6NyCXoBkWgMj9iIk.roa
File: V2ZfS-iBQRL6NyCXoBkWgMj9iIk.roa (raw, json)
Hash identifier: Cf5sLkoDxPDmFoj/yUrqNkNql96Kk5EXruTOHwl9V/w=
Subject key identifier: 57:66:5F:4B:E8:81:41:12:FA:37:20:97:A0:19:16:80:C8:FD:88:89
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1A20
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/V2ZfS-iBQRL6NyCXoBkWgMj9iIk.roa
Signing time: Sat 22 Oct 2022 06:18:50 +0000
ROA not before: Sat 22 Oct 2022 06:18:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 61.64.28.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6688 (0x1a20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:18:50 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=57665F4BE8814112FA372097A0191680C8FD8889
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:72:7d:23:8e:7c:01:83:da:38:50:40:ba:91:
28:94:c0:17:fc:e2:3f:ea:56:8f:88:bd:c8:1d:15:
12:57:08:73:4f:9e:6c:86:e2:a0:6c:ef:25:02:1e:
46:59:e6:0a:63:15:ce:a4:d5:72:5b:a6:98:f9:db:
a2:dc:d4:cf:ff:92:41:09:1e:7c:8d:51:18:85:4e:
d8:08:73:ae:38:fb:da:c0:49:57:83:33:3d:23:04:
9d:31:06:6e:98:be:93:dd:9c:da:60:ff:d2:8f:87:
5a:ec:35:45:b0:2a:89:aa:8f:c0:34:8c:9a:3d:76:
99:5a:b4:aa:be:f7:6c:12:6f:42:1f:8f:80:5f:f0:
0a:d9:ed:65:93:6d:56:64:0c:60:e2:f3:cb:bc:2a:
f7:1b:d3:89:0a:6a:bb:80:ee:e8:11:2d:39:14:52:
fe:85:eb:a2:5f:14:c0:4b:df:a3:8a:b1:9e:ab:3f:
6c:bc:9d:46:ac:06:77:ad:1a:98:c3:89:9a:1e:11:
cc:32:aa:92:ac:89:2f:48:4b:a5:c8:f6:a3:ac:07:
be:a6:f7:43:c8:3f:b1:88:a2:d9:99:19:c6:57:57:
db:b0:eb:04:16:ec:53:37:56:65:35:80:d2:90:d0:
69:49:0d:b1:b3:d0:0c:84:55:3a:87:83:5c:98:2d:
5b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:66:5F:4B:E8:81:41:12:FA:37:20:97:A0:19:16:80:C8:FD:88:89
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/V2ZfS-iBQRL6NyCXoBkWgMj9iIk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.64.28.0/22
Signature Algorithm: sha256WithRSAEncryption
13:30:dc:6e:16:c2:0b:be:8d:e4:84:45:a7:40:3b:5e:31:df:
87:fe:68:e1:84:75:f0:ff:a4:1c:f0:a6:57:7d:ce:51:1e:ff:
c9:00:27:c3:b4:1f:98:95:94:a2:a7:94:62:48:de:69:fc:e7:
58:cf:41:cc:88:c2:b8:03:e3:fc:6b:de:0f:a2:b1:ed:8e:16:
8c:ca:11:9c:12:14:95:65:2e:0c:d9:d2:87:7f:1a:a0:af:1b:
66:f4:5e:be:8e:2f:0b:b1:a4:cf:0a:80:fa:1a:78:b1:8e:09:
d9:27:0a:d5:c9:b3:46:b4:7e:f6:46:f2:f5:6b:f3:a6:3e:bc:
6e:28:76:4d:af:50:14:6a:fe:14:13:1c:73:96:0c:2f:b8:d8:
d2:ae:f6:d2:84:61:7d:27:4b:76:8c:8f:9b:dd:f4:d0:1f:d1:
50:29:eb:0c:45:e7:f9:7e:ea:a7:e1:95:31:5b:b9:9a:45:3f:
20:1b:84:79:6b:65:d2:e3:d0:bc:38:00:ca:7b:d5:cd:48:72:
b2:d7:0f:38:9e:1c:b4:03:10:79:6a:4c:af:c7:6b:f6:58:27:
1b:95:5d:08:9d:2c:67:0e:bd:7a:26:b7:45:9e:df:51:67:99:
ea:18:d6:38:32:ac:ad:64:f4:f9:27:32:6e:6f:4b:2e:3a:77:
27:94:7e:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org