Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/afpcIJA5RNGF2rMtet8j9XpzySc.roa
File: afpcIJA5RNGF2rMtet8j9XpzySc.roa (raw, json)
Hash identifier: aB6dYqtUBRAqg7C6PVAxQ+8WMdXk7XgBRmjskHmSRiA=
Subject key identifier: 69:FA:5C:20:90:39:44:D1:85:DA:B3:2D:7A:DF:23:F5:7A:73:C9:27
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 170E
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/afpcIJA5RNGF2rMtet8j9XpzySc.roa
Signing time: Sat 22 Oct 2022 05:30:59 +0000
ROA not before: Sat 22 Oct 2022 05:30:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 119.77.144.0/20 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5902 (0x170e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 05:30:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=69FA5C20903944D185DAB32D7ADF23F57A73C927
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:52:52:17:39:7a:7b:45:8f:7c:84:77:32:37:
3c:9f:10:00:b5:5e:8e:c8:e0:71:c3:91:e1:4d:5d:
4f:ed:6a:a2:e8:ba:11:e8:9d:c9:82:55:52:cb:ac:
b2:4d:93:03:c2:d4:d0:38:5a:57:ea:fb:ea:cc:ca:
40:c8:6b:cb:42:5c:6d:c4:d3:4f:32:99:06:45:6c:
09:94:10:84:6b:ef:dd:99:94:45:de:e9:e1:f3:79:
08:31:3d:db:3b:da:76:75:ae:c2:9d:ed:fe:1b:a7:
e5:71:00:22:e4:c0:7a:c4:f7:71:65:f2:a3:a2:e9:
51:85:b2:ab:12:d1:42:4b:d9:87:88:75:90:31:cd:
66:c3:f7:16:a8:d2:19:4f:ca:67:2f:9e:cb:8c:f1:
89:37:fb:a9:38:c8:9e:6b:ea:90:13:38:54:e6:5d:
c9:47:a7:c8:b1:72:c7:45:21:f8:3e:5a:d8:f5:cd:
36:35:b5:0b:e6:2c:b5:06:b5:f1:48:65:41:e9:8b:
05:bb:c3:0a:4e:13:0d:0d:3f:37:8f:da:61:6d:e9:
6d:f9:9d:38:87:77:88:00:53:fa:f6:ff:d9:bc:f1:
d1:84:8c:4a:e4:29:ef:2e:8b:7d:89:6d:af:20:ff:
63:c4:6c:24:97:16:55:81:d8:92:bc:91:c5:5b:80:
5f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:FA:5C:20:90:39:44:D1:85:DA:B3:2D:7A:DF:23:F5:7A:73:C9:27
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/afpcIJA5RNGF2rMtet8j9XpzySc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.77.144.0/20
Signature Algorithm: sha256WithRSAEncryption
8e:c2:39:a1:65:f2:02:6e:61:f2:c5:5c:6e:61:ce:de:09:ef:
0a:26:f0:3f:f9:6b:2d:8d:38:25:3f:86:c5:3a:cd:aa:83:18:
9c:ba:87:b2:ac:0d:a6:61:2c:58:a6:cb:82:61:eb:6c:8c:be:
41:9e:aa:3c:42:64:f4:a4:7f:45:96:bd:b2:7e:1e:02:97:60:
7a:6f:37:d9:50:c1:e3:b7:89:7d:03:e1:26:fd:c6:d9:aa:61:
d1:c0:8f:49:5d:ce:17:c0:30:2d:17:a1:7a:b4:44:ef:d4:e1:
ae:15:1e:1d:18:5e:0a:9b:4a:97:b3:35:19:3b:5d:99:cc:22:
2d:63:29:5a:27:00:a1:74:6e:dd:5f:e1:52:87:94:61:86:1b:
3b:47:4f:4e:47:a8:54:fd:2c:f3:43:b6:b1:05:19:17:f7:e7:
93:67:f6:96:54:6a:6c:09:ba:bf:8c:0f:85:8e:34:ae:cd:55:
23:5b:45:58:a8:9c:1b:b6:35:ad:b8:ac:3a:ac:16:70:56:82:
9f:3e:2d:cb:91:23:1c:bc:eb:67:25:0f:99:4a:20:8d:77:cc:
fc:23:d3:5a:2d:f5:ce:47:12:07:32:fa:30:cd:48:49:3b:a4:
c6:28:a9:d0:89:46:b1:21:86:a5:ce:46:38:1f:9a:89:51:f2:
65:a2:22:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org