Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bDvBnupRECl_--nzy2rhE75oqBU.roa
File: bDvBnupRECl_--nzy2rhE75oqBU.roa (raw, json)
Hash identifier: j2oXIttj/tlV0OeFhUeQJ+3HJsZdkYfQM3DP92xmvzw=
Subject key identifier: 6C:3B:C1:9E:EA:51:10:29:7F:FB:E9:F3:CB:6A:E1:13:BE:68:A8:15
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0F25
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bDvBnupRECl_--nzy2rhE75oqBU.roa
Signing time: Sun 07 Feb 2021 12:33:03 +0000
ROA not before: Sun 07 Feb 2021 12:33:03 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 114.198.176.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3877 (0xf25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:33:03 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6C3BC19EEA5110297FFBE9F3CB6AE113BE68A815
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:74:2f:73:58:f6:ee:81:01:85:85:6d:7f:7e:
51:6d:16:4c:c5:12:ac:cc:23:7f:df:69:1c:f1:1f:
3c:b2:23:22:94:7f:5c:06:ce:3d:cb:c1:78:4a:8d:
62:1c:7e:a3:90:21:2f:9d:b8:36:f6:b1:6a:f3:ba:
0c:3d:e1:dd:47:c6:ec:29:83:8a:47:b4:70:3a:b5:
96:be:10:ee:19:d6:99:f5:c2:48:db:89:bb:7d:6f:
42:58:b2:9d:82:7f:9d:78:ee:b1:e0:8d:c3:f9:f6:
1d:18:37:35:26:f1:39:1f:ff:a3:48:09:dc:e4:a1:
2c:38:57:0f:c7:e3:80:20:d3:9b:54:0d:35:c6:d4:
3c:6b:11:0e:b1:d6:28:de:5c:c7:94:0f:49:3e:97:
1d:f9:19:71:8b:37:09:78:8c:98:21:db:01:5f:81:
7e:b3:79:9b:fe:41:cf:99:e8:26:69:6a:75:be:5e:
c3:b8:c5:fb:81:8d:88:39:ae:ac:2c:db:c3:31:82:
0e:c5:95:05:bf:94:7f:22:c6:ea:02:13:df:a6:d4:
09:d2:be:2c:f8:5f:83:29:c9:a0:08:31:5b:1e:07:
c4:8b:b0:2e:12:cb:76:7a:ea:33:c9:8b:fe:75:e9:
c6:d3:89:03:a9:98:94:1c:e9:3b:d1:f0:62:da:2e:
30:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:3B:C1:9E:EA:51:10:29:7F:FB:E9:F3:CB:6A:E1:13:BE:68:A8:15
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bDvBnupRECl_--nzy2rhE75oqBU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.176.0/21
Signature Algorithm: sha256WithRSAEncryption
1e:57:85:6b:2f:70:3d:d6:62:9d:65:48:fa:f6:5d:09:37:4e:
e5:20:6e:4c:83:07:c7:36:b2:d7:82:ef:ea:22:35:f6:93:99:
7f:70:b0:ec:c7:8d:1f:7d:0b:6e:97:05:20:85:ba:29:03:1f:
21:37:59:12:c6:36:66:56:0b:b0:0c:3f:af:21:f9:2d:b0:0c:
12:73:2e:41:a7:87:bb:38:48:97:04:d4:d0:77:b4:07:7b:94:
f1:41:28:b3:70:36:41:5c:fa:dd:0e:1d:04:05:72:02:ed:f2:
2c:bc:0d:ae:7d:63:bd:b5:3a:e8:56:45:78:12:41:d0:57:3d:
fe:d5:38:e5:f0:24:6d:c8:1c:7d:6b:42:cc:33:5d:5f:0a:7d:
3a:5e:8c:b5:91:0f:b7:19:e8:89:30:46:6d:d8:88:51:05:f7:
19:d3:f5:3d:03:f2:52:1e:a3:18:88:1a:c3:af:a2:71:57:c5:
a9:95:27:fc:9f:69:ec:5c:c5:fd:94:82:17:be:13:47:3c:f5:
54:08:c1:0d:79:01:8a:64:af:b9:a2:1e:fb:22:e3:e5:cc:8e:
4f:85:6a:27:5f:7a:f3:93:bb:a0:0a:9f:e8:76:2c:fb:21:08:
0e:e6:f6:e2:44:cd:33:ad:e2:cd:28:6e:6e:ca:3b:36:db:3d:
7b:1b:8d:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org