Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/mpSRYOFALXQnghdsyhi8isacr_U.roa
File: mpSRYOFALXQnghdsyhi8isacr_U.roa (raw, json)
Hash identifier: VZtWW9cd2G5c3iNGniBWLpeUb1SUdFeTkQj4ObaSLIs=
Subject key identifier: 9A:94:91:60:E1:40:2D:74:27:82:17:6C:CA:18:BC:8A:C6:9C:AF:F5
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1345
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/mpSRYOFALXQnghdsyhi8isacr_U.roa
Signing time: Wed 29 Sep 2021 02:55:34 +0000
ROA not before: Wed 29 Sep 2021 02:55:34 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 119.77.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4933 (0x1345)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:34 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9A949160E1402D742782176CCA18BC8AC69CAFF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:53:dc:b7:f2:4b:d1:f0:35:26:3d:ef:4c:47:
69:af:e8:de:08:eb:94:c8:51:86:72:e0:13:b0:7b:
f1:0e:49:87:bc:da:e3:e8:68:e7:77:d9:f7:4f:2d:
68:d4:02:0f:52:8f:02:1a:93:8d:50:5f:05:4c:7c:
92:f0:83:dc:1f:fb:a4:a1:12:7a:a1:9d:21:5f:39:
08:c3:d2:84:45:87:32:a9:89:1d:53:5f:36:63:4c:
80:d3:2c:b8:5d:18:c6:7a:6f:87:2a:fe:f1:a9:9d:
07:76:d7:11:98:2c:5e:36:d7:bb:30:70:d7:9f:06:
70:cb:d0:50:0f:22:b4:a1:b1:6b:08:b4:05:62:2b:
e2:f2:98:2e:e3:a2:ce:04:08:37:de:de:c9:c3:7d:
37:65:45:c2:97:30:0e:0a:a3:a8:2b:91:e0:1d:49:
7f:e1:5e:44:e2:df:87:d4:39:1b:76:12:d0:3d:2c:
98:61:85:90:eb:11:41:2e:98:63:b1:22:6c:a0:37:
32:c1:73:dc:57:af:f9:11:d2:7a:34:74:a2:c4:f6:
7f:8c:a4:4d:2b:be:3f:55:a3:79:b5:12:af:a7:47:
16:70:0b:ab:4a:c6:a7:2a:c0:a1:c0:36:8d:42:ad:
2a:16:36:a9:69:c4:9e:d1:2d:f1:d7:d7:43:60:82:
30:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:94:91:60:E1:40:2D:74:27:82:17:6C:CA:18:BC:8A:C6:9C:AF:F5
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/mpSRYOFALXQnghdsyhi8isacr_U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.77.190.0/24
Signature Algorithm: sha256WithRSAEncryption
46:c6:ff:d9:30:9a:c6:27:e4:6c:18:bf:01:8a:5c:c8:46:99:
59:62:ff:fb:d0:e5:38:f0:d1:1b:6b:ce:b6:13:6f:71:a7:56:
00:20:60:cb:12:7b:b6:84:1f:da:07:86:92:22:e0:42:99:c8:
d7:83:c3:7b:9a:8d:bf:c8:02:5f:05:53:c4:62:14:56:1e:1c:
39:f1:71:d6:0e:b3:14:56:17:51:51:c1:1c:91:12:4e:61:c0:
67:7b:52:89:ba:d3:4f:f1:2d:f5:3f:16:4d:d7:08:81:41:a7:
10:3c:19:13:90:14:ed:00:c1:fe:14:c9:65:66:2b:a6:d4:97:
df:7f:67:6d:f0:34:5d:fb:c0:80:74:b0:a1:31:d0:7b:8d:f0:
fb:fa:1a:04:8c:a3:fb:53:df:83:63:1e:9b:76:df:2b:94:14:
c7:fa:49:b5:88:0e:4b:56:1d:79:1f:71:b4:07:13:69:62:5c:
7e:91:b2:bc:22:65:b1:25:ed:e2:25:05:49:11:ac:e2:f3:a6:
99:27:8e:55:80:52:76:ed:e6:f7:37:d5:f5:18:42:cf:b6:d9:
64:ec:f7:8c:1b:de:9c:c8:6f:2c:9c:b6:a6:59:00:a7:6a:42:
f7:8e:dd:f8:42:7c:6d:bd:98:8f:4a:46:1a:4c:be:25:f0:51:
15:52:3a:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org