Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/w02ODZ70AKVmP58tIOVxadq3SXU.roa
File: w02ODZ70AKVmP58tIOVxadq3SXU.roa (raw, json)
Hash identifier: HGkzRU3ylbQAKxBHh9lgpHr6K3xt/mzY+oUsPMKGaxY=
Subject key identifier: C3:4D:8E:0D:9E:F4:00:A5:66:3F:9F:2D:20:E5:71:69:DA:B7:49:75
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1218
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/w02ODZ70AKVmP58tIOVxadq3SXU.roa
Signing time: Wed 29 Sep 2021 02:54:12 +0000
ROA not before: Wed 29 Sep 2021 02:54:12 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 119.77.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4632 (0x1218)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:12 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C34D8E0D9EF400A5663F9F2D20E57169DAB74975
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e1:20:38:e0:90:15:0a:6b:b7:83:59:97:fb:
19:00:b3:a5:12:f9:30:70:8e:11:59:ab:39:fc:07:
c5:da:f6:3a:93:f6:2c:58:eb:8d:9d:8c:b4:48:53:
d8:70:0a:99:f3:97:b4:b5:82:8b:71:fd:3d:2a:60:
15:f2:4f:0c:97:8a:49:35:9a:22:08:a1:fb:89:62:
fa:2a:e5:bf:66:10:26:37:b1:2e:8e:c3:ca:a0:8b:
10:6b:d9:cf:22:42:37:63:2a:5c:f3:61:46:ca:d2:
45:04:38:98:a2:d9:84:31:4c:b8:d9:2e:00:ce:99:
d8:79:4c:af:a1:cd:52:8a:0c:3b:d1:d8:08:18:d9:
c1:0f:33:80:7b:65:a1:37:79:16:c0:04:79:22:a1:
53:07:c1:42:29:44:a4:60:e0:ce:20:3f:75:0c:f8:
0a:5d:1a:64:06:59:e1:2d:1d:2c:ec:66:8d:73:b1:
94:77:99:0c:1d:e5:f3:cd:f3:44:e5:54:b1:97:cb:
e4:66:0c:f1:ab:26:d9:ea:b6:bc:d4:d8:92:b1:a5:
16:6b:68:26:c1:25:6f:a4:98:f3:11:87:cb:48:38:
e5:ec:45:73:8e:cd:92:36:30:1a:3a:1a:cd:52:fe:
34:b5:05:49:c1:bc:6e:d6:50:74:a9:9e:9a:a5:31:
aa:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:4D:8E:0D:9E:F4:00:A5:66:3F:9F:2D:20:E5:71:69:DA:B7:49:75
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/w02ODZ70AKVmP58tIOVxadq3SXU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.77.198.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:22:d3:01:e5:30:a1:38:e5:15:37:fb:71:85:28:34:7a:3b:
2b:21:f9:7f:07:ba:42:2d:38:91:65:7d:64:92:61:f4:b6:bd:
d6:55:06:8c:32:9f:17:5c:a1:a0:bd:fc:30:67:b5:78:75:4f:
25:be:0a:67:50:ca:3d:5f:9b:0b:ad:80:c4:f3:be:b7:13:8a:
8e:a0:d0:6f:0f:8f:5e:a9:07:f5:f3:f1:60:e6:41:6f:7e:cd:
8b:cc:1e:88:c3:92:2b:ea:e7:57:46:87:8e:b3:74:45:82:f8:
89:dc:16:0f:5a:f9:84:e5:d5:11:0c:f1:3a:14:f4:f8:84:57:
27:f9:20:b1:f1:64:e2:ac:94:8a:e9:ea:fb:e8:e6:b1:a2:29:
c4:5f:0e:64:63:07:fa:fa:27:89:f8:21:a3:7b:1d:7c:7a:c3:
cb:03:6c:76:6e:5b:2b:55:d0:ae:63:d4:64:2c:8f:10:2a:f1:
e8:b4:2a:51:76:95:22:b3:a6:ec:65:95:14:68:83:54:8d:fe:
bb:bd:96:73:87:41:85:9b:c7:5f:44:dc:dd:47:28:1a:9a:de:
34:01:2f:a8:d5:63:89:2c:bf:d5:ac:46:d5:c8:3e:86:8b:ce:
70:c6:3c:7c:b5:98:49:9a:75:7e:cf:b7:f2:e2:65:2e:04:00:
6e:21:f8:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org