Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xipIlc5Dkpb-lNjqKkkhFuw1_DM.roa
File: xipIlc5Dkpb-lNjqKkkhFuw1_DM.roa (raw, json)
Hash identifier: Y2/KQUiWm+fw68hvl7zNecyY304mDq3unhu/X7G5thI=
Subject key identifier: C6:2A:48:95:CE:43:92:96:FE:94:D8:EA:2A:49:21:16:EC:35:FC:33
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1B63
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xipIlc5Dkpb-lNjqKkkhFuw1_DM.roa
Signing time: Fri 07 Apr 2023 07:21:13 +0000
ROA not before: Fri 07 Apr 2023 07:21:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 61.56.160.0/19 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7011 (0x1b63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Apr 7 07:21:13 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C62A4895CE439296FE94D8EA2A492116EC35FC33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:33:ab:63:a2:2c:9d:da:a6:b6:97:ed:c6:6e:
61:80:65:99:cb:74:c7:db:2a:85:b7:30:d1:b9:1b:
9d:f8:3f:74:f2:94:0e:37:b4:f5:66:93:4e:1d:f4:
c6:07:28:98:c1:3c:7d:e9:22:00:5d:fe:ef:4d:6f:
f5:f9:af:1b:d6:24:f1:d8:a4:b0:72:25:8f:2f:12:
fb:be:4e:f7:7f:6c:c6:4f:e7:60:5f:d1:92:b0:63:
cc:87:4d:42:05:aa:30:63:6f:5e:80:c5:58:67:1e:
0d:c9:09:80:44:b8:0b:b6:6d:14:bb:27:25:54:1e:
fb:e8:0a:7b:ae:62:e7:c8:97:de:ea:80:62:9b:a3:
c7:8a:b2:62:19:c7:db:b5:55:c5:f8:0a:74:dd:d3:
7c:fd:37:bb:4a:6c:12:07:e3:13:3d:90:97:67:ee:
e4:32:08:12:8f:0d:4a:43:cf:a3:2a:0e:94:b6:9d:
ee:66:73:0a:ff:31:38:1c:46:df:54:87:84:eb:e1:
1d:52:6f:bd:ce:16:55:1c:79:87:10:66:0c:25:3b:
41:33:9a:8b:b2:40:f9:5b:36:65:31:34:2d:99:43:
d6:8c:1f:1b:1d:43:1c:d1:5b:e9:63:9e:16:f6:36:
52:8b:f6:ad:15:0e:ab:51:0b:8e:72:fa:4e:9c:de:
66:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:2A:48:95:CE:43:92:96:FE:94:D8:EA:2A:49:21:16:EC:35:FC:33
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xipIlc5Dkpb-lNjqKkkhFuw1_DM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.160.0/19
Signature Algorithm: sha256WithRSAEncryption
83:76:99:a2:f8:39:bf:23:47:91:19:0a:b6:05:6a:f2:6d:c5:
44:49:6d:56:f1:b6:09:35:ec:b5:17:89:dd:98:12:3f:8b:a3:
a6:75:64:15:09:3c:d6:cc:bf:c8:95:90:3f:0b:aa:ae:1d:3a:
fc:2a:3f:e7:03:76:1a:49:60:ad:e8:e4:b2:cb:79:a9:63:07:
cb:97:16:8a:ee:b7:4a:e3:8a:7d:2b:24:68:5f:35:07:52:51:
8d:3f:99:28:11:d8:36:ae:e3:31:af:91:28:8e:0f:1c:1c:1c:
6d:77:bf:0a:98:e2:cd:ba:3a:57:3d:5f:ce:da:15:51:c5:db:
1e:06:15:23:16:6b:16:55:70:27:83:bb:4b:ae:63:76:be:c6:
95:9e:84:c3:9c:65:70:50:a9:74:75:63:71:50:52:e5:de:85:
8c:50:be:db:b1:2a:76:18:04:90:ee:7e:c2:6d:04:45:05:d6:
8c:6e:94:79:d6:67:d5:17:b8:40:1e:7c:4d:85:fc:3a:1d:ed:
87:76:2a:d6:3e:80:aa:d9:de:dd:35:57:91:02:7c:31:8f:b3:
9d:f7:9c:4c:83:d9:97:ed:6d:79:ba:80:ab:f4:08:51:e6:c1:
f8:6a:bb:63:1c:66:43:3f:d0:cd:35:aa:3c:ed:67:e9:0c:ac:
e9:d1:31:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org