Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/zynFAAAS3LV550zpVMHPM42chHQ.roa
File: zynFAAAS3LV550zpVMHPM42chHQ.roa (raw, json)
Hash identifier: hpGMA5OpAlmw0jaWdj/DI/4sGH8b0qo6+TuYX4942hw=
Subject key identifier: CF:29:C5:00:00:12:DC:B5:79:E7:4C:E9:54:C1:CF:33:8D:9C:84:74
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0BB4
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/zynFAAAS3LV550zpVMHPM42chHQ.roa
Signing time: Tue 29 Sep 2020 10:08:44 +0000
ROA not before: Tue 29 Sep 2020 10:08:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 119.77.144.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2996 (0xbb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:08:44 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CF29C5000012DCB579E74CE954C1CF338D9C8474
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:fa:85:c3:4f:27:7a:98:2f:0f:64:71:1d:d5:
65:d1:f3:79:93:a4:24:e6:ff:6a:b1:70:1d:c0:b1:
35:f2:98:06:b7:b9:c9:4d:54:8e:77:84:d3:65:4c:
e6:50:ad:01:f0:c7:98:86:3a:1a:d2:74:b5:24:8b:
dc:93:10:a7:be:82:25:c1:1e:e2:06:16:6d:e6:3f:
3b:58:06:a7:cb:c1:f7:27:20:e8:d6:8f:70:6a:8c:
b8:4b:75:56:78:67:6a:8e:07:ea:4d:ee:1a:8f:5d:
3d:d1:3c:51:09:29:eb:32:fb:04:21:58:d7:fc:7f:
13:7f:45:14:44:00:1f:9d:88:23:98:b1:96:a1:00:
6a:16:8e:91:df:cc:63:12:26:13:c6:e9:e1:f8:c9:
ff:27:8f:2d:69:9b:89:4c:15:9b:9f:c9:fc:06:71:
48:b9:4a:8e:c6:7c:8f:7a:6a:aa:0c:20:43:a7:71:
ca:d9:b9:e1:45:0a:06:6c:d1:00:53:25:dd:44:59:
7d:8c:e8:f9:9f:6a:76:ce:b9:5c:b7:e5:e1:7d:6f:
84:51:5c:ff:b2:4f:68:fc:e9:16:cf:78:3c:43:15:
d3:74:94:53:db:34:d2:49:58:fa:24:f4:67:d4:03:
25:a2:64:af:e1:f6:50:f8:ca:31:c9:52:c3:f9:66:
ee:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:29:C5:00:00:12:DC:B5:79:E7:4C:E9:54:C1:CF:33:8D:9C:84:74
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/zynFAAAS3LV550zpVMHPM42chHQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.77.144.0/20
Signature Algorithm: sha256WithRSAEncryption
0f:c1:b7:90:51:1a:cd:dd:ed:71:bc:96:b2:5a:2a:be:01:eb:
c0:a1:17:87:0f:30:3e:30:58:b5:02:24:b7:de:cd:e4:96:6a:
05:63:7c:91:3b:e2:83:f0:51:b9:01:d4:c3:1c:d6:45:0a:cd:
d1:1f:40:e5:60:01:f0:eb:dd:5d:ac:d8:d6:ea:f9:be:dc:86:
0d:f0:23:6d:50:1c:98:3b:c6:99:3c:7c:18:5e:19:3e:30:33:
62:0b:65:1f:10:cc:8c:5f:2b:72:cb:dc:37:a8:46:5b:af:90:
0b:a1:c4:e9:de:df:03:af:b5:e8:bb:f6:a3:e3:cf:42:e7:0c:
fc:c0:29:cc:71:9a:32:d3:f4:9a:72:80:d1:3e:1c:af:35:c2:
fc:fa:97:a6:4b:c2:f8:3a:23:2c:46:23:d8:7e:05:6f:81:f1:
f0:14:27:8e:30:22:48:90:d2:ef:77:e6:06:a0:9e:60:09:31:
7e:9b:39:e7:1c:ba:80:08:ef:1f:4c:a8:79:2c:1f:9a:e8:e1:
47:2b:83:fd:93:ea:ae:42:9d:a0:16:24:01:d1:df:86:60:3e:
95:75:b7:5d:84:aa:5b:3b:96:9a:e0:65:36:9f:5c:e7:78:12:
7f:b0:4c:33:b9:c6:c3:a2:9b:f3:7e:ca:e2:91:fc:a0:e8:89:
1a:3b:0a:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org