Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2Kk-PVE2iT13-fiMrqqKnCrJbmg.roa
File: 2Kk-PVE2iT13-fiMrqqKnCrJbmg.roa (raw, json)
Hash identifier: uUQbKdN+ycnjv0sv/IlxxMY2ihTiAMhnb6i52VEsFLc=
Subject key identifier: D8:A9:3E:3D:51:36:89:3D:77:F9:F8:8C:AE:AA:8A:9C:2A:C9:6E:68
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2Kk-PVE2iT13-fiMrqqKnCrJbmg.roa
Signing time: Thu 15 Sep 2022 02:35:13 +0000
ROA not before: Thu 15 Sep 2022 02:35:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 61.56.160.0/20 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:35:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D8A93E3D5136893D77F9F88CAEAA8A9C2AC96E68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1d:f4:4f:8c:2d:86:3a:e1:9d:67:f6:84:3c:
b8:28:60:2e:e5:0e:43:a0:2e:fb:33:b9:3f:b4:db:
53:cb:91:57:f0:73:e1:fd:16:db:9e:bd:f5:d3:b2:
d9:88:f6:9c:82:42:65:40:2a:48:e8:d1:49:7c:e7:
63:a4:06:c1:f3:21:8f:9e:b1:1a:34:98:e9:73:f9:
07:13:cb:0b:de:90:73:1d:dc:b4:a2:40:6b:dd:fd:
1d:08:f4:64:82:d1:c8:69:85:39:fb:bb:38:0c:f3:
ed:8f:b5:46:aa:ba:cc:67:9a:a4:61:40:10:dc:e6:
48:2c:37:b2:78:f1:70:4c:12:6e:cb:54:0c:60:57:
08:6d:b6:cd:2f:36:ec:34:73:a5:ea:f8:52:40:0a:
f1:84:3b:09:ab:73:b7:33:3c:48:18:ca:01:ca:b1:
f9:b5:98:08:30:3b:e6:ec:95:5e:43:4a:f8:ce:63:
f6:0c:7a:60:a0:db:79:47:72:95:01:eb:b1:f4:8c:
b3:18:b2:51:af:a0:e8:5d:b6:98:d8:b0:a3:b3:1a:
67:c4:0d:35:3e:31:d1:9c:cd:5f:7e:3e:2a:72:72:
29:de:09:5f:fc:be:8d:11:9f:18:59:4d:e1:ca:39:
a3:63:c7:0f:bc:dc:c2:56:9a:96:25:0f:f4:8a:5f:
c5:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:A9:3E:3D:51:36:89:3D:77:F9:F8:8C:AE:AA:8A:9C:2A:C9:6E:68
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2Kk-PVE2iT13-fiMrqqKnCrJbmg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.160.0/20
Signature Algorithm: sha256WithRSAEncryption
4e:13:03:53:0a:4e:e0:3c:cf:17:5e:a0:0e:19:8a:6a:9d:fc:
cf:69:73:cd:03:35:8b:a8:f8:aa:85:63:5e:3b:1d:36:ca:0f:
00:c8:53:56:58:0f:02:ff:c1:ac:de:63:68:ab:ee:a3:03:c3:
82:a1:20:fc:d6:d7:c8:8c:2c:2e:3e:11:85:fb:06:fd:c3:19:
b6:b6:c5:84:7f:6d:27:31:db:37:c1:64:dc:49:9d:e7:77:c8:
4a:69:9c:d8:13:f5:bd:85:7b:c2:07:0a:9e:33:ca:a5:39:be:
91:6c:05:ab:79:0f:e0:d6:7c:80:6d:a2:82:97:92:41:7d:4a:
7c:82:de:de:a9:04:cf:ee:5c:30:de:ed:92:17:c2:5f:a7:fd:
fd:0c:e5:e9:79:b1:92:b0:80:7a:e2:43:65:16:02:bd:05:f4:
0f:d7:f5:2a:60:28:d8:7c:da:42:c1:7c:aa:c2:95:0c:5d:8f:
9b:d3:9f:85:a6:63:27:1e:e2:49:e2:37:56:bc:98:cc:45:e9:
db:3d:ed:67:9c:09:69:da:c7:a5:c8:3a:13:50:93:35:14:98:
c0:1a:e3:2e:ec:67:62:b6:2f:b3:47:58:f4:04:a8:35:31:2d:
1e:ee:ac:66:c2:a1:6e:d2:78:9d:85:a9:5a:df:f0:86:3e:32:
cc:38:fc:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org