Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2TKgCZWrv_6xF_yWuxeeuDHRSRA.roa
File: 2TKgCZWrv_6xF_yWuxeeuDHRSRA.roa (raw, json)
Hash identifier: Mu843a8Zu+ZZi0N3/ibzwIAsRaZcjOFy2yXh6dOrivY=
Subject key identifier: D9:32:A0:09:95:AB:BF:FE:B1:17:FC:96:BB:17:9E:B8:31:D1:49:10
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 101F
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2TKgCZWrv_6xF_yWuxeeuDHRSRA.roa
Signing time: Sun 07 Feb 2021 12:37:43 +0000
ROA not before: Sun 07 Feb 2021 12:37:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24163
IP address blocks: 61.60.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4127 (0x101f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:37:43 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D932A00995ABBFFEB117FC96BB179EB831D14910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d5:53:e6:33:90:1a:34:57:e8:ef:88:e6:ac:
08:af:c9:dd:22:73:c4:e0:74:ef:bd:74:61:56:1d:
2f:43:ba:e3:6a:64:29:ed:26:a4:e5:9d:8c:02:8f:
3b:6f:d8:1b:b1:8c:9a:27:ab:d1:75:71:8c:b5:24:
66:bb:3d:3b:be:99:1c:5d:d9:f6:fc:04:07:b8:0f:
bf:6a:38:e7:01:37:27:ff:0c:36:70:a1:fe:18:ca:
60:fd:67:f8:7b:d1:4b:f7:4e:62:b7:e7:a0:3e:ad:
12:94:e6:c9:30:6e:77:97:b7:75:fb:5b:33:0e:a7:
22:ec:a3:92:46:29:ad:3b:7e:59:fa:c7:da:f3:75:
20:c4:86:f9:08:7c:3f:f0:d7:14:bd:1b:e2:c3:21:
70:76:73:62:14:dd:f2:4c:56:d4:72:b8:3b:d3:17:
88:58:29:28:b0:fb:0d:fc:60:69:dc:b0:7f:20:dc:
e3:9c:21:ae:4f:e5:be:e7:18:68:d6:cc:c8:10:60:
4c:e0:aa:60:50:8a:8a:76:74:61:93:d6:6d:c3:5b:
db:88:9e:0b:72:19:5f:39:c4:01:ce:36:aa:8a:5e:
69:8f:d6:47:a8:17:1c:ac:bf:31:7f:cd:b6:19:59:
e6:f0:34:33:38:24:3a:5b:b0:fe:08:22:fb:c1:37:
89:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:32:A0:09:95:AB:BF:FE:B1:17:FC:96:BB:17:9E:B8:31:D1:49:10
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2TKgCZWrv_6xF_yWuxeeuDHRSRA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.215.0/24
Signature Algorithm: sha256WithRSAEncryption
22:3a:86:5d:56:85:03:57:b3:75:48:41:1b:ff:82:bb:75:57:
d4:71:53:14:1b:47:90:81:89:e8:24:1e:c3:dd:8f:2c:38:59:
f3:8d:7c:38:3a:05:e1:a7:89:94:f6:53:3f:c9:84:75:ff:05:
05:7b:c9:1f:21:98:c2:c0:3e:07:ec:39:db:c2:59:93:41:3b:
bf:67:0b:e3:7d:d8:2a:02:c2:06:5a:74:2b:d8:7f:0e:22:92:
89:ef:d5:8c:ab:b5:e5:b0:e1:c7:87:3d:c3:94:8a:9c:df:56:
98:af:f7:f8:c1:50:9f:1c:c7:0b:5e:b3:4f:3d:34:0f:1a:9c:
9c:bd:5b:05:f0:91:84:95:98:9e:0f:b3:db:55:c7:d5:c4:9c:
5e:db:59:59:f8:55:7b:33:7b:ed:41:ac:44:e5:3a:07:e1:e9:
7b:34:13:65:b4:af:a1:12:0c:3b:a2:a2:9b:b8:a0:3e:0e:93:
9f:3c:44:d9:1f:fe:86:e6:8b:bf:01:ba:9a:ff:6c:3f:31:97:
63:13:35:b8:72:3a:9f:21:76:67:1d:e6:02:40:7f:33:b2:ba:
33:13:de:8e:1c:01:06:d1:e3:8e:35:d7:5d:51:6c:ef:51:d0:
da:71:aa:7f:13:a8:2b:ae:66:60:d6:e0:26:f6:03:0b:fd:73:
3d:bc:04:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org