Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2yNYhCDe63WBTcYcQiOvKsS_09w.roa
File: 2yNYhCDe63WBTcYcQiOvKsS_09w.roa (raw, json)
Hash identifier: gQkx1vyMYZcM4d0KZltQYXM6uXuy+cFghZXplAiEL4I=
Subject key identifier: DB:23:58:84:20:DE:EB:75:81:4D:C6:1C:42:23:AF:2A:C4:BF:D3:DC
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 121F
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2yNYhCDe63WBTcYcQiOvKsS_09w.roa
Signing time: Wed 29 Sep 2021 02:54:13 +0000
ROA not before: Wed 29 Sep 2021 02:54:13 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 119.77.224.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4639 (0x121f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:13 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DB23588420DEEB75814DC61C4223AF2AC4BFD3DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:cc:58:18:6e:9b:f2:86:9e:67:70:e3:cd:f2:
7a:e8:94:c7:a5:4a:2e:e1:71:10:df:fd:9c:af:e4:
c3:39:74:8f:b6:cf:4d:fc:a6:97:3d:8b:8b:ad:e4:
ab:d0:26:8d:9c:99:ef:a7:72:3b:1e:ee:3a:98:1f:
97:89:71:70:f4:16:fe:a4:95:70:26:15:9f:f8:6f:
ed:d0:6d:96:a2:62:3e:17:c9:10:ef:3a:f6:c3:21:
52:c2:59:20:26:4f:0c:ec:c9:f1:d1:b8:e3:29:a0:
99:78:cb:49:aa:b7:cb:bc:19:1f:12:ac:90:90:c8:
d5:aa:45:61:b6:b7:8d:90:e8:ad:4f:d5:fb:15:4b:
c4:32:1a:1d:20:92:00:f0:61:0f:20:14:ab:46:e6:
b5:76:8c:2f:26:8f:6f:8b:0d:60:21:b0:37:d8:5f:
ae:50:5f:90:f5:89:25:64:f4:7b:f3:19:07:bf:88:
8a:be:6f:a7:8b:b5:5c:c3:a4:5a:7a:c1:d0:34:fa:
d8:03:a3:dd:45:af:c0:d3:b9:b4:7d:83:94:26:ac:
51:db:a9:ac:4a:86:c1:7b:7e:da:fd:52:a0:d4:6f:
9b:b1:22:51:b9:32:ed:6e:80:c7:40:de:5c:05:24:
c9:12:68:4b:12:c7:74:1e:a9:9d:a9:93:e5:17:ab:
b2:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:23:58:84:20:DE:EB:75:81:4D:C6:1C:42:23:AF:2A:C4:BF:D3:DC
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2yNYhCDe63WBTcYcQiOvKsS_09w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.77.224.0/20
Signature Algorithm: sha256WithRSAEncryption
8e:29:8e:f3:c0:d0:d4:de:ea:c2:d2:79:86:2d:fe:5b:56:22:
5f:3c:01:de:57:04:33:77:97:8a:70:e9:75:2a:9b:57:c8:e7:
a9:fb:4c:dd:80:a2:9b:4f:98:46:70:61:aa:e7:07:70:8b:b4:
38:87:f8:39:a5:86:6c:d9:56:bf:46:75:74:07:6e:8a:49:aa:
e1:29:37:ab:50:49:83:16:05:d3:37:4e:8d:e4:bd:a6:98:98:
40:36:1f:3a:4c:38:eb:21:24:01:88:cd:c2:11:85:da:61:a7:
b0:e8:a8:aa:1b:0a:4b:25:6a:8b:62:08:48:71:b2:c3:18:04:
df:09:a2:78:00:86:d4:38:ad:e9:72:0a:dc:ef:f1:c8:f8:ec:
8a:ee:1d:42:4f:6b:ec:3d:b0:61:1d:45:b8:c3:2c:34:45:60:
9d:39:3d:36:32:c8:c7:3e:ae:f7:fd:b3:5a:6a:5b:6b:07:d5:
a8:65:a8:3f:6d:61:bf:7c:1f:99:f7:d6:f0:28:28:43:cb:91:
27:87:2d:4e:6c:9b:04:13:11:02:9e:6a:c5:e3:d5:af:73:02:
50:e4:ae:66:d0:30:ca:ba:03:60:06:13:55:89:86:e5:3b:2e:
08:0c:14:af:82:66:07:2c:db:43:16:24:9f:8d:bf:b7:5d:d1:
e7:a8:49:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org