Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3vEaaHxubX3zTqetPuhF33ybQ_o.roa
File: 3vEaaHxubX3zTqetPuhF33ybQ_o.roa (raw, json)
Hash identifier: 8l6oUf/iikmOvdNFykmQT0+su9eqwFKWKNMPuX8xtRs=
Subject key identifier: DE:F1:1A:68:7C:6E:6D:7D:F3:4E:A7:AD:3E:E8:45:DF:7C:9B:43:FA
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0BD9
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3vEaaHxubX3zTqetPuhF33ybQ_o.roa
Signing time: Tue 29 Sep 2020 10:08:53 +0000
ROA not before: Tue 29 Sep 2020 10:08:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 119.77.188.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3033 (0xbd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:08:53 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DEF11A687C6E6D7DF34EA7AD3EE845DF7C9B43FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ad:41:7d:64:5d:44:54:07:50:fc:0d:bf:92:
ff:3b:73:62:6f:cf:f4:8d:02:4b:f6:ed:d1:30:94:
0b:4b:ff:d2:16:0f:6c:29:1d:53:0a:63:82:ee:51:
b4:72:8c:2c:08:a4:17:4e:4c:5c:23:ac:6b:ca:39:
4a:4e:ea:11:83:14:b3:e5:61:f4:ee:fd:99:ac:25:
1f:4f:07:e5:25:78:af:36:18:d5:de:2f:ee:c7:9a:
d0:ae:a9:64:09:12:99:82:be:b8:4a:d4:da:8a:14:
4f:22:aa:14:b8:c0:3a:20:06:7c:c4:17:13:9e:dc:
fc:03:d9:5d:67:9a:a4:4b:42:04:35:53:8d:4d:49:
1a:c5:9b:d8:48:6b:6d:ca:01:d5:fc:a7:a1:1a:41:
32:3b:d1:0d:cc:07:05:78:f1:62:a6:b3:ab:ba:a5:
72:95:ce:94:f8:cd:fb:fa:26:dc:59:bd:1a:4a:fd:
20:07:83:94:11:72:0c:44:54:8b:bb:1e:21:66:c6:
af:7f:77:e9:4f:0f:5b:78:99:41:90:70:39:61:35:
93:af:e9:6a:e1:c3:a3:1f:46:64:97:21:b9:0d:4d:
51:55:84:7f:70:47:f9:19:53:3d:a7:07:9b:8d:97:
be:c5:5c:ad:c3:26:09:4a:74:79:6d:5b:22:e4:db:
1f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:F1:1A:68:7C:6E:6D:7D:F3:4E:A7:AD:3E:E8:45:DF:7C:9B:43:FA
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3vEaaHxubX3zTqetPuhF33ybQ_o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.77.188.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:11:57:4b:0b:78:f2:94:7f:4c:b5:a3:77:61:40:b3:b3:db:
62:05:43:11:5f:9a:96:78:f2:a4:cb:56:3d:31:3b:d9:e2:cd:
f2:45:8e:1b:3d:d2:57:b5:62:73:e5:ea:f8:7b:85:14:76:b3:
18:97:8e:f4:8f:3f:15:75:e6:a1:a8:32:2a:73:ca:84:71:72:
95:0a:99:16:7a:f0:02:09:53:85:13:aa:b8:54:c0:76:31:44:
f3:54:fa:10:83:fd:43:c7:43:e8:8f:ce:31:1c:cd:a4:c3:5f:
96:4f:3b:64:67:4e:2a:87:03:1b:fc:9d:ea:7b:4c:2c:51:60:
c6:5e:89:34:2d:94:37:96:ca:13:12:47:cf:aa:58:74:a2:e6:
ee:81:b9:7e:62:4d:57:cf:55:c4:c3:fb:d3:80:3c:fa:e6:4f:
7b:fd:23:f9:a0:61:46:0b:e2:91:19:c4:28:6d:93:ee:64:ae:
7f:ca:6c:47:3c:45:dc:ce:1f:0b:9a:1c:2f:f7:47:7c:56:22:
9d:6d:8d:6c:7b:59:28:96:ce:35:98:7c:6a:10:f2:d4:96:81:
3a:63:0d:50:83:ad:1c:d5:3a:4e:c9:68:7a:96:24:b2:a3:a9:
5a:8b:2a:62:b2:86:e8:a1:21:8d:26:2a:9c:18:96:5b:ad:fd:
e4:ee:e5:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:45 2023 by rpki-client on console-fra.rpki-client.org