Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/45V8vIcO-AWwclzBz-GsXHnyaxI.roa
File: 45V8vIcO-AWwclzBz-GsXHnyaxI.roa (raw, json)
Hash identifier: 7mmpvzqR2DVYuz8ubaxX3GbIBBFeMUPukZzTkNrjL4I=
Subject key identifier: E3:95:7C:BC:87:0E:F8:05:B0:72:5C:C1:CF:E1:AC:5C:79:F2:6B:12
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 144E
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/45V8vIcO-AWwclzBz-GsXHnyaxI.roa
Signing time: Wed 04 May 2022 02:01:32 +0000
ROA not before: Wed 04 May 2022 02:01:32 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24163
IP address blocks: 61.58.96.0/20 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5198 (0x144e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: May 4 02:01:32 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E3957CBC870EF805B0725CC1CFE1AC5C79F26B12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:55:90:42:9f:38:99:14:df:dc:ef:12:02:83:
cb:f2:e5:c6:ee:d8:f3:5f:12:d6:07:ef:f4:d6:6b:
e0:09:ff:18:6f:a7:51:42:7c:c7:f0:f9:8a:99:0d:
5f:34:ed:2e:ec:c4:31:14:0f:2e:f1:9c:a7:87:14:
57:51:3b:11:b6:b0:09:1f:82:8d:91:97:1f:fe:21:
a2:e1:98:42:f2:80:ea:ac:e9:3a:75:eb:d1:36:3b:
1a:92:ef:72:92:13:59:e8:2e:5e:45:72:38:06:ec:
cf:79:30:53:ba:8f:47:a9:5b:3d:18:18:80:4c:1c:
aa:15:d9:bb:39:0f:cb:cb:52:3a:92:51:28:e7:6b:
fd:3f:fc:73:7d:32:5d:bd:f0:a5:9f:80:f1:cd:88:
b6:f6:2e:98:98:6b:e4:ff:47:8a:a1:e1:ac:51:6f:
da:34:b2:b9:fb:69:e6:d1:f5:f5:9b:10:69:6a:a3:
e4:60:28:84:a5:e4:23:5b:f2:e7:89:c9:79:38:fc:
74:48:8c:74:af:1d:53:0a:24:bc:7f:8d:2e:54:59:
ff:46:95:41:4a:9c:b3:86:4e:29:b4:e4:8a:75:74:
28:27:08:5d:30:ca:0c:77:a6:b7:8f:e2:18:84:70:
79:f4:df:e2:64:be:bf:5c:ba:d3:8e:38:5d:d3:34:
c6:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:95:7C:BC:87:0E:F8:05:B0:72:5C:C1:CF:E1:AC:5C:79:F2:6B:12
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/45V8vIcO-AWwclzBz-GsXHnyaxI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.96.0/20
Signature Algorithm: sha256WithRSAEncryption
9d:2f:94:68:0e:a5:6a:70:3e:cb:29:bb:26:a8:c2:a6:7d:7d:
67:5b:45:eb:87:91:51:23:43:cd:c3:c4:6c:75:1e:65:55:6f:
78:c8:dd:03:84:f2:ec:c6:0b:6d:f3:96:28:6b:b0:39:fc:a5:
3c:94:0d:b9:cc:b0:2e:46:24:9b:fe:96:4f:72:46:32:d9:9f:
a9:b1:2b:82:c6:61:60:2a:4c:62:10:31:62:2b:15:af:d7:ed:
c9:d3:d6:30:40:44:11:7d:fa:6f:f4:fc:ac:b5:ea:d7:38:97:
e7:73:dd:bc:55:1e:3f:b8:09:21:41:34:f6:ab:e0:cd:88:0e:
ab:74:14:fa:7e:e7:4b:db:5f:85:58:f2:4e:57:5b:7f:d4:43:
b9:18:90:f1:52:30:90:69:66:4f:3c:5e:92:93:ae:d4:fb:cb:
cc:1c:b3:44:38:cb:fd:dd:70:3b:21:9f:ec:73:9c:a5:00:7c:
13:9a:4c:5d:2a:fb:91:7d:0c:cf:13:0d:b4:15:a0:d2:73:89:
b0:41:bd:cf:71:82:9e:2e:78:4d:34:c0:7b:ff:02:e9:f3:32:
d8:d6:06:88:e0:50:0a:09:c8:87:b0:74:97:e8:ef:e2:1f:8b:
57:c0:7c:d5:37:04:91:95:e3:7a:ce:6d:01:b6:a5:9c:cc:87:
89:d3:d8:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org