Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/4fhmhORhGv30nMhF85sewjohwkE.roa
File: 4fhmhORhGv30nMhF85sewjohwkE.roa (raw, json)
Hash identifier: C/Nu0KfhjKAK5ZQx7FyMYyKLHKjyfdw1+5vpBoF0TK8=
Subject key identifier: E1:F8:66:84:E4:61:1A:FD:F4:9C:C8:45:F3:9B:1E:C2:3A:21:C2:41
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12C9
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/4fhmhORhGv30nMhF85sewjohwkE.roa
Signing time: Wed 29 Sep 2021 02:54:59 +0000
ROA not before: Wed 29 Sep 2021 02:54:59 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24163
IP address blocks: 61.56.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4809 (0x12c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:59 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E1F86684E4611AFDF49CC845F39B1EC23A21C241
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ca:5e:c6:f0:f4:da:83:56:5d:a3:17:5e:e6:
0a:c8:32:de:25:79:59:e7:18:14:4b:a7:d1:59:47:
ca:01:96:0d:d1:e0:e3:bd:b5:0a:73:a7:be:48:7c:
74:4d:44:36:9a:ae:fc:f6:49:9c:c9:a0:b8:2f:89:
60:a5:5b:72:f7:c1:d8:ee:f9:22:93:19:f3:7b:5a:
ca:16:aa:a2:11:45:77:64:0d:27:9a:57:66:b0:13:
f3:83:f5:39:aa:fb:0f:ca:27:6a:c9:bb:6f:ca:55:
83:a1:b6:2e:85:a4:24:b8:9e:91:33:1c:fb:54:cf:
64:b2:12:d2:03:1f:50:ee:40:89:e0:6f:d2:86:ce:
2c:2b:95:1a:00:b7:91:0c:63:86:70:06:de:7a:67:
35:ca:78:47:d0:14:ba:92:df:09:c0:25:84:85:3c:
4f:84:39:0f:95:e5:54:f3:44:8f:6e:8d:cd:85:62:
68:9d:22:8a:2c:fb:07:33:fb:2f:be:88:98:c1:ea:
be:22:e7:90:1b:7f:25:d3:64:59:8e:c1:60:a9:cf:
cf:55:f8:4d:32:01:88:0f:1d:1b:88:a9:1c:3d:9a:
b5:45:db:61:9a:59:77:68:07:6a:fc:37:4d:37:50:
54:62:a3:b7:12:27:ba:c0:ec:4e:01:dc:c1:ae:cf:
67:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:F8:66:84:E4:61:1A:FD:F4:9C:C8:45:F3:9B:1E:C2:3A:21:C2:41
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/4fhmhORhGv30nMhF85sewjohwkE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.191.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:44:98:db:6c:c2:1d:f9:dd:1e:b0:f5:0a:7f:97:54:d2:9c:
ed:cb:59:6c:ea:13:3c:1c:f5:25:97:cf:e3:d7:36:8c:a3:06:
2f:5b:70:d0:6d:1f:f0:71:59:38:d3:b4:53:c9:5e:ac:56:5f:
42:5e:c0:26:ae:6c:0b:f6:50:23:ab:cf:31:7a:c5:f9:e9:5e:
c0:81:59:15:e7:0b:e0:5d:25:64:80:03:c0:5b:0e:58:ed:43:
02:f0:6a:4c:32:2b:3c:bc:76:14:00:da:1c:21:6e:7e:0e:79:
76:33:d3:32:e4:f1:bb:84:37:63:b3:9a:2f:8a:06:28:7e:d9:
c9:4c:10:d9:e4:6e:1d:5e:51:a8:62:e2:ca:09:d8:b9:9a:bb:
36:e1:54:bf:3c:45:95:bd:d5:4f:c5:94:54:59:d6:0d:cf:3e:
45:fb:fb:3a:28:dc:68:eb:d2:d2:75:2b:ab:d1:2a:41:7e:db:
3b:95:52:64:a2:5f:60:fd:53:7a:98:3d:83:0c:21:3b:78:94:
c7:2b:cb:b8:0c:4d:1b:d0:82:a8:ce:80:cf:13:ee:b8:60:ca:
3d:f1:36:29:62:31:a9:81:40:c5:48:56:fd:0e:6d:87:83:a2:
38:19:aa:03:fb:27:79:3b:29:e9:b8:ca:8b:58:82:d3:8d:21:
3e:4c:b2:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org