Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/5IFYSw6bUk8TNs6eei6wdvFqt6Y.roa
File: 5IFYSw6bUk8TNs6eei6wdvFqt6Y.roa (raw, json)
Hash identifier: 7bZEZN9TwwNgs3+QDCRf7OgBQ0V27X3p1VTt5y089cU=
Subject key identifier: E4:81:58:4B:0E:9B:52:4F:13:36:CE:9E:7A:2E:B0:76:F1:6A:B7:A6
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0B32
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/5IFYSw6bUk8TNs6eei6wdvFqt6Y.roa
Signing time: Tue 29 Sep 2020 10:08:08 +0000
ROA not before: Tue 29 Sep 2020 10:08:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 61.64.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2866 (0xb32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:08:08 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E481584B0E9B524F1336CE9E7A2EB076F16AB7A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:82:a9:7e:63:14:b5:d2:57:1f:f8:8b:2d:48:
59:5f:27:94:88:9e:ac:6d:ce:c6:e5:67:40:68:06:
7d:c4:68:12:63:19:05:0b:b4:22:1e:9e:e7:a7:b7:
07:c6:d0:cf:07:a3:63:06:7f:8b:d9:b8:8e:92:f4:
f0:ab:cd:f0:79:56:c1:d3:8e:4d:94:f5:8a:5b:c3:
bc:5c:9a:2e:8d:b7:8f:24:58:23:3d:27:e5:5e:cc:
2e:65:6a:29:c3:d0:a2:66:cb:3c:5a:b1:07:03:a7:
38:f6:fa:b6:7e:37:e8:72:0d:85:ca:97:88:0f:9f:
25:3a:57:cc:bb:5b:f8:64:21:51:a3:dd:61:0d:29:
0d:bb:d9:72:6a:01:5c:9c:9c:11:1c:f8:34:ec:ec:
06:1d:af:c8:70:2a:d5:6c:98:ae:db:af:c1:6f:23:
6c:96:18:72:80:3f:bb:ee:9e:01:12:b5:7a:29:bd:
ed:7e:0c:2d:19:e9:e1:6e:70:5f:aa:70:84:63:25:
3e:28:ab:ce:89:44:2f:6f:c9:60:52:c2:0c:cd:26:
30:b1:89:52:09:91:8e:52:11:7c:a4:60:a2:31:29:
4b:85:15:65:c0:ed:22:43:71:16:63:b7:8d:05:b2:
74:f0:63:63:7e:9a:48:01:12:fc:0e:79:88:a7:0a:
d5:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:81:58:4B:0E:9B:52:4F:13:36:CE:9E:7A:2E:B0:76:F1:6A:B7:A6
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/5IFYSw6bUk8TNs6eei6wdvFqt6Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.64.4.0/22
Signature Algorithm: sha256WithRSAEncryption
36:6f:34:99:15:e1:7d:22:cf:b4:74:53:33:ca:d5:48:d6:10:
fd:0f:7c:e5:10:34:79:a4:34:17:90:fd:43:96:b3:48:23:35:
af:b4:50:e1:72:41:33:3d:c3:00:11:d7:8f:ee:b7:06:04:1e:
16:1d:f2:93:02:87:e9:ef:f4:da:15:85:dd:8c:cf:58:97:fa:
da:69:41:1c:fb:34:f8:9a:38:ea:93:c5:d8:ee:80:78:b4:28:
41:28:33:c8:15:f3:1f:c2:a7:7a:ad:c7:d0:43:b2:22:71:d4:
8a:5c:03:c8:25:1f:c1:fb:07:74:06:1a:b7:bb:a2:dd:18:21:
48:2f:d6:e1:1d:28:81:e7:9e:af:19:fd:2e:d7:cd:9b:a5:e6:
18:c6:62:14:9a:e8:2c:2d:e4:75:e0:ee:85:35:06:b2:97:81:
db:17:bd:f9:90:7f:ed:52:09:12:ce:3c:32:53:0e:66:90:fd:
cf:1b:2f:2c:23:1f:5a:ac:d9:cf:9f:ca:27:52:4d:8f:67:ec:
3c:c5:ed:8e:71:d6:8d:12:3d:0c:20:12:ed:a6:df:8b:da:4e:
9b:f1:85:f2:44:da:2a:75:87:44:c7:80:1b:83:0a:13:1b:1b:
d8:51:83:10:a3:97:36:86:73:f8:ff:ad:97:6a:86:f8:ff:9e:
60:b9:89:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org