Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/68sXbKq_dTnbhRD369bJHZmXcOM.roa
File: 68sXbKq_dTnbhRD369bJHZmXcOM.roa (raw, json)
Hash identifier: mciOLOXrVgiZi/OySRcyE557ghd9aI6s9IPhftxPqpQ=
Subject key identifier: EB:CB:17:6C:AA:BF:75:39:DB:85:10:F7:EB:D6:C9:1D:99:97:70:E3
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0AA3
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/68sXbKq_dTnbhRD369bJHZmXcOM.roa
Signing time: Tue 29 Sep 2020 10:07:26 +0000
ROA not before: Tue 29 Sep 2020 10:07:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 123.0.32.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2723 (0xaa3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:07:26 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EBCB176CAABF7539DB8510F7EBD6C91D999770E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:3e:61:56:e7:13:80:be:03:bc:d6:f3:7f:d9:
20:5d:fa:93:63:ae:69:04:5b:83:bb:09:81:a1:0e:
3a:ef:3b:38:e7:aa:96:2e:25:09:95:d4:14:f7:69:
58:85:44:68:51:d7:fc:bf:31:a9:d0:ed:95:e1:dd:
0a:81:9c:02:f9:fd:42:4b:21:42:8b:c7:28:75:78:
d0:ae:2c:47:a6:f7:4b:93:eb:cb:2c:9f:5c:8e:d4:
14:c2:b2:b4:c0:f3:3a:d2:12:5f:eb:9f:d0:f6:f6:
36:24:4c:a6:5b:a6:92:67:7d:8c:db:b4:4e:06:42:
e3:ca:29:14:8c:48:18:9d:27:e2:21:c7:e6:f7:5e:
0d:47:7e:9d:33:e5:c4:71:41:6a:5f:70:a5:20:2e:
2c:af:ec:5f:15:b8:85:d8:48:54:ed:bc:a1:fe:d4:
de:d4:b3:fe:c8:ac:d4:5f:4b:54:06:26:0b:46:6e:
10:5a:64:58:80:f0:c0:e8:97:55:dc:11:4f:83:2d:
dc:aa:a5:38:39:01:7c:87:42:d0:ef:ef:15:07:a7:
64:cd:c9:c9:69:21:bd:3a:1c:0a:c9:30:41:b4:09:
f6:e5:0e:cf:57:5b:7d:63:60:12:c5:15:02:90:aa:
3f:92:76:9e:78:71:df:37:42:da:ce:60:5a:ac:c8:
15:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:CB:17:6C:AA:BF:75:39:DB:85:10:F7:EB:D6:C9:1D:99:97:70:E3
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/68sXbKq_dTnbhRD369bJHZmXcOM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.0.32.0/21
Signature Algorithm: sha256WithRSAEncryption
3a:40:5d:73:45:05:57:03:f9:6e:83:5f:90:ff:d1:af:78:51:
91:6d:30:d7:d6:9d:98:20:1e:c0:18:4a:93:b6:8a:5b:b3:bd:
54:e8:a2:49:39:92:bb:d3:72:15:9a:b2:01:91:9d:df:e3:b5:
72:91:f5:06:99:4a:08:56:dc:f4:e3:2b:92:43:7a:7f:e3:fc:
bc:d9:b3:01:fc:d9:51:22:27:3b:25:a1:c5:c2:ae:9d:0a:46:
bd:33:20:82:1c:00:be:96:1a:3a:0a:5c:26:35:28:da:e7:c1:
cf:6f:2d:7d:b6:c8:4a:1d:73:62:be:30:ea:1c:e3:0e:56:37:
a7:bb:c9:45:a8:4a:e0:df:fa:dd:aa:f1:fb:84:51:43:df:84:
b2:5f:3d:7d:c1:ea:8a:8e:74:0b:df:a5:bc:7d:ad:77:7d:8c:
2b:21:00:f4:ec:a4:f7:56:c9:af:eb:ea:4a:8f:f3:f6:81:5b:
60:84:35:7c:39:0b:ac:3d:ec:d0:51:e8:1f:7d:75:84:78:60:
ff:44:02:c6:b9:c4:1b:07:84:c6:38:49:cd:1d:60:6e:ed:d0:
b0:e4:0a:d4:64:f7:1c:50:09:98:43:14:21:ba:b6:50:69:1f:
ab:a2:b8:2c:23:94:27:b8:47:3d:b5:c7:b6:76:27:1b:9b:ae:
33:af:b3:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:45 2023 by rpki-client on console-fra.rpki-client.org