Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/6WKHK3tjunjhRV7v9WJ4QGqQ1q0.roa
File: 6WKHK3tjunjhRV7v9WJ4QGqQ1q0.roa (raw, json)
Hash identifier: O90+bMnQveRllmG7W6aRsMxRo8J6I3je6OHQrQaRHIw=
Subject key identifier: E9:62:87:2B:7B:63:BA:78:E1:45:5E:EF:F5:62:78:40:6A:90:D6:AD
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0AA4
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/6WKHK3tjunjhRV7v9WJ4QGqQ1q0.roa
Signing time: Tue 29 Sep 2020 10:07:27 +0000
ROA not before: Tue 29 Sep 2020 10:07:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 123.0.40.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2724 (0xaa4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:07:27 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E962872B7B63BA78E1455EEFF56278406A90D6AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:0a:07:30:35:4a:2a:aa:44:88:53:1a:e4:06:
0c:6c:21:11:db:c1:34:f4:a7:e1:a0:87:12:71:a0:
d5:75:2d:95:f7:01:7b:c0:04:bf:b3:29:3c:f5:f1:
39:e8:6a:45:0f:e0:e3:34:58:24:33:b8:3b:19:e1:
29:7f:15:9d:69:99:13:63:e0:d3:1d:82:49:a0:80:
69:fd:03:6b:d7:bd:d5:28:30:7c:5c:7f:1f:93:f0:
69:e4:f0:ce:a4:ed:5c:04:0c:79:9e:ba:8d:57:3c:
d8:ae:68:b7:9b:78:d8:53:aa:5d:a6:ef:8c:e7:76:
c4:cd:75:8e:00:57:5d:16:e9:26:69:4f:84:05:f7:
32:c2:2e:fd:a3:04:e0:6a:31:e8:67:e8:7a:2f:71:
6d:d3:41:fb:9f:e5:fe:c6:b4:01:07:7e:71:5f:df:
28:e0:8c:91:03:9a:b3:61:ca:ea:b5:ac:f4:06:8f:
bc:61:4f:91:ef:95:55:f8:b5:b8:3a:6c:04:2e:ac:
b3:ec:dc:30:73:89:2a:0b:d8:83:7a:9b:22:1d:d8:
7f:53:ff:b7:bd:13:fe:9d:ce:ba:4a:ed:8a:e4:e5:
5b:ba:80:c5:bc:64:c0:ec:21:11:3a:fa:07:6c:4e:
52:04:f4:41:fa:45:ca:18:e1:2a:ea:a7:98:b4:d2:
91:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:62:87:2B:7B:63:BA:78:E1:45:5E:EF:F5:62:78:40:6A:90:D6:AD
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/6WKHK3tjunjhRV7v9WJ4QGqQ1q0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.0.40.0/23
Signature Algorithm: sha256WithRSAEncryption
71:ca:ab:8f:29:d8:01:a0:7f:1a:e5:0d:c9:e1:1a:2a:e6:04:
6f:54:ec:b0:9a:ad:38:d1:64:d6:7e:23:30:1b:c4:a1:46:54:
84:d9:54:56:63:ff:be:84:3f:98:fd:f7:89:0e:33:d7:61:f8:
74:40:03:b8:9b:4d:33:d7:8b:d0:fd:7f:d0:6c:3e:f1:35:a0:
1d:e0:05:4d:26:67:e8:54:a8:7b:03:5e:b5:43:29:64:c6:9f:
9d:aa:69:67:42:6b:7c:de:76:79:86:b1:2c:2f:a9:3d:47:22:
10:61:15:23:d5:4f:41:f8:c1:3d:a7:fe:73:c2:d0:d4:28:a1:
97:40:5f:fd:6f:78:b5:70:8a:b1:80:7f:8a:0d:63:58:32:e3:
56:38:cc:6f:27:e9:d7:a1:10:80:d5:80:66:5d:87:6e:0f:c1:
a6:28:08:fa:7e:36:fb:42:1e:f1:a6:72:b8:f5:44:8a:46:2d:
af:07:95:ba:3a:0a:0a:c5:d8:6b:de:98:70:7e:0b:1b:75:cf:
fd:ca:ab:c9:fb:d5:9a:52:b2:fd:f4:5e:32:9f:55:7a:a6:ee:
49:7e:df:ff:b8:b5:a5:dd:48:22:b8:45:2b:f9:5a:46:f3:f8:
09:d4:c7:06:51:24:ac:6b:ac:a0:5f:77:c5:9c:31:97:1a:58:
b9:fa:e1:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org