Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/6lDC8Q09gsYEitQiDew363zy6s0.roa
File: 6lDC8Q09gsYEitQiDew363zy6s0.roa (raw, json)
Hash identifier: KmSDxEBRLkIsIqStrCH0XhC3b8y8bxBjNS2B3Bu4OtU=
Subject key identifier: EA:50:C2:F1:0D:3D:82:C6:04:8A:D4:22:0D:EC:37:EB:7C:F2:EA:CD
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0BD3
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/6lDC8Q09gsYEitQiDew363zy6s0.roa
Signing time: Tue 29 Sep 2020 10:08:52 +0000
ROA not before: Tue 29 Sep 2020 10:08:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 61.60.214.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3027 (0xbd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:08:52 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EA50C2F10D3D82C6048AD4220DEC37EB7CF2EACD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f4:0a:66:72:c6:99:14:49:20:41:c3:8d:76:
85:65:36:c8:2c:75:80:b0:f7:50:18:da:6b:c8:c1:
9d:0d:11:ab:14:a6:ea:34:fd:e6:07:d9:5a:78:91:
02:cd:27:38:76:18:1a:33:82:5c:9f:ff:df:76:c2:
eb:f8:ea:ae:9a:0d:ac:5d:4f:7d:a6:79:b7:d2:fe:
e4:a9:93:47:8e:80:f3:16:16:7c:3e:6f:d5:08:74:
0f:44:0a:e6:59:22:51:01:e3:32:ec:8b:fb:66:d3:
26:92:e9:0a:d7:b3:1c:05:5b:e1:32:94:0b:ba:ea:
8c:e3:8a:b4:6a:be:11:2c:55:c4:7c:ed:5b:8b:ef:
2c:7a:e1:2d:1c:b1:0f:62:7d:a1:7e:a0:11:7a:48:
ea:cf:0a:12:79:d5:e2:2b:85:0e:72:8d:f1:b4:f2:
da:55:4f:25:fe:9c:ca:98:a3:b6:04:c1:46:48:92:
d7:16:dd:71:7b:37:32:99:2b:06:2d:a5:7f:5f:0d:
13:68:8a:89:13:d1:e5:83:39:a2:3f:82:23:9d:a3:
3c:bf:48:22:31:7d:60:ef:6a:57:51:94:4a:6f:b3:
43:dd:8d:25:94:8a:20:96:20:65:9b:39:64:63:49:
67:d1:22:65:fb:f4:73:8f:ac:99:ee:77:16:2c:fd:
b4:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:50:C2:F1:0D:3D:82:C6:04:8A:D4:22:0D:EC:37:EB:7C:F2:EA:CD
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/6lDC8Q09gsYEitQiDew363zy6s0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.214.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:f2:f7:e0:fc:8a:e5:1c:d3:20:c8:10:c1:dc:66:8a:71:43:
6b:0d:7a:04:a3:6f:d4:78:cf:0e:32:12:8d:a9:a1:10:de:ba:
6b:ba:91:d9:1d:b5:b7:c2:22:e2:c1:3e:2b:cd:25:25:7c:1f:
25:e9:e9:ba:7c:98:fa:a9:59:a7:17:89:57:bb:80:a3:ad:12:
cc:31:aa:18:59:f0:ab:a2:06:da:72:f2:79:73:d8:b3:6b:ff:
af:0b:00:1a:72:58:3a:82:63:7a:84:d4:a8:a7:70:2a:3b:f8:
50:ce:07:ff:53:33:2a:32:fa:66:cf:36:f7:e0:21:7e:38:d4:
f9:f1:0c:28:8d:c6:73:f9:5d:af:17:27:6c:60:e2:13:9d:dc:
49:d6:c6:03:45:d7:d1:a0:3a:d7:8b:7d:41:97:55:6b:45:41:
27:aa:78:9e:8e:5a:8d:51:f2:72:ab:1b:bd:8a:c1:d2:41:6a:
c4:89:e8:65:9b:79:c8:d5:a2:61:58:a4:e9:7c:86:63:39:ed:
61:6c:52:68:9f:ca:65:50:47:42:b7:b5:d4:0c:38:ea:40:41:
5c:90:57:1f:ce:b0:be:21:de:29:6e:b0:c8:5e:da:0a:20:86:
e3:0f:19:c1:32:42:0f:ee:10:91:b0:86:73:de:6e:2a:3b:7e:
cc:17:4b:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org