Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/6yLQiSGyE-gWCYkRtqQ8VSPaM_o.roa
File: 6yLQiSGyE-gWCYkRtqQ8VSPaM_o.roa (raw, json)
Hash identifier: urMyR1AoEUm3CT5iibB2RRz8/4iD7180fNd4ezlT3Q4=
Subject key identifier: EB:22:D0:89:21:B2:13:E8:16:09:89:11:B6:A4:3C:55:23:DA:33:FA
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0BC1
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/6yLQiSGyE-gWCYkRtqQ8VSPaM_o.roa
Signing time: Tue 29 Sep 2020 10:08:48 +0000
ROA not before: Tue 29 Sep 2020 10:08:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 119.77.224.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3009 (0xbc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:08:48 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EB22D08921B213E816098911B6A43C5523DA33FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f1:bd:b8:ee:2a:53:c2:6a:8a:b6:a0:ce:78:
ea:ce:d9:0b:33:b5:e0:ca:a4:fa:34:82:a4:21:70:
9f:b6:b8:b2:38:00:e2:ce:25:03:e1:54:9d:d1:25:
18:06:6e:86:d0:09:1d:dd:45:80:d7:fc:aa:cc:0d:
15:9d:4e:fa:f5:84:a0:47:cf:22:51:c1:e7:6d:48:
94:82:27:49:f1:dc:a7:dc:3e:3c:42:00:cd:d4:86:
36:fa:67:56:1e:65:1a:a8:62:a3:00:e5:ab:11:91:
60:c5:fb:15:80:ca:fa:48:78:13:a3:79:3f:33:22:
17:68:9d:94:33:ad:a5:27:b6:5d:16:b0:52:e3:a5:
28:14:c4:24:a3:07:0e:42:b8:62:09:2f:9f:a2:74:
e5:8c:59:2a:50:33:b6:ba:d0:0a:e9:01:d9:16:47:
e9:99:bc:00:ea:66:f9:7e:7c:1a:0f:60:82:10:c4:
ae:b4:cd:d4:91:7c:fd:4c:53:f2:7d:4a:92:9f:ca:
29:fb:a5:98:e2:b9:9b:cb:53:67:49:2b:45:8d:8d:
13:b4:b5:aa:a8:ac:5c:53:66:96:16:b4:44:3b:00:
f0:23:60:7f:86:8d:74:c6:8b:e2:35:d7:19:a7:13:
ad:29:17:32:87:b5:81:8d:94:ef:94:6b:16:d5:6d:
1c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:22:D0:89:21:B2:13:E8:16:09:89:11:B6:A4:3C:55:23:DA:33:FA
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/6yLQiSGyE-gWCYkRtqQ8VSPaM_o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.77.224.0/20
Signature Algorithm: sha256WithRSAEncryption
54:35:9c:91:4f:9a:cb:16:70:64:56:79:28:1b:56:52:c0:95:
2b:b5:7d:22:ed:1d:e5:6a:2f:64:3f:54:49:d4:55:a2:d0:98:
71:7b:ed:0c:3f:da:fa:94:a4:31:f2:70:94:c9:3b:af:c1:98:
e5:6b:75:a0:c4:dd:54:b6:55:e9:1a:74:23:b7:a5:ef:e7:ac:
4b:5c:1c:37:c0:42:57:a8:ba:02:42:5e:ca:3d:ab:01:c1:d5:
a2:e3:c9:19:d8:e4:13:96:7a:58:53:0c:f3:b5:67:8e:13:63:
ef:a6:ec:dd:2e:d5:ce:d6:5f:18:12:30:1b:fa:e5:bb:5a:72:
ec:58:04:12:fa:77:92:33:57:ba:4d:89:b9:fd:88:4a:6a:a0:
80:85:8f:79:a3:66:32:05:fe:41:f3:a7:45:5a:39:31:0a:91:
97:e9:0c:b2:6b:3b:87:4d:c8:b6:dd:c4:98:b3:92:70:74:f8:
d3:86:86:1f:e9:9e:ad:b4:dc:c0:f5:ee:3e:23:07:92:3c:7d:
a5:09:a3:68:cc:79:ca:8a:62:84:99:1a:00:23:da:fd:63:44:
fd:a4:1e:87:48:7f:1d:b4:21:03:eb:d7:7d:c9:45:c4:89:c2:
1f:dd:5e:3c:46:ac:99:75:75:05:8c:6a:1f:36:7f:21:3a:0e:
0e:7f:49:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org