Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8OfgLQrCMVYmIrmPBYuqQ03H7vI.roa
File: 8OfgLQrCMVYmIrmPBYuqQ03H7vI.roa (raw, json)
Hash identifier: yvm/oV8MFWK7i9xDT6yrJDZwoTs+Y1xZWDn3S5C5DcU=
Subject key identifier: F0:E7:E0:2D:0A:C2:31:56:26:22:B9:8F:05:8B:AA:43:4D:C7:EE:F2
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1107
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8OfgLQrCMVYmIrmPBYuqQ03H7vI.roa
Signing time: Sun 07 Feb 2021 13:03:10 +0000
ROA not before: Sun 07 Feb 2021 13:03:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 61.64.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4359 (0x1107)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 13:03:10 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F0E7E02D0AC231562622B98F058BAA434DC7EEF2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:45:b0:f4:a4:37:27:25:39:74:37:0b:3f:31:
45:88:76:0d:15:b6:10:36:55:65:bc:5c:ad:a9:ae:
87:22:45:7a:6a:61:58:ed:28:80:32:bd:64:ae:58:
30:7d:c6:70:3d:72:6c:40:6b:61:00:95:7a:79:87:
e0:4c:4e:b8:99:6d:ad:be:3a:9e:3c:68:e5:b6:4c:
21:46:91:ed:94:34:88:5d:06:1b:7d:e0:c4:f0:bd:
c3:2b:73:8f:06:f0:51:db:b4:6a:a7:73:98:e9:2a:
8d:79:6a:43:e1:ff:3f:2c:72:33:68:9e:c8:34:42:
82:62:d5:c5:ab:76:dd:11:dc:9f:75:61:2c:c1:57:
c4:08:ff:dd:da:45:09:8c:b3:1f:f1:77:18:65:17:
6b:e3:5c:7f:52:1f:ba:35:9f:11:9a:30:6c:8f:9e:
96:85:eb:16:1f:57:73:2f:72:28:3f:05:4e:6d:2d:
71:4f:e5:f0:31:a1:cf:25:25:32:90:31:d5:aa:03:
9e:c9:da:80:29:0a:02:ef:14:84:64:a2:89:d4:9c:
d0:02:79:4c:59:5a:c0:49:e7:f9:d9:fc:07:45:45:
63:a9:ed:b9:e2:cb:d0:f5:59:97:5d:e1:d7:fa:f2:
2d:0e:31:26:9d:1e:13:93:19:80:d8:c6:10:09:d5:
45:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:E7:E0:2D:0A:C2:31:56:26:22:B9:8F:05:8B:AA:43:4D:C7:EE:F2
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8OfgLQrCMVYmIrmPBYuqQ03H7vI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.64.4.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:43:85:87:11:7b:84:cb:2d:96:46:18:14:d5:3d:df:8f:5c:
fb:46:8d:07:c3:a4:2f:f8:ce:6b:b8:5a:89:31:61:95:44:25:
33:a5:5c:00:c3:8c:c4:f7:ea:bb:3a:46:36:3f:d3:29:2c:57:
a0:e0:5e:58:2e:49:0a:6f:95:54:f9:50:c4:66:6d:6d:21:71:
66:80:af:8e:55:cd:c0:e5:93:6e:74:8d:90:65:80:f0:de:8f:
d1:6b:61:5e:24:b0:e1:5b:cd:46:90:46:40:26:81:a0:fc:13:
48:ff:c5:2a:7d:65:10:d4:3c:bf:57:2b:4c:76:a6:8f:15:52:
43:81:74:75:79:c1:98:1e:ef:07:bb:99:88:31:30:48:78:06:
45:20:3f:d2:1e:bf:7c:37:db:54:18:61:50:c5:9e:e6:92:e3:
34:6f:7e:82:7e:67:68:bf:9f:a3:ef:17:46:4a:5d:52:95:94:
86:83:a8:f0:25:e7:6a:43:1f:6e:eb:d3:7c:cf:ee:c5:81:6a:
dc:32:4f:d1:eb:5f:1e:d9:3a:ed:ee:dd:eb:e6:8f:84:5d:f9:
3c:ae:d1:6d:15:fb:de:42:39:5d:41:a0:e4:80:3d:4e:3d:a2:
ce:d9:51:96:a1:c6:ec:5d:22:41:02:28:9f:6c:a6:36:2d:f9:
b8:23:f9:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:45 2024 by rpki-client on console-ams.rpki-client.org