Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AK-IcdPGPkSDTv15eXtWaiNzZ4I.roa
File: AK-IcdPGPkSDTv15eXtWaiNzZ4I.roa (raw, json)
Hash identifier: exN4tR2LHL+ODDLomSGS0XbTX1I9VuKLpuiOjE1nBwE=
Subject key identifier: 00:AF:88:71:D3:C6:3E:44:83:4E:FD:79:79:7B:56:6A:23:73:67:82
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1A74
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AK-IcdPGPkSDTv15eXtWaiNzZ4I.roa
Signing time: Fri 04 Nov 2022 01:26:06 +0000
ROA not before: Fri 04 Nov 2022 01:26:06 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 61.61.212.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6772 (0x1a74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Nov 4 01:26:06 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=00AF8871D3C63E44834EFD79797B566A23736782
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8f:ac:81:a4:19:4a:9c:1a:89:b0:d0:7e:4c:
e9:7b:df:19:ac:e5:21:ff:83:7b:38:71:35:71:43:
b5:1d:a8:c9:8e:31:4b:68:79:b3:f5:1f:37:16:04:
92:ec:11:1b:d2:dd:63:70:b9:4b:f0:db:f3:ec:68:
e2:7f:20:82:49:f8:75:dc:b8:e4:c0:9e:e1:b1:03:
83:8f:9f:1d:a3:29:e1:85:35:f2:d9:c3:0a:61:56:
5d:e7:b7:e2:c9:58:63:02:17:6e:d9:af:b9:32:5c:
f7:d2:40:a1:2c:a8:39:58:ea:1b:b8:08:c1:37:a0:
46:49:98:c6:be:c8:b1:ce:7d:8b:d2:23:61:a7:43:
ca:19:08:93:6b:56:0d:57:42:a4:d0:bc:68:bd:77:
45:56:12:18:b5:92:32:ee:6c:08:31:b1:1d:24:3e:
e0:77:17:fe:0a:4d:37:2f:95:73:bf:5d:06:f7:a8:
d8:e2:8a:1c:52:9d:09:db:28:ea:db:29:9c:0a:5f:
a1:aa:78:20:c7:4a:4a:db:cb:81:8d:12:05:36:0d:
02:21:cb:7d:de:ed:40:61:61:fe:25:d2:13:d2:89:
28:62:66:8c:98:0f:a4:29:29:ee:f9:04:cd:cc:c7:
06:2b:b5:a9:c0:d7:01:69:d7:12:56:cd:c3:8b:d4:
82:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:AF:88:71:D3:C6:3E:44:83:4E:FD:79:79:7B:56:6A:23:73:67:82
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AK-IcdPGPkSDTv15eXtWaiNzZ4I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.212.0/22
Signature Algorithm: sha256WithRSAEncryption
32:b4:18:2e:f4:69:6f:a2:6c:f7:f3:91:00:2f:ac:01:0d:dc:
47:f7:d8:b5:4f:b6:3e:e2:87:2b:75:5b:4e:76:f1:99:2a:79:
44:db:e8:c1:6f:8d:28:6a:2b:b3:b9:54:8e:c9:3f:c4:35:75:
81:a6:ce:3a:5e:e5:19:69:e6:e6:3c:e4:61:6c:be:81:52:b9:
30:13:33:40:fe:44:44:e4:e5:a2:51:e3:48:7e:9d:74:17:77:
c4:c3:9c:87:9c:a9:09:33:91:37:b5:ed:ce:8a:bb:cd:a1:0e:
61:dd:01:a5:81:49:dc:95:dc:ea:05:2d:c9:ea:95:b3:bb:f5:
4d:63:d1:9e:f6:f7:2c:23:7e:2a:45:b9:fb:c8:a5:50:dd:de:
c2:fd:b7:c7:9b:4a:65:82:6e:31:93:15:18:39:53:f3:31:c4:
a8:ff:33:c8:9f:ef:15:3c:45:4c:4c:45:7b:b2:bb:48:9e:6f:
a4:6c:12:0d:05:10:06:59:8c:6c:8c:16:97:f5:d0:5f:58:ba:
4d:c8:a5:1a:d1:e5:40:1c:b8:f9:e9:02:39:3f:78:7f:f0:37:
60:7b:15:b8:8b:13:be:c8:7f:33:c0:4d:fd:b2:af:47:35:55:
e0:2f:25:26:76:2d:d5:bc:b1:b2:bb:d1:be:41:db:9e:60:c2:
ef:23:46:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:45 2024 by rpki-client on console-ams.rpki-client.org