Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/COxjLcRAftvlqBwAYCN8sK6ur1w.roa
File: COxjLcRAftvlqBwAYCN8sK6ur1w.roa (raw, json)
Hash identifier: TELZeEcE8GtejMeP1vuRsm5epAflKlS0BnkBvSe2FM0=
Subject key identifier: 08:EC:63:2D:C4:40:7E:DB:E5:A8:1C:00:60:23:7C:B0:AE:AE:AF:5C
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/COxjLcRAftvlqBwAYCN8sK6ur1w.roa
Signing time: Thu 15 Sep 2022 02:36:15 +0000
ROA not before: Thu 15 Sep 2022 02:36:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4662
IP address blocks: 61.58.96.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:15 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=08EC632DC4407EDBE5A81C0060237CB0AEAEAF5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:23:f4:90:33:36:89:3e:fd:65:e8:ce:c3:83:
95:12:1f:c8:9c:de:5a:44:49:3d:1f:14:f6:fe:72:
d5:30:20:12:84:c0:a7:8b:cd:4c:bd:39:d3:63:de:
2a:19:32:f4:11:da:05:2e:12:7d:05:72:6d:93:49:
cf:64:bd:4f:70:d1:8c:54:cc:64:dc:90:69:64:9a:
c2:85:6f:36:f8:11:79:f3:5b:24:79:1c:a0:4a:32:
86:7a:7f:5c:89:99:b5:1f:39:74:2e:ff:1d:4e:f8:
9a:9b:95:8f:95:30:0c:94:20:1d:18:da:b4:ea:b2:
b4:0f:6c:22:1b:3e:20:dd:ce:43:46:59:c9:ce:a5:
a6:a7:51:89:40:1a:75:72:0d:85:c9:0c:d8:9c:8e:
8b:07:62:07:11:de:6a:92:41:b1:c0:b7:24:12:49:
d8:1f:c7:23:2e:c4:99:49:8e:f7:49:45:83:42:9d:
98:da:fe:c2:bc:63:2b:71:d3:42:ab:e2:bc:b4:41:
87:09:f0:73:1f:3b:79:ca:b3:9a:22:aa:ef:a5:d0:
40:e4:14:a7:76:0a:aa:50:cb:a0:b7:77:ce:63:10:
c1:52:ce:d7:15:cb:9c:e0:32:cc:cf:73:87:de:95:
be:af:76:ef:95:cc:ac:9a:b5:19:68:2d:60:11:11:
25:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:EC:63:2D:C4:40:7E:DB:E5:A8:1C:00:60:23:7C:B0:AE:AE:AF:5C
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/COxjLcRAftvlqBwAYCN8sK6ur1w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.96.0/20
Signature Algorithm: sha256WithRSAEncryption
52:32:bb:10:b3:89:78:d3:10:0a:67:21:85:18:ef:b0:fb:32:
14:cb:da:17:b3:66:d2:84:5e:bb:32:40:4e:f9:0f:69:6d:84:
2d:e5:72:49:a6:b6:44:cb:20:9d:e2:66:42:d7:f4:cc:86:65:
b7:88:73:63:9c:94:c5:dd:80:bb:8f:71:37:aa:bd:7a:bc:57:
1b:62:f7:23:a5:14:1c:4b:5f:2b:92:7c:d8:f6:fe:ef:4d:5f:
1d:d4:61:6b:c1:c9:f8:c2:77:1d:cd:b8:93:92:81:41:f5:1e:
ca:ca:a3:8a:09:76:2e:d5:56:e6:36:88:b3:a3:dc:37:ec:bc:
16:12:e6:b1:f0:27:a6:19:e8:f6:e9:9e:1b:18:b7:f0:12:5f:
55:34:79:da:fb:79:f7:92:af:62:14:bd:d5:fa:8d:e8:1d:aa:
7b:47:6e:3e:8a:f0:b6:d7:de:84:d3:68:05:41:0a:3b:10:b7:
36:48:11:d2:ab:0c:ba:88:a0:77:56:f4:8d:d3:8e:ac:b6:ff:
2c:12:95:00:57:78:38:39:c2:20:58:26:c2:43:aa:c6:65:63:
21:69:73:3f:65:2b:bf:cd:c4:e1:8f:38:3a:a4:8a:f5:5a:e0:
b3:aa:27:70:93:32:0d:e1:11:f1:d2:22:3b:74:2a:90:ee:64:
62:af:c5:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:45 2024 by rpki-client on console-ams.rpki-client.org