Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DDoYEtGBPovTjaUPtJsihQk69Xs.roa
File: DDoYEtGBPovTjaUPtJsihQk69Xs.roa (raw, json)
Hash identifier: XU1umIS1N0BgNBJUvrjMrBZHRwe2wW9H3u8VT++h7GY=
Subject key identifier: 0C:3A:18:12:D1:81:3E:8B:D3:8D:A5:0F:B4:9B:22:85:09:3A:F5:7B
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0BB1
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DDoYEtGBPovTjaUPtJsihQk69Xs.roa
Signing time: Tue 29 Sep 2020 10:08:43 +0000
ROA not before: Tue 29 Sep 2020 10:08:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4662
IP address blocks: 61.58.96.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2993 (0xbb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:08:43 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0C3A1812D1813E8BD38DA50FB49B2285093AF57B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:af:28:2d:41:b1:ad:07:99:3d:7a:7e:1b:e2:
ce:c6:e1:40:c1:fb:15:9e:15:9a:f0:3a:37:df:44:
39:ee:37:4a:68:0e:5a:42:ba:1c:18:c0:50:93:2e:
da:b3:be:c6:45:f8:46:9d:0f:0f:3b:a3:3b:56:1d:
e6:32:c6:03:ca:6b:09:ff:ca:f7:f0:24:76:d3:f6:
38:3d:f6:ab:cf:ad:d3:ff:41:42:09:fe:4e:bc:91:
d2:e2:30:56:a2:9c:9b:01:96:65:26:90:6a:cd:11:
a2:29:2b:25:fc:50:9f:02:d4:84:ce:4e:01:e5:39:
ad:f4:e4:16:55:71:12:a9:dd:56:bb:d0:c9:fb:51:
68:c1:f4:46:c5:6a:e6:44:12:71:3c:a8:3c:83:fc:
7a:4d:b5:c4:64:0b:6f:6e:8d:c4:8c:c3:36:6f:d1:
9f:21:f7:e9:e5:37:4f:0c:0c:ce:91:53:36:7a:7b:
f9:b8:b9:97:0c:65:88:2c:38:89:55:3f:10:04:79:
3a:70:c5:cc:68:c9:76:07:7e:b6:f7:19:2c:73:02:
04:1b:36:bb:b4:73:73:b6:a3:ad:92:3f:e5:e1:2c:
dc:9d:58:1d:bb:8e:44:83:36:99:80:6e:79:bd:9b:
27:bf:bc:68:14:aa:e9:31:67:21:dd:73:b0:49:84:
16:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:3A:18:12:D1:81:3E:8B:D3:8D:A5:0F:B4:9B:22:85:09:3A:F5:7B
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DDoYEtGBPovTjaUPtJsihQk69Xs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.96.0/20
Signature Algorithm: sha256WithRSAEncryption
27:36:55:93:e6:78:3e:f4:a3:30:1d:80:07:bf:e1:b3:88:b1:
aa:f1:e1:de:23:12:77:f0:c8:37:c5:c7:fc:ea:88:28:b7:a7:
52:ec:97:86:7b:d2:0d:d4:67:19:09:18:be:f2:85:ee:54:b0:
c6:0a:f6:ba:d9:b1:5d:bc:82:1e:e4:79:88:3f:57:20:81:ea:
d5:fa:db:46:b3:7b:79:bd:2e:b9:4c:f6:8f:bc:f3:b2:29:3f:
df:06:a3:1d:d3:49:22:96:43:df:8b:e7:b2:72:d1:9a:8b:ce:
0f:de:55:1e:f1:cf:e3:6c:90:5f:a6:0d:30:9c:b4:a4:5a:9c:
02:5d:02:60:65:c5:73:f6:63:63:47:b6:1b:d2:3d:3a:1c:1c:
1a:ba:2b:43:cc:77:03:af:0e:02:9f:1c:af:41:2d:58:8a:16:
14:ae:d2:8e:f6:9c:a8:05:f9:4e:d9:52:ab:d6:3c:d3:61:e6:
54:55:cf:93:5a:a8:ef:be:d0:e5:9d:ab:3e:67:fc:a8:29:0f:
f9:e1:11:1e:06:db:55:91:e2:f6:43:b0:81:67:ef:17:f9:9d:
be:78:48:bd:a8:ae:9c:75:75:6c:ed:e6:74:50:bf:61:f2:62:
ac:f4:72:80:ad:db:d7:ee:4f:40:e1:c4:8b:5e:80:de:7c:fc:
bf:3e:db:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:45 2024 by rpki-client on console-ams.rpki-client.org