Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DHV2HKh49jfVKroHjxdVERg-hIc.roa
File: DHV2HKh49jfVKroHjxdVERg-hIc.roa (raw, json)
Hash identifier: rS6VEDpDN8iXfR06YUe8W5HLauh47s9PwzdWpC2yHEg=
Subject key identifier: 0C:75:76:1C:A8:78:F6:37:D5:2A:BA:07:8F:17:55:11:18:3E:84:87
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12CC
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DHV2HKh49jfVKroHjxdVERg-hIc.roa
Signing time: Wed 29 Sep 2021 02:55:00 +0000
ROA not before: Wed 29 Sep 2021 02:55:00 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24165
IP address blocks: 61.58.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4812 (0x12cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:00 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0C75761CA878F637D52ABA078F175511183E8487
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d5:ea:c8:1e:c9:c7:c2:40:c0:c0:68:1d:2d:
f2:ec:33:d0:79:be:0c:bc:15:0b:37:2c:51:99:26:
c9:9d:e3:a3:20:56:be:ba:2a:8e:1d:4e:2b:fe:c7:
06:2c:13:85:77:6b:48:6e:d1:62:8c:0e:22:33:4d:
e9:a7:f9:fb:ad:e0:e2:38:08:bd:b2:3e:bb:10:cd:
5d:1c:92:05:4f:9b:f1:26:2b:72:f1:c4:33:89:84:
22:05:73:6d:42:6c:81:6d:55:59:16:d3:b4:f3:cb:
18:e4:17:8d:6c:ce:2a:45:8e:cc:33:be:57:3a:95:
5a:06:64:5b:61:8d:f6:26:22:4e:4f:43:2a:f6:ac:
06:ef:d5:71:06:6c:44:f1:4e:25:d6:7b:d5:e3:75:
fe:f3:53:a3:be:7c:c6:62:8e:7a:71:8e:ac:76:ac:
d0:5e:69:b9:50:2c:24:9f:93:25:5b:37:b8:aa:c6:
6e:bd:e3:6d:27:88:30:53:ed:39:b1:fe:ef:15:74:
59:a5:22:59:bd:b4:33:5e:ea:d9:99:c9:95:5c:12:
d9:1b:61:41:51:9b:28:78:a9:9b:ee:41:8e:db:d0:
69:2a:39:45:a2:63:99:10:94:93:7f:f2:53:aa:e8:
8d:52:15:ed:26:89:f5:ba:2a:62:0a:ac:74:04:fb:
37:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:75:76:1C:A8:78:F6:37:D5:2A:BA:07:8F:17:55:11:18:3E:84:87
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DHV2HKh49jfVKroHjxdVERg-hIc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.120.0/22
Signature Algorithm: sha256WithRSAEncryption
89:c1:f1:34:cd:0f:e3:9b:69:31:64:42:b7:6d:89:95:9d:36:
04:a6:7f:09:2b:39:ab:b1:0b:a4:dd:a7:fe:e5:98:b2:57:14:
98:3d:6e:f3:04:1c:f1:95:98:cf:d9:33:2e:61:21:20:2f:f2:
81:7b:f4:43:ce:62:23:69:c8:aa:b9:f7:ad:d1:3f:65:79:62:
3e:e6:00:d0:55:61:0c:5b:1c:48:13:90:44:96:f1:2e:fb:a5:
3e:aa:ed:2c:51:45:d6:38:49:d7:55:bd:b1:28:2f:d9:0e:87:
6c:84:3f:b5:e9:38:0e:3a:27:d6:89:f8:80:05:3f:91:50:66:
e4:5a:20:41:65:4b:d5:f8:9a:d1:07:42:8b:60:5e:db:7a:0b:
4c:65:4c:2d:4e:fd:be:ae:97:8f:50:98:68:13:c3:53:d6:1d:
21:2f:b9:5c:ac:bb:f1:3a:88:c9:00:f0:3b:43:10:6d:dd:3b:
e5:c4:c9:4e:6b:66:e8:d4:91:53:5c:81:67:5c:89:41:14:a9:
07:e9:ff:bd:73:fd:b6:e5:aa:8e:ca:63:1e:b4:14:97:fc:b9:
58:d4:ac:57:1e:3c:bd:4b:05:5d:14:94:a9:11:fb:21:04:2b:
f3:e5:84:61:56:1a:b5:40:08:f4:de:0b:93:15:c3:7a:12:51:
d4:68:0f:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:46 2023 by rpki-client on console-fra.rpki-client.org