Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DgsvqLcYTj6uW2ffGUJRAcRNRs4.roa
File: DgsvqLcYTj6uW2ffGUJRAcRNRs4.roa (raw, json)
Hash identifier: 1NgAwdJxICwPMpBTbLE1UjblhN5B13SLutT1gI7teQM=
Subject key identifier: 0E:0B:2F:A8:B7:18:4E:3E:AE:5B:67:DF:19:42:51:01:C4:4D:46:CE
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0F7D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DgsvqLcYTj6uW2ffGUJRAcRNRs4.roa
Signing time: Sun 07 Feb 2021 12:34:22 +0000
ROA not before: Sun 07 Feb 2021 12:34:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24163
IP address blocks: 211.76.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3965 (0xf7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:34:22 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0E0B2FA8B7184E3EAE5B67DF19425101C44D46CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b7:9d:25:89:65:cc:19:4f:45:54:f9:82:c8:
d7:df:18:95:8a:48:2c:ab:89:78:c2:75:72:f7:13:
ee:8a:d3:c0:b1:aa:47:a8:b3:9e:e0:8c:68:5b:3a:
3a:a2:07:cf:a9:c7:8f:5d:1f:a8:df:42:a9:f4:1e:
d7:c9:1f:87:a5:2f:b7:33:2c:6a:29:ea:e8:0c:66:
d0:d7:2f:e6:9d:93:71:4d:20:58:7c:be:95:c8:99:
40:7f:00:3f:5c:a0:77:f7:f6:eb:46:0a:74:66:0f:
ca:b6:94:bf:76:c1:6c:dc:b3:30:0f:df:89:a8:02:
75:1e:2f:5a:d0:a3:69:11:69:b9:79:0e:53:85:c7:
d5:16:d1:36:92:9a:bc:b2:f2:7e:39:1b:28:ec:54:
8e:88:23:02:e5:a6:21:c9:95:d1:9c:2a:83:7b:c6:
b6:55:51:8b:c3:36:cb:a5:21:11:c7:31:ac:ca:07:
61:28:f0:1c:36:14:0b:dc:0b:c9:37:71:9b:e8:60:
40:69:f1:21:7f:67:4c:e4:32:5c:17:da:3a:04:d7:
58:c9:57:32:72:7f:85:25:4a:8e:22:42:7c:9e:df:
aa:6e:73:11:14:e3:91:b1:fd:1a:da:bd:d2:ca:a9:
0c:3a:e8:5c:10:4b:45:34:68:d4:a6:56:07:9d:0d:
15:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:0B:2F:A8:B7:18:4E:3E:AE:5B:67:DF:19:42:51:01:C4:4D:46:CE
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DgsvqLcYTj6uW2ffGUJRAcRNRs4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.44.0/24
Signature Algorithm: sha256WithRSAEncryption
65:ac:b9:f9:0a:94:76:10:1f:0d:4d:a5:98:0c:aa:d1:26:b4:
d1:cb:93:01:73:ca:51:0b:cd:63:40:bb:10:34:d1:fe:3e:32:
77:f6:62:ee:c5:6e:4c:09:98:a3:83:70:c5:ff:bb:6f:c0:f2:
3e:11:dd:36:13:60:ee:1d:12:93:0e:aa:ee:5d:56:3d:50:c8:
93:d7:35:1e:5d:e0:6b:53:58:25:3e:24:8b:7a:c9:75:45:e7:
e9:e4:5a:ec:5e:b1:59:b6:eb:2b:4a:44:ce:94:9b:a1:ed:06:
b5:41:f7:52:74:da:23:3a:55:f8:ef:68:23:2c:fe:55:d6:2a:
48:d2:3a:cd:aa:66:9f:80:38:c4:6a:d1:19:30:d1:9c:73:5c:
d3:5d:4a:35:72:db:be:04:53:70:38:91:4b:21:84:a5:27:c0:
ef:a2:70:03:bb:45:bd:d0:2e:13:c0:af:6d:7e:41:bb:37:1a:
da:f2:e5:f0:62:cd:61:52:89:43:f6:af:19:10:1b:fd:15:08:
79:83:31:15:82:fb:c7:b0:a8:cb:7c:85:15:91:cb:9a:7f:b0:
6f:7b:83:71:f9:40:4a:12:f9:21:2e:e6:08:f5:eb:27:63:53:
a7:f4:9a:c6:e5:ca:bb:09:46:31:9a:ab:7d:83:ae:25:ab:5d:
bd:a8:57:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:45 2024 by rpki-client on console-ams.rpki-client.org