Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DowTjarMINFJN1ZTCwSlv19pzJ8.roa
File: DowTjarMINFJN1ZTCwSlv19pzJ8.roa (raw, json)
Hash identifier: Zgu2nsJJ9RtpEvwlPhs6SchzGs62F+azg0Mr6GyOsV0=
Subject key identifier: 0E:8C:13:8D:AA:CC:20:D1:49:37:56:53:0B:04:A5:BF:5F:69:CC:9F
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DowTjarMINFJN1ZTCwSlv19pzJ8.roa
Signing time: Thu 15 Sep 2022 02:35:51 +0000
ROA not before: Thu 15 Sep 2022 02:35:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 211.76.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:35:51 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0E8C138DAACC20D1493756530B04A5BF5F69CC9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c3:ca:4e:8a:ea:fc:2c:14:8e:42:36:1a:49:
04:3b:82:b0:6a:f7:b6:d5:2f:da:61:2d:69:a9:ac:
2f:91:e6:5a:92:6f:8d:a4:54:1a:f9:9a:6d:39:65:
c0:b7:1a:00:28:47:6f:68:73:4d:b3:46:cd:53:d1:
db:a2:f6:b9:ab:67:b4:25:6b:8a:0e:0a:c0:90:74:
f1:04:9f:4b:74:3c:3a:d2:cb:18:48:69:f1:87:24:
2c:42:79:87:a1:8e:41:1b:8a:40:d5:53:58:d4:27:
9c:80:d0:ba:2c:cd:8d:f1:e7:a7:9f:1f:bd:ec:49:
af:96:b2:5d:4d:26:4a:2b:c5:17:2d:93:55:4b:72:
3b:4c:0d:74:33:db:a9:81:75:e4:1c:a3:39:6f:4b:
a8:37:de:dd:e4:b5:b2:6f:f9:e2:6c:73:b6:03:0c:
00:66:6a:6d:e4:f2:a3:8f:68:0d:64:12:e0:29:f9:
2e:b3:34:88:15:7d:76:37:60:5b:7c:a0:a0:b6:5c:
36:d8:fd:bc:42:9a:ea:61:00:b7:43:55:c5:ff:19:
35:38:1f:4a:d1:d5:48:81:29:77:79:be:48:c9:1d:
95:c6:b1:99:41:a5:df:3d:95:6b:7c:83:57:d1:ff:
83:7e:29:15:13:81:64:5d:89:f1:7a:9b:3e:46:64:
67:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:8C:13:8D:AA:CC:20:D1:49:37:56:53:0B:04:A5:BF:5F:69:CC:9F
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DowTjarMINFJN1ZTCwSlv19pzJ8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.77.0/24
Signature Algorithm: sha256WithRSAEncryption
17:56:14:8e:52:89:30:e6:40:d8:fa:b0:37:2a:ba:32:6a:62:
12:d3:13:01:09:95:38:52:29:b5:a8:6e:df:19:8c:17:2d:bf:
66:da:0a:8b:73:d0:8a:ac:68:cc:cf:75:5c:88:4a:23:03:31:
e3:4b:30:ba:73:c0:72:b6:3d:9a:f4:f0:4f:39:59:32:ac:a1:
84:06:c4:22:c5:08:28:fd:34:91:88:3c:4b:fc:76:2c:28:b3:
df:6a:5e:66:ff:b6:c1:a3:3c:a6:db:2f:6f:4a:88:25:ce:78:
2b:26:dc:8d:4a:33:1a:d7:32:5c:47:19:52:f6:41:4e:bf:5f:
5d:d8:27:1a:3d:4d:05:52:5e:9b:76:6b:92:18:f1:e7:1b:72:
63:9c:ce:fb:63:20:e4:fe:85:83:3b:49:07:eb:9c:17:9b:30:
8c:b3:54:29:c4:d1:7b:10:bb:b1:6e:29:9e:cf:4c:07:71:9d:
02:cf:e8:5a:14:53:73:7f:13:57:00:6a:d1:67:d1:c4:17:f6:
d1:b3:9c:67:15:f2:2e:ac:07:d1:95:73:2e:30:b7:5d:53:e9:
f7:9a:8a:cb:f8:33:31:17:f0:e4:c2:6b:9e:3d:38:f0:f0:1c:
d1:3e:dc:3c:a6:f5:66:cb:3d:c5:e9:49:93:ca:7e:b7:a2:95:
b6:63:b5:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:45 2024 by rpki-client on console-ams.rpki-client.org