Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ErzH2biNQsuDdBiARndPO9rAMlw.roa
File: ErzH2biNQsuDdBiARndPO9rAMlw.roa (raw, json)
Hash identifier: 7JDlP8E7Q5z5cnz72yas7IDH7dmz5coJg+kNEG4A/y4=
Subject key identifier: 12:BC:C7:D9:B8:8D:42:CB:83:74:18:80:46:77:4F:3B:DA:C0:32:5C
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1A1C
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ErzH2biNQsuDdBiARndPO9rAMlw.roa
Signing time: Sat 22 Oct 2022 06:18:29 +0000
ROA not before: Sat 22 Oct 2022 06:18:29 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24165
IP address blocks: 61.64.16.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6684 (0x1a1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:18:29 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=12BCC7D9B88D42CB8374188046774F3BDAC0325C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d0:36:a9:e4:7b:a0:0b:25:8a:9f:79:dd:6a:
1b:f7:58:e0:fc:59:70:45:c7:11:fd:b7:1d:15:79:
57:e8:2f:fe:9c:3a:8d:f2:0e:37:63:4b:f0:65:4e:
3c:2e:0a:30:ac:9a:f9:78:3b:f0:6e:22:af:00:de:
64:12:54:00:95:38:b8:af:1b:ad:0b:a8:8d:8e:82:
87:c2:eb:28:ea:9d:1e:35:dd:7f:3e:4e:54:e5:e9:
0c:66:a3:8b:7f:59:be:df:1a:c2:b4:79:b6:a8:76:
3d:8a:96:c9:c1:0f:a9:9f:54:ab:aa:fe:3a:e1:f2:
54:ab:12:8f:29:ff:01:96:9d:e8:50:cd:9d:ff:c8:
b5:62:f3:40:68:f3:aa:ed:d7:fa:d5:cb:54:67:98:
70:4c:51:2c:22:e1:f9:df:3c:65:50:9c:f4:ee:ad:
24:94:30:89:32:a1:f2:96:d5:ec:d3:12:83:a1:45:
e2:f6:fb:83:8f:60:27:9e:48:93:4d:d2:70:13:03:
b3:cc:29:41:03:fe:b6:17:7f:d1:64:c4:b7:6b:b0:
77:d2:39:04:0a:cd:d0:36:8c:c4:9b:5e:46:4a:81:
a4:ef:d9:c4:0f:be:1f:fb:d2:ef:0d:a3:92:44:4b:
8e:8a:cb:a2:b6:06:83:75:9a:78:65:bc:5d:91:89:
c6:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:BC:C7:D9:B8:8D:42:CB:83:74:18:80:46:77:4F:3B:DA:C0:32:5C
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ErzH2biNQsuDdBiARndPO9rAMlw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.64.16.0/21
Signature Algorithm: sha256WithRSAEncryption
1f:50:d4:b0:43:13:54:5b:07:ab:bb:3a:a8:22:65:9a:9e:bc:
a8:f8:8a:92:46:6e:7f:ed:ab:a5:56:03:f5:55:00:40:d7:5e:
d7:6b:34:63:68:e9:2c:b7:6b:7c:1c:e5:6c:a6:91:65:f8:eb:
02:f2:d7:70:31:4b:dd:5d:ce:15:19:ff:cc:a3:ae:90:1d:f5:
99:58:99:46:65:ac:59:71:f5:de:69:6f:b6:31:7c:7c:03:2b:
21:32:ee:a5:76:95:72:91:0f:bf:41:50:fe:8a:37:c7:be:d0:
c7:94:b1:0b:4a:03:26:78:76:3f:21:6c:b3:60:0f:a8:30:a6:
d5:a1:5b:80:61:5c:cd:12:06:9a:b3:34:57:d4:56:14:57:f5:
67:8a:a4:14:39:cc:e7:c0:07:71:70:ad:7c:72:65:a9:d5:5f:
19:4a:28:45:b2:15:79:5f:42:68:6a:8f:40:52:98:a2:f3:86:
eb:ff:5b:78:88:a8:e1:74:39:2d:81:cc:da:8a:1b:99:09:08:
63:92:f8:fc:30:16:4c:65:65:0d:b4:1e:e9:d1:53:a6:bb:f5:
6a:6b:6d:8b:19:a2:ff:d9:93:06:d1:a4:d6:de:aa:e2:f9:6a:
fa:74:0a:ab:3b:70:85:51:fc:e6:1e:2c:d6:85:ff:39:32:76:
04:4e:10:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:46 2024 by rpki-client on console-ams.rpki-client.org