Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Ez6i1CdvUT94g2RXNcsLMDVeMx0.roa
File: Ez6i1CdvUT94g2RXNcsLMDVeMx0.roa (raw, json)
Hash identifier: buVJJzwUexNHkN62Hn0M4KqeZ+rZFewAJt7NmnHOsH0=
Subject key identifier: 13:3E:A2:D4:27:6F:51:3F:78:83:64:57:35:CB:0B:30:35:5E:33:1D
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0AA5
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Ez6i1CdvUT94g2RXNcsLMDVeMx0.roa
Signing time: Tue 29 Sep 2020 10:07:27 +0000
ROA not before: Tue 29 Sep 2020 10:07:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 123.0.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2725 (0xaa5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:07:27 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=133EA2D4276F513F7883645735CB0B30355E331D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:80:75:53:88:a0:19:d2:e9:72:a4:0c:41:e2:
4c:20:22:61:01:64:30:e1:5f:b9:ea:8d:b7:d2:4c:
8e:81:cc:f5:eb:c3:b4:32:7d:cd:01:3b:71:e2:db:
28:bd:17:da:3b:db:ba:2f:8f:18:12:d1:de:ff:f9:
09:13:93:2f:8c:fe:03:cb:39:e6:d7:2f:c1:26:b8:
48:3b:d8:8c:86:9e:3b:a2:62:18:9d:38:ba:b5:73:
6d:81:99:14:f3:2f:42:49:95:3a:08:96:c6:2c:98:
f9:34:dd:1a:73:3c:fa:74:18:f7:d6:8c:a6:a9:dd:
a5:a9:b3:e4:2c:e9:dc:01:e0:a2:48:47:9f:71:4e:
77:33:9f:ae:03:5b:f0:2b:e2:42:47:88:a3:8e:be:
9e:04:7a:21:e3:48:2d:c9:00:c9:72:27:9e:38:ef:
e0:cf:bf:5b:ef:30:23:e2:47:2d:66:ec:a5:a6:18:
61:39:0c:cc:8f:22:f8:39:85:f0:16:b0:f5:21:40:
f0:88:bd:13:5f:20:d3:5b:80:c9:ec:17:1a:d6:c3:
13:96:7b:4c:66:e0:96:13:78:2a:88:42:ca:29:c7:
7c:ea:9e:8f:88:27:86:95:72:95:dc:c7:fd:ad:82:
97:cb:7c:8c:77:10:e4:8c:dc:a4:be:99:42:b2:e4:
5b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:3E:A2:D4:27:6F:51:3F:78:83:64:57:35:CB:0B:30:35:5E:33:1D
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Ez6i1CdvUT94g2RXNcsLMDVeMx0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.0.42.0/24
Signature Algorithm: sha256WithRSAEncryption
59:28:8a:e7:57:e1:8b:50:ab:b8:52:cb:26:c2:41:f1:ec:9a:
11:cb:df:ef:f6:4d:c4:de:c4:95:69:9b:8b:0e:1b:14:1e:c9:
5b:ca:dd:e7:eb:19:97:74:a2:c2:35:6d:52:d6:c8:8d:85:2a:
a6:f3:b6:3f:67:70:a8:88:b8:92:65:fe:d8:77:3b:03:fd:d3:
65:c9:6a:d0:b8:89:2b:56:69:b1:7e:7c:d1:aa:2b:43:87:47:
f1:b0:b7:25:10:ac:df:10:d6:62:a4:d9:4b:99:4f:68:ce:14:
83:af:4f:f6:7f:cb:2c:4c:59:f1:7b:91:b6:67:ee:b1:b9:49:
a7:7b:9c:06:b8:5a:57:56:23:27:ff:35:44:04:bf:d4:ef:67:
2c:27:b0:d4:a4:78:65:e3:27:b4:d0:b7:63:46:13:7d:8d:bc:
70:ae:4d:bc:12:5d:32:f7:78:ae:be:32:d2:43:08:d3:ed:e7:
8e:a5:f7:1c:7f:6d:4e:f4:2e:f6:5b:53:9a:eb:77:4e:d4:b6:
36:7d:30:d2:a7:77:64:28:64:a0:45:9e:3b:b3:8e:61:77:9f:
e8:85:a9:b4:de:37:24:5d:c2:e0:9d:e8:79:6c:7d:ed:35:64:
4c:32:8f:00:6c:65:6d:52:a5:0d:72:43:aa:59:dd:84:4c:0b:
cd:d7:64:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:46 2024 by rpki-client on console-ams.rpki-client.org