Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/G2DlOokpIStJvWPLGWuC6FyA-CY.roa
File: G2DlOokpIStJvWPLGWuC6FyA-CY.roa (raw, json)
Hash identifier: PD9vtWDHHgvrx0RExPnCRKIQcM6eIv+VQ2qdGVOD9qo=
Subject key identifier: 1B:60:E5:3A:89:29:21:2B:49:BD:63:CB:19:6B:82:E8:5C:80:F8:26
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0F5D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/G2DlOokpIStJvWPLGWuC6FyA-CY.roa
Signing time: Sun 07 Feb 2021 12:33:51 +0000
ROA not before: Sun 07 Feb 2021 12:33:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 122.254.0.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3933 (0xf5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:33:51 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1B60E53A8929212B49BD63CB196B82E85C80F826
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f3:ce:2d:ae:17:d7:12:f9:65:97:ce:94:f2:
46:48:da:57:6b:be:c7:a2:a0:bf:85:69:39:d4:d5:
2a:f9:8e:9b:1e:a4:45:8a:23:b4:68:4a:42:c6:01:
75:f5:e5:46:cb:5d:28:6c:ec:44:61:df:da:4e:95:
af:70:18:e5:e2:8e:98:a7:d5:be:a0:d6:2d:39:c2:
28:e2:f6:32:ff:10:a2:3c:54:cd:ec:55:36:fe:0d:
4b:93:51:b0:65:7e:d7:3c:f0:9a:6b:50:69:93:76:
68:e4:59:f0:b2:e4:5b:46:51:0d:9c:c6:4f:5d:da:
22:c2:30:79:2f:d6:a7:a6:8d:6b:8d:05:9d:10:21:
3c:32:ce:0d:dc:5c:e2:de:e7:58:30:e5:a4:14:ab:
96:4a:bf:eb:27:77:fc:c2:fd:65:cb:bd:db:01:42:
02:7c:95:d5:bb:0d:58:2e:87:01:12:50:51:5c:7a:
b2:15:cb:ba:a5:9c:1b:3b:a8:f1:ca:0e:14:02:0f:
b4:d8:f4:a2:4d:52:ee:64:0e:3f:d6:b6:5d:2c:72:
33:28:4a:a6:a2:7f:44:be:d1:02:33:45:88:f9:c6:
a8:d4:c8:a7:68:52:6f:24:c2:0f:90:cb:df:88:5e:
74:4a:fc:dc:4a:ea:6f:e6:69:2c:92:97:aa:9b:d4:
8e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:60:E5:3A:89:29:21:2B:49:BD:63:CB:19:6B:82:E8:5C:80:F8:26
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/G2DlOokpIStJvWPLGWuC6FyA-CY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.254.0.0/21
Signature Algorithm: sha256WithRSAEncryption
76:33:c9:f3:fc:0a:d5:01:42:d6:1f:42:29:13:49:f1:fe:90:
5f:73:9f:bd:bb:36:d2:df:0b:4c:f3:fc:d2:24:ac:a0:45:69:
f0:ee:57:a8:8d:fe:66:5f:6a:16:2b:de:6b:66:6d:29:00:c3:
8b:29:c0:b8:23:85:86:9c:16:ec:67:77:db:19:e9:a1:03:60:
64:6a:1a:0c:a9:cc:e6:fb:33:75:58:42:38:9a:03:7f:02:35:
61:7e:90:97:cb:3f:e0:cf:85:0b:7f:ca:7e:e9:7f:6f:9b:52:
aa:cd:a2:c7:03:3f:4e:c3:7e:69:07:0c:b5:4a:2a:6b:8a:b5:
20:30:e8:32:7a:bf:c5:65:46:fc:46:72:f4:16:18:7e:cd:67:
ab:b4:22:82:53:de:2e:82:5a:d6:69:1d:30:72:78:6c:80:5e:
76:80:34:f4:cb:6d:75:6c:78:c6:00:b7:a1:60:50:e1:67:70:
9d:2c:8b:d8:38:89:1d:5f:dd:d0:8c:79:d4:59:22:25:c2:e2:
99:2b:48:7e:3a:20:6c:13:b4:94:dc:76:3c:4b:07:f7:d3:15:
e2:86:1a:fd:df:16:4d:51:0c:4b:51:e8:eb:b6:0a:be:89:b8:
4a:ac:b2:e4:9a:a6:e9:f5:fc:c5:8b:29:44:f9:84:aa:ad:8e:
a4:39:18:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:46 2023 by rpki-client on console-fra.rpki-client.org