Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GfhFfthobcdtU-L8XRIH_M-5gLI.roa
File: GfhFfthobcdtU-L8XRIH_M-5gLI.roa (raw, json)
Hash identifier: AOSpuv9zHCanrPXpOgz6uB/ws+VDdsHGQasPcN5hVP0=
Subject key identifier: 19:F8:45:7E:D8:68:6D:C7:6D:53:E2:FC:5D:12:07:FC:CF:B9:80:B2
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0B7E
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GfhFfthobcdtU-L8XRIH_M-5gLI.roa
Signing time: Tue 29 Sep 2020 10:08:29 +0000
ROA not before: Tue 29 Sep 2020 10:08:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 211.76.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2942 (0xb7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:08:29 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=19F8457ED8686DC76D53E2FC5D1207FCCFB980B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:26:92:2d:5f:d2:89:aa:2e:a3:c5:30:6c:f3:
a1:1c:cc:de:46:05:4f:05:10:bb:20:53:6b:8d:21:
05:47:ea:c7:26:e1:bb:76:5f:ce:3f:ed:13:0b:db:
cf:78:d8:c1:b2:ef:83:26:ef:31:cc:d0:89:bf:e1:
c1:45:e1:5d:89:74:c3:ce:a3:6d:46:f2:6b:bb:11:
b0:08:c5:1f:3c:fc:66:ef:ea:65:83:cd:dd:86:c5:
2b:f4:42:de:e4:bd:a9:bc:b0:b1:43:81:1e:e8:cb:
a5:d1:49:4a:d7:a2:40:64:84:63:56:fc:60:8d:4f:
05:3c:86:48:10:fa:8b:5f:32:be:be:0f:99:ff:e4:
b4:82:14:43:e9:f4:75:96:07:53:4a:64:91:ea:d5:
a7:91:b1:22:ce:2b:8b:2f:47:b3:c4:8d:46:bc:66:
00:a0:7e:64:39:a2:74:1e:ee:0f:21:4a:d1:aa:57:
dc:b6:c7:75:2e:79:20:69:00:1e:59:2f:26:1f:ff:
40:b4:d8:1b:50:9f:0c:e4:60:30:15:4c:bf:3a:93:
86:ec:06:e0:f3:b5:a5:70:e4:8a:7a:95:22:5e:23:
cb:bf:73:cc:5b:1b:d6:4a:49:f8:14:7b:61:1a:20:
ed:96:00:82:d0:f7:65:81:15:52:41:10:7e:09:22:
b9:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:F8:45:7E:D8:68:6D:C7:6D:53:E2:FC:5D:12:07:FC:CF:B9:80:B2
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GfhFfthobcdtU-L8XRIH_M-5gLI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.78.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:28:40:7f:9e:7e:f3:85:26:92:b2:66:f4:b9:e5:d3:17:8f:
b3:36:39:04:71:46:3f:30:a4:55:82:f5:12:37:49:54:6d:ed:
eb:60:d0:61:b1:f2:99:29:46:f6:80:f2:2e:c4:15:fa:c9:e9:
27:72:41:53:9e:de:4e:95:3e:f2:a9:ae:dd:47:c5:64:a9:08:
05:98:e9:38:25:3c:27:1b:4c:3e:cd:44:a6:c5:3b:82:77:41:
c0:0c:9a:f0:39:0e:dc:56:c4:f7:98:a2:6a:f8:43:88:c3:4e:
d8:c2:39:58:75:43:35:e5:9d:96:ba:fc:15:83:e2:a9:82:0c:
eb:33:57:af:de:e0:68:a6:04:87:df:a7:35:9c:b3:b4:9e:81:
9b:7e:db:fe:39:8b:64:1a:1b:23:cf:7a:8b:4b:47:f6:6b:06:
41:b0:83:ba:cf:e1:69:2a:7d:e2:4b:4d:4f:69:80:ba:03:a3:
24:1a:03:63:19:d1:ee:ec:5d:bc:06:e8:01:94:bb:f7:55:a5:
82:34:c1:04:76:79:8a:ae:6a:ab:a8:7b:12:d0:f1:79:05:8b:
dc:c3:be:9d:54:c6:a1:f7:2b:a7:0d:e3:98:02:9b:e8:d4:ef:
37:12:51:9d:b1:56:c0:f9:bd:f3:a9:b1:92:03:18:ff:15:97:
0c:46:70:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:35 2023 by rpki-client on console-ams.rpki-client.org