Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GiOst3322oWp04muiJq7hCo3Y44.roa
File: GiOst3322oWp04muiJq7hCo3Y44.roa (raw, json)
Hash identifier: 2pVA54DFAJpImWagKf6OKPF01oLahGo9uHdPtfPJaSE=
Subject key identifier: 1A:23:AC:B7:7D:F6:DA:85:A9:D3:89:AE:88:9A:BB:84:2A:37:63:8E
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0AF7
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GiOst3322oWp04muiJq7hCo3Y44.roa
Signing time: Tue 29 Sep 2020 10:07:50 +0000
ROA not before: Tue 29 Sep 2020 10:07:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 61.60.214.112/28 maxlen: 28
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2807 (0xaf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:07:50 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1A23ACB77DF6DA85A9D389AE889ABB842A37638E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ee:30:f1:3c:7b:4c:30:55:47:01:a6:39:fa:
55:15:05:98:2b:ac:22:20:ab:26:f6:00:aa:53:04:
e0:ad:95:84:e7:af:fd:1c:b3:95:35:22:0a:ff:78:
97:64:75:2c:ed:93:55:fb:41:bf:cd:db:05:c5:8f:
c6:9c:07:88:cf:52:cb:d2:cc:28:07:3a:2d:0c:69:
18:38:dd:3d:b9:b9:98:f7:42:d4:f1:fb:e8:21:3c:
6a:ea:9e:38:7c:fc:08:5d:56:18:5a:b8:d4:e9:54:
a3:bf:94:18:63:6e:ea:41:ad:40:90:07:60:91:20:
13:90:78:89:15:dc:6f:20:46:e9:7f:78:96:14:c8:
8d:03:b2:9a:e7:d0:7c:89:14:b0:74:f0:56:97:38:
6d:cf:86:30:a4:71:99:49:13:1a:24:65:33:ad:6b:
0c:db:c8:e9:92:37:6e:37:51:e6:55:aa:d2:60:b8:
c6:3b:73:58:84:54:60:fe:5c:19:c6:b6:a9:b3:0a:
42:0c:b6:17:75:30:39:da:a7:6e:e6:bb:20:01:cf:
82:f9:3f:9b:61:ff:c5:88:e4:9d:6a:8a:ba:1a:26:
c7:be:ae:bc:14:92:64:49:c7:8f:4e:f3:de:ca:16:
df:6c:cc:41:7a:1c:ee:81:30:4d:ef:7e:1c:50:61:
cd:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:23:AC:B7:7D:F6:DA:85:A9:D3:89:AE:88:9A:BB:84:2A:37:63:8E
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GiOst3322oWp04muiJq7hCo3Y44.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.214.112/28
Signature Algorithm: sha256WithRSAEncryption
6c:d6:52:8e:dc:cd:c3:6b:63:94:85:62:1e:0a:b9:fd:7a:38:
01:51:17:b9:f6:67:b0:07:cf:f7:2b:d4:2c:1d:cc:0a:73:3d:
45:d2:9f:db:2c:8a:17:3f:72:6d:6d:70:df:2d:8c:57:99:42:
23:82:a2:cb:79:6c:06:93:67:7c:c4:89:91:3a:37:1c:fc:b8:
db:71:18:79:18:86:22:a5:ab:f8:2e:1f:aa:80:46:ad:ef:b4:
7d:c5:de:35:d0:f2:8b:97:81:f2:cb:04:63:66:9e:bc:e9:31:
83:4c:b8:85:a9:1d:b9:6f:61:f4:d7:2f:35:17:17:3a:1b:55:
33:23:87:3b:ee:5d:ef:0c:1a:fd:1b:8c:9e:59:32:69:04:cb:
f1:19:c3:ee:e0:94:1a:d7:d0:fa:25:d5:94:68:84:4c:52:ea:
5f:af:09:34:d0:f9:96:73:64:61:d4:52:3f:cc:ef:c5:4b:1f:
62:8a:e1:94:ea:c6:92:5d:11:d1:47:da:e8:50:02:42:e1:6b:
1b:f9:17:de:3e:27:c7:a3:60:8c:d3:ef:3f:61:fb:66:cc:78:
61:75:53:45:63:cc:1e:73:b4:81:de:6c:0d:87:78:1c:05:b0:
f8:bc:26:33:b5:f8:89:9e:d3:41:4f:6f:db:68:5b:7b:4b:63:
f8:76:e6:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:46 2024 by rpki-client on console-ams.rpki-client.org