Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IPtc06uD2uA40feOuNVCJRYnStY.roa
File: IPtc06uD2uA40feOuNVCJRYnStY.roa (raw, json)
Hash identifier: TBMr2Jj+RbzKGaV/PMoAxcY+eJ6S5Q76iyT6hhCh3zQ=
Subject key identifier: 20:FB:5C:D3:AB:83:DA:E0:38:D1:F7:8E:B8:D5:42:25:16:27:4A:D6
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0B91
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IPtc06uD2uA40feOuNVCJRYnStY.roa
Signing time: Tue 29 Sep 2020 10:08:34 +0000
ROA not before: Tue 29 Sep 2020 10:08:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24163
IP address blocks: 211.76.32.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2961 (0xb91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:08:34 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=20FB5CD3AB83DAE038D1F78EB8D5422516274AD6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:b5:72:0a:c3:8c:8b:d0:83:cd:36:7b:df:01:
dc:5d:f3:cf:a5:90:d2:17:4e:02:5d:b3:50:50:c0:
c9:20:e9:dc:fd:9b:a7:ea:e4:20:0f:76:9a:99:79:
c5:ff:a1:e1:54:c9:c5:bd:bc:db:54:a1:4b:54:f7:
6f:e2:e1:f4:bf:f7:ab:f1:e3:8a:71:9b:2c:97:d7:
29:77:c4:1b:9e:88:95:f7:dd:de:6e:90:d1:b0:50:
91:fa:d4:29:1f:3f:71:52:9a:5f:35:42:80:dd:60:
1d:77:6f:47:9c:1f:7a:5f:76:06:d8:51:5e:a8:8b:
f9:a9:c6:25:e3:38:15:a5:a6:0e:2e:a8:7e:dc:4e:
d8:f4:b9:fc:42:37:38:ff:7f:44:0d:8e:d0:8d:c3:
68:84:2c:93:84:94:e5:27:8d:02:58:e0:54:4e:d3:
10:39:51:30:09:ea:d8:f4:81:83:ca:ad:18:36:19:
a9:06:29:9e:26:14:43:2d:db:55:27:52:1e:a6:56:
ac:fc:49:3a:08:89:94:55:9a:d4:fe:75:b8:28:d2:
43:25:ac:10:db:71:ac:32:91:27:bb:c3:3d:00:ba:
ea:e8:53:cc:18:61:6f:7f:fd:f1:58:e6:51:3b:28:
92:6d:d6:e7:c6:16:d5:64:2b:45:8e:dc:37:14:c6:
f9:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:FB:5C:D3:AB:83:DA:E0:38:D1:F7:8E:B8:D5:42:25:16:27:4A:D6
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IPtc06uD2uA40feOuNVCJRYnStY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.32.0/21
Signature Algorithm: sha256WithRSAEncryption
30:29:af:f5:a5:a5:a0:ed:ba:1d:74:8b:d0:e1:34:64:e2:05:
e9:e9:c1:22:ac:37:66:32:fe:d1:91:9c:60:fc:b9:1a:a8:a7:
11:d9:17:e4:21:e3:f4:37:48:13:95:f5:5e:28:67:e4:a6:3e:
aa:08:7d:fb:ff:56:d1:b1:d2:4b:04:0c:a4:53:3e:2b:70:d8:
24:89:66:36:44:2b:94:72:9f:91:3c:3e:f8:3f:86:3f:47:d2:
e9:85:a5:91:d8:c6:f3:5d:91:12:42:26:4f:50:2a:52:c3:3b:
05:32:20:42:18:f4:68:a8:6a:f9:2d:02:b1:8c:39:73:37:f0:
fb:e4:da:c2:b9:b1:32:64:a7:73:30:c5:50:7c:4b:8c:0f:d6:
2c:af:05:11:3b:52:2c:a9:13:53:b9:b5:9f:e8:2d:89:66:b1:
e7:aa:5c:f3:fc:c3:5a:74:b7:86:49:13:f9:6a:80:da:90:ef:
e6:57:d5:ac:8b:3d:ea:2b:6a:05:bb:59:e2:99:fe:f3:67:52:
df:e6:f7:9e:37:7c:90:b8:5b:3c:4a:f6:c1:ed:43:b3:5b:e5:
ed:30:d6:19:22:69:82:1c:7d:0d:d9:90:7e:96:2b:52:9b:11:
ab:71:27:b5:3d:33:1b:ca:22:27:29:a9:66:6b:2b:ec:c5:f4:
cb:0e:b2:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org