Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KAtqqOJ57fFmFMWiSbYYHwdenQI.roa
File: KAtqqOJ57fFmFMWiSbYYHwdenQI.roa (raw, json)
Hash identifier: Arm+G+oK2cnSQ9+Pg6tmSvXhYONBi+L6cj4DiA80LN8=
Subject key identifier: 28:0B:6A:A8:E2:79:ED:F1:66:14:C5:A2:49:B6:18:1F:07:5E:9D:02
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KAtqqOJ57fFmFMWiSbYYHwdenQI.roa
Signing time: Thu 15 Sep 2022 02:36:33 +0000
ROA not before: Thu 15 Sep 2022 02:36:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 61.61.216.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:33 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=280B6AA8E279EDF16614C5A249B6181F075E9D02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d8:8f:a3:a1:74:87:9f:9b:af:65:3f:0f:ca:
1d:ed:c0:07:99:c3:4d:84:cd:3c:86:1e:4b:aa:fb:
c0:24:c9:21:14:f4:f9:70:b0:bb:a0:d2:e3:6d:75:
e8:91:62:bc:18:55:25:8b:b8:76:34:c4:be:93:3e:
30:bc:65:9c:63:8a:ad:2e:dd:45:c0:21:fe:d1:9a:
ea:d2:f3:b0:fb:87:3f:e1:01:a2:fe:49:c2:e2:5b:
d0:df:b6:f5:48:2c:56:a2:7f:ea:b3:e5:1f:d7:51:
52:c9:4f:0a:fa:15:56:6e:4f:e5:91:00:f0:4b:17:
60:ab:6e:b0:26:25:bb:cb:3d:d8:3d:d8:cd:cc:e3:
29:d5:aa:af:29:a9:e0:65:a2:f0:38:3e:16:ca:88:
88:5a:08:f0:79:e5:38:e7:d6:91:9a:50:9e:b7:77:
b9:71:cf:21:19:34:26:fc:1e:3b:67:2a:20:14:4b:
bf:d6:0c:4b:43:e8:aa:9a:07:d0:48:eb:36:cd:00:
eb:a0:bf:56:61:0c:94:8b:fe:39:e4:bf:f5:b1:7b:
7d:7f:46:6b:33:c7:3a:8f:51:51:7b:28:45:c0:29:
35:84:d5:51:3b:5d:f8:f7:31:7c:d1:0e:f3:d8:97:
d3:aa:ff:ef:fe:b4:35:2d:2b:cc:7c:e3:15:a8:0b:
19:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:0B:6A:A8:E2:79:ED:F1:66:14:C5:A2:49:B6:18:1F:07:5E:9D:02
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KAtqqOJ57fFmFMWiSbYYHwdenQI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.216.0/22
Signature Algorithm: sha256WithRSAEncryption
39:9c:52:fe:16:11:1d:3e:39:3a:05:ad:7d:f9:a8:48:94:6c:
95:7e:d0:37:de:4d:92:60:95:e3:06:00:15:9a:47:49:30:41:
93:b8:e0:20:98:a3:c5:37:9e:a3:7a:04:0b:4a:97:91:ec:10:
33:10:28:4c:c5:84:ec:16:44:a4:a3:61:a3:40:ef:30:dc:9d:
d9:01:b1:1f:49:58:98:e6:41:b8:04:ca:1f:3a:74:6d:ba:b2:
58:1e:a1:c2:01:1f:0f:6f:d0:61:67:0c:ef:69:42:46:08:15:
40:3e:44:fa:84:45:63:ce:b7:f4:0a:71:8a:83:22:3b:ad:24:
70:e5:bd:31:9a:47:e9:4e:40:a9:e3:fe:8d:7b:fd:ca:8c:81:
c8:63:d6:6f:5d:b0:01:4c:d5:5a:48:42:b7:e3:22:93:18:72:
f7:d4:97:0d:82:87:d6:c2:1a:d2:5a:30:59:4a:ae:b7:a8:bc:
05:8a:92:c4:1f:22:00:91:88:bc:4e:5e:61:4f:7e:34:20:d2:
0d:90:11:e3:b7:26:76:da:23:39:69:27:d1:ed:f7:f8:3b:14:
c3:90:85:aa:5c:3a:8d:7b:32:d3:36:72:91:c8:1a:a8:c5:06:
cd:96:c6:c4:29:29:9c:74:21:bb:32:b2:4c:30:82:fb:5d:e3:
84:a4:91:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org