Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KdH-M7n8zHk-YajDZ4QcfOim_Lw.roa
File: KdH-M7n8zHk-YajDZ4QcfOim_Lw.roa (raw, json)
Hash identifier: iwqA7cJMhtu5Pi/BbLwdsqO08gJGkFb7czzevVCFilU=
Subject key identifier: 29:D1:FE:33:B9:FC:CC:79:3E:61:A8:C3:67:84:1C:7C:E8:A6:FC:BC
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0D58
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KdH-M7n8zHk-YajDZ4QcfOim_Lw.roa
Signing time: Thu 14 Jan 2021 07:38:03 +0000
ROA not before: Thu 14 Jan 2021 07:38:03 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24163
IP address blocks: 61.56.164.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3416 (0xd58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Jan 14 07:38:03 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=29D1FE33B9FCCC793E61A8C367841C7CE8A6FCBC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ca:7a:80:39:1a:a4:fd:79:68:cb:fc:de:61:
95:6c:a7:10:cf:16:38:76:1d:70:8a:76:9f:42:7c:
78:6f:68:fc:81:60:d4:6e:7e:3c:42:16:92:97:56:
d4:97:31:64:e3:0f:a4:0a:06:9f:89:de:0c:61:3a:
24:23:09:fa:46:52:fa:a5:68:6e:ff:02:a3:34:02:
3e:18:03:91:16:4d:55:db:a4:77:95:8b:01:e7:97:
c6:de:5a:20:c9:cb:52:a6:85:b4:2e:ed:e8:2e:64:
0e:ad:12:49:1b:17:d3:87:f4:4e:0e:6e:51:9c:68:
43:d7:a2:cb:1a:36:e7:15:84:92:5c:4b:be:36:71:
ba:42:e7:31:4c:24:28:9b:60:1a:e5:ea:cd:c0:93:
c6:d6:61:25:c7:cd:56:a2:af:90:ba:b5:c1:85:89:
39:a7:26:7a:f3:4f:a9:cb:cf:d5:b6:b7:8f:d9:e7:
be:50:f3:66:93:f3:f9:a2:e4:dd:36:68:3c:e0:de:
cd:89:4c:27:a9:00:65:bc:80:f0:80:c4:5d:38:53:
0c:32:f7:aa:90:8e:8d:d0:52:85:d4:28:0b:51:12:
0e:5c:48:f8:92:a5:37:a3:1f:a7:f1:03:c5:de:bc:
3a:7d:10:f3:3e:a6:35:ce:ad:c9:fe:7b:0a:8b:6f:
9b:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:D1:FE:33:B9:FC:CC:79:3E:61:A8:C3:67:84:1C:7C:E8:A6:FC:BC
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KdH-M7n8zHk-YajDZ4QcfOim_Lw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.164.0/22
Signature Algorithm: sha256WithRSAEncryption
93:e7:b0:d5:63:0a:8a:3c:74:41:27:d9:30:99:01:3b:db:07:
80:b3:03:1c:a4:ed:a1:17:5f:96:f0:55:97:6b:a8:0f:09:92:
23:50:c6:f1:df:17:3a:99:d3:b4:dc:83:f7:c6:99:56:34:0a:
43:16:c4:80:be:3a:ff:2e:71:60:97:c2:33:27:81:3d:4e:33:
01:f4:1a:93:e3:c8:dc:d2:b3:04:fc:09:df:ef:60:37:9b:07:
19:ba:32:ce:44:ed:62:84:b4:b0:19:da:00:b0:5f:4a:8f:c0:
3a:d7:b9:dd:7f:20:d1:cb:98:0b:cf:44:93:f5:4e:36:2b:f4:
b6:3c:7b:3c:5e:ac:41:90:fc:45:12:fa:fa:4f:fd:a9:b5:e6:
c1:59:9f:3c:d8:0c:b4:3d:8c:da:f4:73:67:d7:6d:5a:90:f2:
9f:4b:1e:15:40:a3:e9:30:52:44:f6:69:0b:cd:79:67:da:b9:
56:b9:99:38:18:74:90:6a:b2:56:ad:4c:fe:48:5e:87:c5:37:
9f:fd:eb:8a:14:89:b6:60:4d:9d:f0:88:2b:44:e2:aa:08:b8:
b5:e5:d1:18:69:ec:27:2d:f0:b6:7d:76:3e:ec:1c:53:62:41:
d6:4e:b3:8f:83:59:6e:9b:6c:d5:30:69:87:9d:f5:b2:da:2c:
49:01:59:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:46 2024 by rpki-client on console-ams.rpki-client.org