Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LHdNDI4W64ZFnAtsaOiF7ek-GRs.roa
File: LHdNDI4W64ZFnAtsaOiF7ek-GRs.roa (raw, json)
Hash identifier: sgZx3m6KjpH+4dZJeXpl/Eys0+p04hOJLUeqbcM1VtE=
Subject key identifier: 2C:77:4D:0C:8E:16:EB:86:45:9C:0B:6C:68:E8:85:ED:E9:3E:19:1B
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 100F
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LHdNDI4W64ZFnAtsaOiF7ek-GRs.roa
Signing time: Sun 07 Feb 2021 12:37:25 +0000
ROA not before: Sun 07 Feb 2021 12:37:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24163
IP address blocks: 61.56.160.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4111 (0x100f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:37:25 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2C774D0C8E16EB86459C0B6C68E885EDE93E191B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:60:8e:8a:6c:a8:95:2f:ca:0e:00:cb:81:e8:
20:04:69:46:43:6c:ad:e6:58:20:0b:b0:c7:47:66:
f1:0a:a2:68:aa:4a:48:44:9a:82:aa:a5:a5:63:36:
ee:74:69:51:14:d4:54:f3:52:af:d3:73:17:55:95:
dc:ab:43:32:da:8f:fa:cd:6a:bf:bd:91:b7:17:26:
c0:f7:3f:cc:f8:c3:3e:9c:2f:b7:d8:f5:28:45:ee:
ac:ee:b6:53:f8:11:56:3e:1c:f4:d6:6d:7c:04:44:
29:b2:47:9f:bc:b7:6b:a8:82:bf:72:5b:11:cf:ed:
e6:f8:03:e0:8c:c0:27:7c:c1:c3:35:bf:d2:fb:36:
ff:23:f9:97:fe:a8:60:89:66:7b:94:88:fe:e6:85:
2a:5b:0b:66:a7:f2:6b:79:1c:60:f1:31:a8:c2:41:
66:9e:d9:03:4f:ed:61:25:a5:50:64:34:93:8c:4e:
b3:4c:eb:84:ec:26:b9:c4:fe:6e:2a:48:9f:61:c7:
dc:7d:36:d3:b2:91:29:e2:96:a8:b7:6c:fa:07:4a:
4f:f7:58:35:cf:71:8c:eb:37:13:2e:45:c3:82:5f:
84:d7:ea:0e:95:27:d8:e0:ad:6f:be:a6:33:70:f3:
1f:a0:bf:48:66:c3:6c:5b:86:c4:f1:40:92:44:47:
db:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:77:4D:0C:8E:16:EB:86:45:9C:0B:6C:68:E8:85:ED:E9:3E:19:1B
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LHdNDI4W64ZFnAtsaOiF7ek-GRs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.160.0/22
Signature Algorithm: sha256WithRSAEncryption
91:48:e7:c3:3a:3a:34:89:04:f9:b9:26:d4:2d:25:21:e4:0d:
14:b2:a7:62:28:cf:96:41:91:5d:9b:a6:76:d8:cb:e1:64:0a:
b4:7e:28:56:bb:be:ee:94:5b:7f:da:21:1a:4c:40:06:63:9f:
42:ab:fc:da:49:20:20:2a:66:7b:b1:5c:80:d8:e5:f4:fc:ae:
be:e4:3d:90:6e:8b:ee:66:94:f7:f9:4d:59:0a:21:95:b9:03:
d3:7f:f1:ee:ca:27:ef:6a:c1:a2:bc:9c:a5:5c:f3:01:00:71:
b9:79:6c:bb:56:d7:02:ea:39:f6:75:2d:9a:b3:51:2c:2f:2e:
fd:45:26:e6:cd:89:1c:12:2d:29:8b:14:ef:a4:b1:38:1c:e0:
2d:1d:6d:b6:e5:30:eb:06:01:82:4f:cc:1e:44:20:1d:8b:a7:
20:71:ef:17:b7:1f:42:a1:b3:69:e8:4e:70:ac:ef:da:5f:72:
4a:3d:a8:59:f7:53:bc:36:f5:ad:ea:c7:5a:71:f2:63:f1:92:
53:3b:b7:be:d4:19:fb:5c:18:9c:6c:aa:a4:c4:10:ee:0c:a4:
fb:c5:b6:5b:56:1a:11:44:4e:9b:6c:9c:2e:29:38:ae:4a:a0:
7f:00:08:bf:50:13:85:48:97:f9:18:bc:94:fd:33:87:91:77:
15:61:f0:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org