Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/O67WtG5-Li99BDxUwBlR4iNDhTs.roa
File: O67WtG5-Li99BDxUwBlR4iNDhTs.roa (raw, json)
Hash identifier: lPcVEDbGqU8ce32MIN3qKX+mNv1RMYptwZvjfU1FlUM=
Subject key identifier: 3B:AE:D6:B4:6E:7E:2E:2F:7D:04:3C:54:C0:19:51:E2:23:43:85:3B
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0B87
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/O67WtG5-Li99BDxUwBlR4iNDhTs.roa
Signing time: Tue 29 Sep 2020 10:08:32 +0000
ROA not before: Tue 29 Sep 2020 10:08:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24163
IP address blocks: 61.58.96.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2951 (0xb87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:08:32 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3BAED6B46E7E2E2F7D043C54C01951E22343853B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d0:fa:5a:17:6b:91:16:9e:d2:eb:0d:28:da:
b4:0f:92:00:96:ef:1c:9a:23:1e:af:3c:28:12:f7:
9d:f1:a1:80:5f:b9:2a:17:3b:1d:b8:8c:63:c3:77:
2e:15:8a:33:6b:38:4b:70:dc:05:85:7b:78:bc:aa:
1c:48:8b:94:27:ac:3a:3e:33:9b:9f:e7:9a:c0:7c:
f1:8c:ab:a5:a0:0e:f6:27:a7:d7:a7:d0:24:1f:9e:
3f:41:0b:73:bf:2c:ea:b5:06:a9:34:75:c3:f2:12:
37:9d:82:1c:8a:d0:94:86:5e:96:e9:89:a2:1e:75:
22:07:cd:29:5c:b6:f1:c9:6a:17:21:bd:59:f4:59:
1f:3c:99:b3:44:92:58:91:bb:99:3f:2a:10:9b:08:
e0:df:0d:9a:dc:2f:90:60:f6:28:93:70:ae:0f:a4:
6f:48:67:3e:9c:f7:7a:fb:30:1f:ab:35:45:6a:6f:
69:21:7f:83:33:4e:9c:47:cf:4a:43:14:32:b3:ae:
f8:7b:5b:7c:8a:24:6c:d7:df:1c:d3:1d:27:dd:17:
41:cc:eb:25:a5:c5:3b:a4:08:d1:86:cb:16:7c:0e:
0f:24:2f:dd:e0:0f:57:4a:0b:a9:37:c2:49:87:5a:
d0:28:20:b0:9b:8b:fd:a8:52:3f:54:c3:83:1c:9e:
c1:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:AE:D6:B4:6E:7E:2E:2F:7D:04:3C:54:C0:19:51:E2:23:43:85:3B
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/O67WtG5-Li99BDxUwBlR4iNDhTs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.96.0/21
Signature Algorithm: sha256WithRSAEncryption
21:f2:fb:e9:70:8f:02:20:83:24:6a:a5:4c:2b:b5:26:4a:bf:
00:6b:99:65:30:dc:a0:75:58:f6:0b:af:eb:d1:f9:b2:da:5d:
03:89:52:fc:da:e3:ea:7e:74:0d:3f:5e:c0:12:ce:22:4c:cb:
93:20:ce:bc:e0:99:9e:84:69:6d:81:84:5e:26:15:7d:fa:fc:
3d:01:e8:4d:78:7f:a8:b2:7b:7b:a7:f6:56:54:dc:42:d5:0b:
87:e7:62:d2:de:47:f7:2f:b7:e8:26:41:81:b7:ad:a4:5f:73:
36:29:c1:12:87:f7:83:2f:29:66:b3:a6:ac:86:e8:a1:84:4e:
67:e0:62:19:18:af:58:fd:14:6b:95:28:31:0e:86:2c:a3:ed:
4b:8f:22:53:6c:78:80:be:35:b7:04:eb:1e:bf:92:4a:3b:33:
56:36:5c:6b:9b:0a:f4:bf:b7:51:6d:21:2d:e3:ee:33:a6:10:
15:37:2a:f9:75:cd:40:9a:44:7c:20:33:b6:53:7f:a9:9b:cf:
37:f8:97:f8:24:9f:b5:ff:8d:d8:d3:7e:1f:95:11:a5:18:56:
ca:a5:67:f7:35:4f:7a:e1:24:93:bd:9f:91:81:ed:39:99:bf:
a5:98:3b:b7:bd:34:2c:9c:93:47:3f:b7:1a:fb:f5:3b:60:fe:
13:50:02:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:48 2023 by rpki-client on console-fra.rpki-client.org