Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OFsU09vnmbaFvcQIX-xBKjuBQQI.roa
File: OFsU09vnmbaFvcQIX-xBKjuBQQI.roa (raw, json)
Hash identifier: FWDos4kNxLcgbpdTaV/BaS0fJxNPv9mqOv80UASy0fQ=
Subject key identifier: 38:5B:14:D3:DB:E7:99:B6:85:BD:C4:08:5F:EC:41:2A:3B:81:41:02
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 10E1
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OFsU09vnmbaFvcQIX-xBKjuBQQI.roa
Signing time: Sun 07 Feb 2021 12:49:28 +0000
ROA not before: Sun 07 Feb 2021 12:49:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4662
IP address blocks: 61.61.208.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4321 (0x10e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:49:28 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=385B14D3DBE799B685BDC4085FEC412A3B814102
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:09:c7:df:7d:24:85:e9:7f:3e:60:1e:23:a3:
77:2c:9e:6a:55:62:55:c4:b8:19:34:85:d6:55:e4:
2d:b9:cb:5e:34:f1:ce:fe:e9:e6:e6:0d:4e:75:e0:
32:40:2f:48:a9:06:f2:af:69:4c:b1:fe:30:31:b1:
14:c6:c5:d8:9e:95:a0:f6:84:f4:40:49:cc:ac:e3:
8b:53:3b:14:b9:c8:91:5b:18:24:fc:d8:7e:7f:7d:
b4:c9:f8:eb:ce:d8:c4:db:ec:2e:e5:40:05:2c:7d:
6e:a2:6b:f6:be:28:d4:1e:5c:94:6b:a3:14:a9:08:
68:0e:d8:90:75:1d:74:a6:e3:f3:fe:2f:19:7f:fc:
e3:37:6e:be:f9:45:3d:b2:d5:1c:20:0b:a8:87:27:
68:cf:c7:29:c0:3e:f4:16:83:6d:4e:b5:6f:63:3e:
03:54:bc:45:8e:8b:94:1e:86:72:9e:e4:5c:28:45:
bc:20:a5:ba:bf:bc:48:13:3d:8b:9c:e5:54:32:71:
8b:9c:e2:2e:dc:38:97:1b:8d:8f:2a:4b:54:47:75:
46:de:ab:e3:5c:bb:fe:f6:b2:ec:32:48:1d:e3:d5:
e3:f0:ad:6e:2a:b5:96:5c:db:b9:7e:be:c1:33:14:
33:65:0f:38:3a:7a:c4:ad:55:30:ad:7f:a2:18:e3:
cc:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:5B:14:D3:DB:E7:99:B6:85:BD:C4:08:5F:EC:41:2A:3B:81:41:02
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OFsU09vnmbaFvcQIX-xBKjuBQQI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.208.0/20
Signature Algorithm: sha256WithRSAEncryption
98:4c:86:85:ad:b0:3f:89:d1:b1:fe:a7:6c:1d:52:e4:e4:50:
01:47:29:d6:0b:85:6f:83:a4:fb:05:e6:69:c9:d9:51:18:4b:
50:3f:6f:c7:10:34:72:21:b1:c4:a8:42:7c:ed:c9:9a:f0:6a:
8f:69:bf:8c:2e:89:8d:bd:d0:df:2b:e2:cf:07:32:38:21:6f:
9b:27:e9:d9:2a:c2:d1:c5:45:7c:1a:6f:7f:bf:b4:f4:cc:1f:
a8:ba:2c:f8:f4:4e:22:fd:bf:c0:ec:57:3b:39:7c:3d:5d:06:
fc:c5:09:eb:64:57:b9:b1:3d:50:a2:00:7b:43:86:b1:5b:37:
0b:b8:3b:8b:9b:b2:fe:a1:5c:d6:e7:7c:74:4b:2b:2e:5d:a0:
b6:de:ff:f4:1d:f0:8f:a7:98:1d:90:08:c1:23:95:b1:11:42:
f6:90:c9:8b:60:f4:f6:a1:46:fa:ba:dc:bd:3f:f2:f9:6b:19:
f7:1d:cb:d1:35:fd:3c:15:7c:7c:72:a8:b1:2b:03:48:72:09:
7b:f5:99:8c:8a:45:e1:3d:cb:42:28:f5:f2:41:44:44:83:91:
ed:97:77:5c:30:7b:3c:96:d4:cb:98:72:e2:1f:d5:3d:8f:1c:
95:cd:ca:1d:dc:44:09:03:d7:b7:dd:52:f6:a8:5d:67:bb:c2:
1d:73:64:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org