Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PAKNIsOdcLbIuUhCY2xj_AAiHcc.roa
File: PAKNIsOdcLbIuUhCY2xj_AAiHcc.roa (raw, json)
Hash identifier: K5FYPxZWxRXORqL7FqIkmudjClWkMS6IzH6FnxO4Rmo=
Subject key identifier: 3C:02:8D:22:C3:9D:70:B6:C8:B9:48:42:63:6C:63:FC:00:22:1D:C7
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0D2D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PAKNIsOdcLbIuUhCY2xj_AAiHcc.roa
Signing time: Thu 14 Jan 2021 07:23:18 +0000
ROA not before: Thu 14 Jan 2021 07:23:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 119.77.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3373 (0xd2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Jan 14 07:23:18 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3C028D22C39D70B6C8B94842636C63FC00221DC7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ba:ef:39:eb:78:9d:dd:bd:08:91:71:44:44:
74:fc:7e:1e:8a:c4:d1:fc:47:fc:80:85:f4:92:0e:
f9:98:29:62:a9:c1:d4:e9:af:77:fe:07:63:c3:85:
e5:62:7b:27:a2:bf:22:43:6d:e8:df:a0:d0:20:f6:
0e:7d:31:a3:61:ac:44:6c:90:35:ce:9b:4a:34:f1:
08:24:2b:b5:72:12:08:30:e9:5b:b5:43:36:30:0e:
95:81:80:d3:8d:da:a4:95:cc:78:d2:a9:0a:69:61:
d9:a8:81:dd:8f:2f:88:dc:a8:99:d3:e8:3b:dd:1a:
e6:02:c9:95:c7:2f:20:e7:73:76:17:96:1f:e6:17:
8a:ac:1f:13:f6:96:04:ec:2c:ff:25:bc:6b:af:af:
35:9e:72:e3:26:c4:62:b3:c3:cc:f0:1a:95:40:05:
e0:31:1e:e4:9e:f3:c4:04:b0:06:4c:bc:f8:5c:73:
d6:ea:a4:ac:24:50:ab:d6:5b:b1:dc:f7:f9:9d:80:
4f:51:5d:40:c8:d1:99:b3:b6:73:12:fd:6e:9f:46:
2b:2a:de:73:5d:27:73:9b:bb:56:9a:1c:d4:27:db:
71:5f:58:56:c0:81:37:2b:b1:de:60:89:ec:99:01:
e8:66:1c:54:60:da:f4:9a:bb:19:ac:89:c5:9a:8d:
b2:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:02:8D:22:C3:9D:70:B6:C8:B9:48:42:63:6C:63:FC:00:22:1D:C7
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PAKNIsOdcLbIuUhCY2xj_AAiHcc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.77.188.0/24
Signature Algorithm: sha256WithRSAEncryption
86:a8:b3:32:e1:49:f4:ac:a3:70:5b:33:15:9f:8e:8a:fb:68:
2f:a9:db:51:37:84:e7:58:d7:08:e8:85:23:3c:c3:43:e4:c1:
21:96:f9:aa:9e:6b:6c:24:28:fe:28:e4:eb:d8:5b:e8:52:26:
bf:1d:7c:0c:bf:ca:25:e7:84:1e:93:e0:31:f6:e7:06:9f:88:
d8:35:89:84:ba:33:3c:40:ee:69:85:c7:61:39:9c:b0:59:96:
44:8d:12:55:9c:f5:c5:66:a9:c9:7b:2f:f5:8b:1b:e6:1a:6f:
76:bc:90:19:76:e0:d4:a4:a8:77:81:76:15:bc:2c:10:4a:3c:
50:2b:97:37:e5:69:ff:86:5b:2e:fd:f6:d0:ea:e4:ef:82:21:
ed:bf:ef:48:93:7a:96:64:f3:2d:54:cc:f9:b8:cc:1a:61:1f:
50:1f:ff:c1:5e:2a:8a:f6:0a:ac:67:ed:11:f7:c6:8f:37:9b:
dd:4b:a1:58:2c:cf:b3:78:5a:a5:40:89:20:9b:aa:18:af:c5:
09:f1:d0:a3:5b:a8:b7:c6:a4:d5:f2:82:e2:1f:5e:5f:93:af:
19:9c:2f:54:87:11:9c:ed:a0:24:4a:50:f4:6c:2b:1c:ce:38:
29:29:d7:a8:9d:69:6a:b2:9f:70:77:8d:45:8b:32:0d:2b:88:
e5:5e:00:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org