Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/QL-PCsLNSNMKuT7yzF2muaCeGWI.roa
File: QL-PCsLNSNMKuT7yzF2muaCeGWI.roa (raw, json)
Hash identifier: XXCKhq6gmo3YAW7wzLxqI+HVMMojjZQO7DSY1YtHoH0=
Subject key identifier: 40:BF:8F:0A:C2:CD:48:D3:0A:B9:3E:F2:CC:5D:A6:B9:A0:9E:19:62
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1220
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/QL-PCsLNSNMKuT7yzF2muaCeGWI.roa
Signing time: Wed 29 Sep 2021 02:54:13 +0000
ROA not before: Wed 29 Sep 2021 02:54:13 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 119.77.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4640 (0x1220)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:13 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=40BF8F0AC2CD48D30AB93EF2CC5DA6B9A09E1962
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:71:4c:22:0a:82:27:66:fd:a9:39:05:34:87:
8e:a9:4a:3a:67:69:7d:36:0d:62:bc:3c:2e:50:3a:
4f:66:9c:a0:5d:02:39:b1:48:67:96:39:f8:3a:9b:
0a:94:68:35:59:54:6f:e4:c6:59:a1:ec:7c:76:5c:
00:26:7d:f2:27:e9:2a:bf:3f:30:9e:f3:86:ac:ac:
19:ee:10:de:ce:d9:22:c8:48:e9:ea:15:85:f0:96:
b1:5a:b6:25:15:97:bf:87:a6:14:0d:1c:e7:ae:93:
4f:cf:46:3d:e5:f2:52:a6:08:80:1a:c1:56:6f:ed:
07:de:a4:ac:da:4f:37:f6:a2:0e:86:65:1f:af:ce:
3b:9e:28:1f:33:9d:ee:cc:89:cf:e9:ae:01:84:44:
67:fd:c6:54:ba:80:38:d7:99:c4:a5:b4:a0:67:86:
8e:14:21:ba:69:62:a3:15:b2:de:7d:8b:89:80:ff:
02:53:e6:9b:a1:e2:f0:7f:77:30:e0:3e:09:fa:7c:
25:93:5d:72:6d:bb:18:f3:a1:ae:b3:16:b9:1e:74:
fd:de:0d:c9:76:ff:78:65:51:cb:7f:8c:23:e7:db:
ef:51:ca:3c:1f:12:97:d9:93:0d:6b:98:4b:ec:94:
92:3a:86:ef:39:be:30:ca:13:fc:d5:ed:1c:42:90:
d9:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:BF:8F:0A:C2:CD:48:D3:0A:B9:3E:F2:CC:5D:A6:B9:A0:9E:19:62
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/QL-PCsLNSNMKuT7yzF2muaCeGWI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.77.241.0/24
Signature Algorithm: sha256WithRSAEncryption
53:cd:6b:14:d3:4d:3a:60:a0:13:8d:85:83:b0:c1:15:7d:58:
f5:4f:6e:21:48:f0:3f:31:e1:2d:e4:5f:cf:0b:49:65:2e:ae:
77:ee:5e:75:25:d9:fb:b4:ca:9b:7d:78:a3:51:98:50:6d:8f:
5c:d6:08:7e:f2:21:7f:d1:c5:63:1a:24:92:9c:d5:63:e9:12:
9f:25:e8:aa:5a:9d:41:2c:99:1b:66:e3:b5:35:2f:82:da:ec:
85:3d:9a:53:f0:50:45:d6:3b:cc:d9:6c:0b:16:63:43:cb:9a:
bc:80:a8:c4:da:cf:ed:ec:35:13:99:9f:58:91:50:c4:e9:d4:
c0:4e:cb:9b:f2:7a:22:16:4a:65:26:6a:28:6e:38:3a:95:b9:
b0:c2:f3:a3:47:2e:59:a0:ca:fe:06:27:05:b6:70:d8:34:6b:
10:a3:8e:d8:0b:3b:03:17:20:82:f3:e9:3f:f2:33:46:44:fc:
b3:f5:e0:31:3f:19:a4:62:d3:dc:ee:f4:e1:91:0b:32:a0:8a:
28:2a:e4:f7:43:47:e8:3f:81:53:c6:7a:30:21:6c:07:86:05:
e4:e5:a4:ae:17:ec:89:29:8b:19:88:e7:8f:be:65:66:6c:fd:
39:94:5f:10:51:31:fb:3e:b9:fa:cf:24:0b:f6:9e:6d:91:a8:
d2:be:5b:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:47 2024 by rpki-client on console-ams.rpki-client.org