Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RhemxoH42lJtASvwOynD4kXF1G8.roa
File: RhemxoH42lJtASvwOynD4kXF1G8.roa (raw, json)
Hash identifier: ol14Xu3vcQo/Uev3n6Do+C1VMprBshGOBsN+S1GbarA=
Subject key identifier: 46:17:A6:C6:81:F8:DA:52:6D:01:2B:F0:3B:29:C3:E2:45:C5:D4:6F
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1021
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RhemxoH42lJtASvwOynD4kXF1G8.roa
Signing time: Sun 07 Feb 2021 12:37:45 +0000
ROA not before: Sun 07 Feb 2021 12:37:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24163
IP address blocks: 61.61.208.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4129 (0x1021)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:37:45 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4617A6C681F8DA526D012BF03B29C3E245C5D46F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ff:59:8d:ec:16:88:0e:91:dc:3e:93:d9:5e:
64:8e:25:3b:b4:84:4e:29:78:61:18:79:5e:43:20:
81:54:a4:b9:96:10:21:fd:c6:40:05:17:a2:5c:5a:
62:1a:83:38:6a:4d:71:ad:bd:1f:0f:8a:e8:e7:92:
65:66:23:a6:ed:f9:80:d9:94:d8:cb:b4:13:9c:6d:
fc:e3:82:f1:fb:7a:a9:dd:e1:19:83:27:18:39:3d:
d2:e7:bb:c5:49:54:d5:db:1c:27:aa:da:0d:c9:e7:
36:75:d3:74:40:2f:b6:32:4a:9b:a8:a3:a5:b6:b9:
12:d9:ed:68:24:82:ec:43:5c:4a:36:18:07:de:8f:
c0:23:75:d6:04:01:cb:95:eb:27:b5:ca:53:02:5c:
c5:71:c2:02:45:88:7e:d5:27:b7:f5:c0:d9:d0:c2:
54:69:1b:44:23:79:7b:b5:d5:fb:1b:33:56:b4:18:
ef:0c:8e:7f:a5:5a:70:5c:94:51:d7:68:2c:fc:94:
34:5f:fa:84:4e:40:3c:94:d2:4c:b0:ad:fc:32:b9:
9c:ca:72:5c:3d:d3:f6:27:68:ac:e4:03:86:00:9f:
f6:9b:05:e3:6a:9b:e0:b6:3b:f5:85:26:f1:e5:8a:
ff:16:d1:83:93:46:ad:9d:e9:2a:fe:ab:54:69:9e:
88:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:17:A6:C6:81:F8:DA:52:6D:01:2B:F0:3B:29:C3:E2:45:C5:D4:6F
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RhemxoH42lJtASvwOynD4kXF1G8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.208.0/21
Signature Algorithm: sha256WithRSAEncryption
72:77:d5:12:49:5e:a1:ec:f0:53:e5:01:13:72:75:e9:d7:16:
57:70:d7:93:b7:82:75:4c:f5:cd:a2:e8:6a:4b:12:5a:7c:ac:
cf:56:01:c2:fd:75:c0:16:80:69:7d:2b:50:ac:84:12:67:e9:
a0:bb:9c:29:4a:db:26:d6:91:29:94:bc:8a:ea:f1:c3:9d:12:
a1:d2:ec:94:f9:6c:23:43:7b:62:8d:f6:0c:ea:ff:6f:52:fb:
18:07:8d:12:14:47:a6:78:25:c5:e3:fc:23:5b:13:b0:69:f2:
2b:40:16:2a:41:c6:f4:23:32:ae:54:ef:01:0f:3b:e5:df:f0:
3e:5e:c0:75:e1:8a:17:9a:75:6e:b0:3c:a7:83:6e:92:3c:c4:
14:95:5d:4b:70:19:fd:e0:90:d4:78:13:58:20:89:9a:8f:d5:
a0:38:4a:a1:70:8a:bd:bc:ce:c1:79:d4:73:f6:1f:30:e7:ec:
0c:2e:87:ee:72:72:02:30:e6:09:4c:da:fb:bf:bb:29:a7:58:
4f:e4:3f:1a:ac:cf:a4:ca:bf:cf:dd:c0:6b:d7:3e:8f:8e:c8:
d6:99:e2:8b:31:6b:e0:a9:e2:99:76:e3:ac:32:c3:8d:10:bf:
0e:a3:33:07:9f:ac:05:9a:29:cc:a5:73:c1:d9:42:71:d4:24:
b8:ab:81:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:47 2024 by rpki-client on console-ams.rpki-client.org