Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/S1fI-rzAruFMYsf63nOcMWXlexg.roa
File: S1fI-rzAruFMYsf63nOcMWXlexg.roa (raw, json)
Hash identifier: yMZHKllKyGr/5nMqwArkglIMN/3lyAv8r7TTVYSh31w=
Subject key identifier: 4B:57:C8:FA:BC:C0:AE:E1:4C:62:C7:FA:DE:73:9C:31:65:E5:7B:18
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1908
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/S1fI-rzAruFMYsf63nOcMWXlexg.roa
Signing time: Sat 22 Oct 2022 06:06:01 +0000
ROA not before: Sat 22 Oct 2022 06:06:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 119.77.128.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6408 (0x1908)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:06:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4B57C8FABCC0AEE14C62C7FADE739C3165E57B18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d4:33:97:27:39:72:1e:5d:66:27:26:39:45:
9e:59:07:9c:fa:b7:59:e6:62:20:b2:28:2f:73:2b:
dd:2f:19:c2:ef:cd:28:17:bf:ae:3c:5a:a0:9f:73:
70:30:5a:b6:ff:db:63:51:41:3c:16:ac:a6:73:ac:
56:39:c0:a2:88:18:59:a5:e3:78:dc:4c:80:8d:42:
16:11:7d:14:01:a8:fa:6a:41:ab:9e:80:f5:46:11:
df:85:74:1e:f5:4a:c9:f7:ff:15:e7:0c:5b:2f:2e:
44:b0:8c:fb:82:41:28:f1:d3:75:00:85:fc:fa:68:
19:36:ce:01:72:b6:d6:1e:74:11:6b:35:b2:dd:75:
44:6c:f6:92:b2:72:b8:65:3c:4c:e1:e0:3d:7a:7d:
5e:af:90:6a:86:55:fa:fa:81:84:b0:fa:b5:ee:2f:
2b:75:78:38:09:3d:76:3f:40:f5:2d:a9:25:84:35:
d7:3e:d2:96:8f:58:48:c7:1b:9b:74:4e:31:1c:05:
3f:2e:06:15:89:bf:d5:36:5f:07:23:29:af:9b:7c:
8a:46:bb:17:b4:a8:95:35:27:fb:4a:d6:37:cf:b8:
be:2c:f7:ac:01:0e:5e:df:ac:4c:34:72:66:11:57:
4e:63:6d:99:9b:56:48:18:63:08:4a:68:ee:92:8a:
94:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:57:C8:FA:BC:C0:AE:E1:4C:62:C7:FA:DE:73:9C:31:65:E5:7B:18
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/S1fI-rzAruFMYsf63nOcMWXlexg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.77.128.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:9a:2d:64:89:44:07:6a:dc:2b:69:7a:d0:98:41:05:2b:9e:
fd:60:6f:96:f6:0b:65:1e:3f:29:20:37:9d:a4:7d:56:4a:21:
b4:d4:ce:18:70:74:59:46:43:bd:6b:fe:b1:43:0f:63:9e:d2:
84:be:60:16:ff:3c:f8:06:3d:bf:4c:d1:93:8e:00:93:93:1c:
74:ed:49:f3:02:24:9a:22:6b:68:54:10:d6:f9:16:93:45:56:
e7:b4:f0:b6:12:3b:f1:94:3e:bf:d6:4b:93:97:70:d0:5d:b1:
72:82:17:a9:bb:1a:d8:f4:e1:ed:27:07:bd:7e:77:a0:9e:ae:
30:85:59:32:d7:7f:fd:6f:07:36:5a:a5:ae:ba:4a:18:ef:7f:
fc:d4:17:6f:07:f7:bb:96:a9:20:6f:20:fb:1e:91:11:b5:8f:
25:cf:d5:f8:c9:5e:98:e4:61:df:c8:89:5f:a5:ce:29:02:86:
28:44:5f:35:58:19:0f:65:9a:c7:ad:89:c6:04:ef:21:92:ce:
e9:22:c8:2a:65:5a:32:a8:71:75:2d:69:a3:d9:f7:3d:f0:68:
65:12:26:24:4e:95:6e:3b:f9:dd:ce:e7:0f:12:0e:37:0b:d3:
6a:41:75:65:89:b4:33:61:3b:17:5e:7e:eb:ab:88:15:fb:df:
53:3d:8e:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org