Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/TS97bNKGRvHquvaED6qkNfn0wI4.roa
File: TS97bNKGRvHquvaED6qkNfn0wI4.roa (raw, json)
Hash identifier: 3ANO2fohUsDZXJv3NGIXcaTUCn5WJe0Nnq4hfuIW0gU=
Subject key identifier: 4D:2F:7B:6C:D2:86:46:F1:EA:BA:F6:84:0F:AA:A4:35:F9:F4:C0:8E
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1428
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/TS97bNKGRvHquvaED6qkNfn0wI4.roa
Signing time: Tue 03 May 2022 04:10:28 +0000
ROA not before: Tue 03 May 2022 04:10:28 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4662
IP address blocks: 61.61.208.0/20 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5160 (0x1428)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: May 3 04:10:28 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4D2F7B6CD28646F1EABAF6840FAAA435F9F4C08E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b9:dd:68:14:b3:8f:48:c3:a6:83:8d:e7:ad:
ea:e2:ca:3d:60:e4:71:7c:e0:72:87:bd:fc:5a:36:
90:cc:36:94:bd:90:5c:9e:f1:e0:44:96:73:d2:4e:
fb:bf:b9:b4:dd:5a:f8:0f:c3:0a:d3:a8:df:9c:1b:
b8:77:38:56:cb:3f:34:fd:32:35:00:dc:7e:2b:a1:
ac:18:ae:b9:50:ac:cd:c6:de:a4:76:b0:d2:4a:09:
79:29:91:17:24:4e:0d:99:38:3f:d1:a8:b2:ab:11:
ca:51:fa:8c:e2:c2:53:bd:17:46:ec:58:52:0c:61:
ce:1f:26:c4:05:d9:eb:3e:1e:ff:b2:9a:38:e9:20:
7d:2f:61:65:fe:68:b5:71:bc:b6:14:a5:31:37:6f:
59:13:a6:92:c9:6b:62:51:4a:be:77:1a:ed:63:e2:
10:3d:fd:80:d7:6c:5b:fe:a3:8e:7f:40:85:8c:e0:
9e:6b:5f:8f:80:c0:94:42:d4:61:23:68:fd:f7:25:
35:06:6c:c8:ae:90:df:5f:9a:1f:d0:3e:39:3c:d5:
a6:73:b1:f1:19:50:e9:78:7b:6d:c4:b2:82:3b:d0:
94:3e:8c:d6:13:e0:4a:47:6f:09:79:fc:90:0a:92:
79:2b:08:5b:80:ab:21:c4:26:bd:35:8b:09:3a:ed:
10:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:2F:7B:6C:D2:86:46:F1:EA:BA:F6:84:0F:AA:A4:35:F9:F4:C0:8E
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/TS97bNKGRvHquvaED6qkNfn0wI4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.208.0/20
Signature Algorithm: sha256WithRSAEncryption
06:56:db:d4:63:01:cd:55:85:87:8c:48:72:9f:01:01:56:93:
8b:ae:34:f2:45:e3:c5:0f:53:39:15:4d:db:84:64:18:e6:c1:
20:42:97:0d:3f:34:e4:53:cc:e6:1f:9f:72:58:a4:02:82:b8:
26:ed:60:70:98:de:b4:46:1d:8b:87:c6:4a:23:3f:67:0c:07:
f9:d9:78:ad:00:b0:ed:d0:af:fe:d0:5a:64:4a:72:a8:f5:d0:
f8:95:b8:93:e0:5e:33:4f:ca:ca:2f:15:ad:17:02:4e:7c:ff:
59:91:e7:5a:82:2b:b1:80:3d:f0:7a:8e:8c:c6:2e:c1:12:d4:
dc:72:ad:de:2b:d6:2e:d6:21:32:d9:26:92:3e:5d:38:62:7b:
f8:33:ab:ef:99:c1:67:63:48:62:1e:9b:9d:1b:3f:10:4b:ca:
a4:80:3e:47:48:8e:41:3d:e7:8e:f2:5a:7e:5f:e2:af:94:0e:
e4:08:5e:f2:28:6d:ba:4c:f1:05:fb:a6:70:61:32:d6:b1:90:
8d:84:3a:49:a2:3f:c2:eb:96:3b:b3:17:32:95:01:e2:19:36:
76:a8:b0:8a:cb:a2:eb:49:07:91:a1:24:b7:c1:0f:0b:f1:1c:
39:b3:57:28:be:ff:8d:37:c1:90:e0:f0:4f:ae:85:a5:9b:46:
82:3a:43:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:47 2024 by rpki-client on console-ams.rpki-client.org