Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/WI7seLd6PRg9-lGMpMqxm0K5IWc.roa
File: WI7seLd6PRg9-lGMpMqxm0K5IWc.roa (raw, json)
Hash identifier: 6DZNZIa5yPwz2jUJqhm15kWEtebb1Lldfnnw3l6LKDo=
Subject key identifier: 58:8E:EC:78:B7:7A:3D:18:3D:FA:51:8C:A4:CA:B1:9B:42:B9:21:67
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0F75
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/WI7seLd6PRg9-lGMpMqxm0K5IWc.roa
Signing time: Sun 07 Feb 2021 12:34:15 +0000
ROA not before: Sun 07 Feb 2021 12:34:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 124.6.8.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3957 (0xf75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:34:15 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=588EEC78B77A3D183DFA518CA4CAB19B42B92167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:97:3e:1b:e2:46:31:99:15:a9:47:78:1e:27:
f4:79:88:a7:40:4f:34:9d:0d:3a:f7:24:7d:a9:87:
8f:84:96:34:e2:34:c2:2e:4e:4d:5f:d1:55:5d:1f:
be:c9:ae:cb:75:e1:fe:7b:c4:01:c9:91:14:21:bb:
8e:95:6b:8d:b8:80:57:1b:d6:79:a0:70:3a:5c:70:
70:e6:21:b7:6b:0e:58:43:e8:33:17:51:45:6f:bf:
eb:86:3a:c7:6f:6c:4b:77:d1:d3:41:76:ea:bc:e9:
44:15:90:02:cc:93:f7:9e:fd:c3:14:89:4f:d8:ff:
da:df:1c:d8:e5:a0:3c:03:22:2c:1f:d8:65:2c:62:
a1:e2:9a:76:1c:68:66:01:b9:4a:47:b7:a0:4c:05:
ad:d5:1d:fb:02:99:65:52:c6:d0:3d:0d:f0:d4:e5:
37:82:31:d3:8b:46:4c:56:d9:d9:f2:86:44:ed:a5:
f1:8e:d6:b2:8a:9d:54:c1:c4:ce:b9:76:63:54:c8:
71:23:d1:e0:3a:6c:13:bf:f3:ce:5f:18:05:2a:a1:
73:27:6c:dc:4d:1e:f6:b3:de:97:53:ff:33:e3:9c:
ff:50:b2:dc:ba:6a:80:4e:d4:4a:40:1b:5b:d8:0e:
b9:90:9a:a7:8b:16:1f:f6:fa:91:a4:47:7b:a5:c8:
e5:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:8E:EC:78:B7:7A:3D:18:3D:FA:51:8C:A4:CA:B1:9B:42:B9:21:67
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/WI7seLd6PRg9-lGMpMqxm0K5IWc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.6.8.0/21
Signature Algorithm: sha256WithRSAEncryption
0e:7e:45:0c:b7:ec:12:70:c4:84:fd:1e:53:ed:12:82:4d:33:
e0:7c:86:1d:b2:29:a9:67:de:9b:f5:01:42:23:53:a0:08:b0:
fc:da:16:66:b9:54:66:f7:c1:e6:10:a0:eb:33:82:5c:58:7a:
4e:79:3b:a4:80:08:59:5d:bc:39:83:e9:cf:28:fb:f6:cb:55:
e9:9b:81:60:df:44:0a:b9:8a:b6:68:97:6b:f1:cb:62:2e:f4:
27:e3:40:00:e4:72:ff:69:1f:fd:d6:28:c2:54:04:3e:47:64:
8d:9d:d2:07:35:36:58:a1:d9:78:14:b6:eb:0c:8e:89:c0:e3:
ed:26:d6:b1:da:29:de:9e:f1:95:33:07:c3:d6:5a:34:a5:71:
87:65:10:e1:c3:2e:bd:1b:4c:d9:f8:74:1e:a1:02:5b:98:d2:
73:b7:0c:f7:d3:78:f6:8a:d9:f5:2c:7e:87:53:16:dd:ab:1b:
6d:b3:8e:c3:37:e0:52:ca:9d:2a:46:ce:59:35:a7:35:ab:34:
cc:f6:e2:7e:b4:0b:be:0f:dd:ba:d7:10:8e:77:ed:27:9a:ac:
36:f3:f5:36:2e:d2:90:da:ba:d3:8d:ad:14:cf:47:0b:e5:2c:
9b:b3:85:53:9e:d9:0e:8d:4f:37:af:ad:1a:77:3d:29:de:ee:
d3:41:2a:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:47 2024 by rpki-client on console-ams.rpki-client.org