Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ZtA1vYvG03PY7mKOLiMsQ2YTcbU.roa
File: ZtA1vYvG03PY7mKOLiMsQ2YTcbU.roa (raw, json)
Hash identifier: s7QxpJ5PLYhb6BW8h0lkyuAe/2OGun7Uh2MT+rOeeVw=
Subject key identifier: 66:D0:35:BD:8B:C6:D3:73:D8:EE:62:8E:2E:23:2C:43:66:13:71:B5
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1225
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ZtA1vYvG03PY7mKOLiMsQ2YTcbU.roa
Signing time: Wed 29 Sep 2021 02:54:14 +0000
ROA not before: Wed 29 Sep 2021 02:54:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 123.0.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4645 (0x1225)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:14 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=66D035BD8BC6D373D8EE628E2E232C43661371B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2f:53:68:54:c9:86:13:01:16:6b:03:d4:c2:
7e:59:a1:94:bb:4b:76:06:08:86:b9:46:db:2c:b3:
d5:33:c1:60:cd:87:9e:16:e0:cc:79:c6:ce:de:5b:
ec:20:1c:1c:d8:bb:7b:49:7e:db:f7:83:ff:ac:ca:
dd:4a:49:4f:60:6f:50:98:76:c9:ca:df:07:47:5b:
f9:6c:99:48:76:67:9c:01:22:a7:42:72:6c:52:71:
7e:a0:c0:eb:98:16:b5:ec:33:b0:76:64:a3:0f:9c:
ca:42:32:be:6f:a6:97:6f:f7:3e:2a:37:d6:ed:dd:
61:cd:0f:e5:5a:11:c8:55:a0:e3:bb:f7:40:2f:f8:
27:5a:3f:62:fc:46:88:88:e2:a0:74:0d:67:06:18:
ea:fd:4d:65:18:10:a3:1d:bf:8e:ba:c5:09:18:08:
12:c5:61:ea:6b:3e:53:fb:c6:a5:5f:c1:2c:80:d1:
22:e5:5e:96:fa:c3:6b:3e:24:5a:f9:92:c7:ad:c4:
5a:7f:31:7e:68:11:79:f2:45:5d:9c:18:fa:4b:ed:
9e:5c:08:2a:d5:cf:42:a5:f7:a5:18:a2:21:0a:4b:
71:65:99:91:87:fc:a8:ec:64:d2:82:1d:69:bf:77:
a0:1f:13:92:a5:7d:4b:d0:53:6e:eb:e2:96:ee:91:
6b:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:D0:35:BD:8B:C6:D3:73:D8:EE:62:8E:2E:23:2C:43:66:13:71:B5
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ZtA1vYvG03PY7mKOLiMsQ2YTcbU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.0.42.0/24
Signature Algorithm: sha256WithRSAEncryption
15:24:99:49:e5:c8:1f:58:0e:8d:2f:04:8c:f7:07:89:ab:d2:
2d:6d:d6:2d:ba:07:29:a2:9c:f2:69:44:13:b6:83:bd:53:c3:
3d:22:25:4b:26:2a:fb:c0:c6:51:e3:0a:41:c3:24:5c:38:a9:
93:c5:61:e9:54:38:4f:54:6e:a7:cc:a0:67:b7:24:41:20:8f:
42:ce:a6:2a:26:3e:b8:0f:ed:c0:85:e1:e2:e8:ac:8c:a6:91:
7f:dd:af:a8:d1:02:68:61:8a:9a:83:71:20:c0:86:a1:17:24:
01:fe:4c:b1:5b:32:3c:44:71:4f:90:70:b5:fa:d9:33:36:ad:
92:0f:8c:41:23:80:f4:e4:2f:53:79:95:c5:d8:df:4d:1b:67:
8d:56:17:e6:74:0c:15:23:d2:16:3d:e5:d9:32:12:15:fb:f8:
8e:a0:b3:3e:ee:60:ae:ae:5d:8b:d2:a6:f7:1a:55:45:ab:dd:
76:7b:00:e5:2b:b6:2c:6d:a4:c2:35:3f:66:9e:10:fe:9f:af:
93:a8:28:e4:12:d6:63:cb:1c:e0:e2:39:6e:f1:4e:02:d1:9f:
b9:17:b4:b8:be:da:4c:7c:a5:56:22:7f:70:8f:b1:31:94:f7:
8c:e7:2a:3d:b9:5c:38:cc:1a:7a:9e:3d:54:d5:01:bb:b1:86:
6f:83:80:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:48 2024 by rpki-client on console-ams.rpki-client.org