Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/_hiMv79kdBymyRnun4VMdgUTkEg.roa
File: _hiMv79kdBymyRnun4VMdgUTkEg.roa (raw, json)
Hash identifier: PIsS8baz2UDKvxabbDG4ZQmtUvbCoYyLorOPCoxr23Y=
Subject key identifier: FE:18:8C:BF:BF:64:74:1C:A6:C9:19:EE:9F:85:4C:76:05:13:90:48
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12CB
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/_hiMv79kdBymyRnun4VMdgUTkEg.roa
Signing time: Wed 29 Sep 2021 02:55:00 +0000
ROA not before: Wed 29 Sep 2021 02:55:00 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24165
IP address blocks: 61.58.112.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4811 (0x12cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:00 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=FE188CBFBF64741CA6C919EE9F854C7605139048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d3:14:95:fe:c6:42:13:d8:fb:79:e6:8b:68:
14:b3:65:6e:49:80:9c:25:25:34:e0:49:58:1c:0c:
13:f0:b3:04:da:ae:1b:67:61:f6:1f:52:f1:cc:3d:
32:47:25:c0:52:c4:3f:e3:ba:17:8c:5f:74:b4:61:
0b:32:c0:e8:7a:9b:90:a6:ac:04:ec:e6:b2:ac:46:
ae:96:e9:e4:a6:e5:c6:dd:b5:6e:65:c7:cf:07:0a:
64:dc:19:c7:2f:42:53:97:87:66:30:34:a5:78:42:
f9:3c:12:7f:ca:be:50:82:52:ec:3c:2a:d0:83:fe:
e4:0b:f7:a6:05:0e:c6:a0:c8:d6:43:66:69:3c:73:
e3:24:69:33:b8:51:9c:3e:2f:ca:a5:b5:f2:6d:b4:
46:a4:f9:ec:d4:a7:d6:9e:e9:31:c4:05:ec:70:a6:
b6:56:c2:06:2d:4d:6c:55:4b:cc:0c:e2:55:40:5f:
bf:8a:92:99:d2:b0:c8:4f:d4:26:6b:fb:68:5a:75:
c5:a1:20:74:a4:17:09:0e:c8:fd:4f:73:a3:e9:76:
08:0d:df:d4:48:26:4d:20:69:57:d6:85:21:ab:95:
d3:ea:f9:59:c9:08:7b:10:b7:32:9e:ee:f4:74:f6:
dd:46:9e:1a:c5:65:e4:8f:b6:63:74:5d:f7:6d:7b:
d0:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:18:8C:BF:BF:64:74:1C:A6:C9:19:EE:9F:85:4C:76:05:13:90:48
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/_hiMv79kdBymyRnun4VMdgUTkEg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.112.0/21
Signature Algorithm: sha256WithRSAEncryption
91:b4:4a:1f:c1:4e:e3:47:3c:14:b5:a6:82:f1:33:7f:87:d3:
f8:ac:99:70:ac:63:22:f1:7c:1f:87:a9:e7:f6:de:6f:52:32:
d3:d4:d8:c2:0d:3e:06:9d:0f:3f:29:9a:02:5f:0e:e1:0e:63:
4e:1a:b9:d4:5f:34:64:0a:89:34:16:bf:e4:05:dd:77:a2:98:
63:cb:d1:8f:66:66:98:c1:0a:00:f4:f2:61:34:31:47:69:4b:
0d:62:85:a2:e7:66:aa:39:bb:e4:9c:5a:c4:92:97:dc:1b:3d:
be:87:5a:6a:2f:0f:9c:b6:f3:68:4e:35:28:8c:6c:44:ec:77:
a7:a4:bb:68:33:83:29:73:a8:ca:40:bd:71:31:e9:14:35:b7:
28:fd:0c:87:d3:c3:c8:cb:84:cc:29:ce:71:91:08:56:18:e0:
4c:1e:67:23:26:a0:83:91:74:b8:af:f6:a3:43:2c:5d:9a:41:
78:ea:4b:c7:0a:af:9e:f9:19:cc:c5:cb:42:c2:0b:5c:0d:f0:
15:8e:08:ae:00:e4:3e:fe:a4:fd:b7:60:fd:6b:23:81:29:3c:
b3:97:94:4b:51:a0:e1:f8:65:8b:92:fe:40:74:35:12:da:a2:
73:12:c4:28:f4:98:1e:40:b2:5e:54:31:49:2a:e7:15:5b:8f:
ba:07:54:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:48 2024 by rpki-client on console-ams.rpki-client.org