Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/amCZdaIT6Fikt9AtnvTQF53uvxQ.roa
File: amCZdaIT6Fikt9AtnvTQF53uvxQ.roa (raw, json)
Hash identifier: aAdr+76+nuSUs24VCTqRNpHjjbUHucLGpjODSjPnRN0=
Subject key identifier: 6A:60:99:75:A2:13:E8:58:A4:B7:D0:2D:9E:F4:D0:17:9D:EE:BF:14
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0B9D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/amCZdaIT6Fikt9AtnvTQF53uvxQ.roa
Signing time: Tue 29 Sep 2020 10:08:38 +0000
ROA not before: Tue 29 Sep 2020 10:08:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24163
IP address blocks: 119.77.208.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2973 (0xb9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:08:38 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6A609975A213E858A4B7D02D9EF4D0179DEEBF14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:cf:bf:50:43:0e:eb:1d:c1:ee:cb:a0:88:20:
7c:bd:f3:e5:f3:e6:8b:04:f5:32:62:a3:5e:8c:eb:
94:0b:c5:0b:51:af:39:43:e5:0d:5b:03:1c:e7:13:
5c:fe:25:cb:4f:6a:2c:f0:2d:3f:57:d8:d1:4e:f3:
7b:30:53:bf:43:c2:ea:d0:e7:06:12:94:82:9d:b1:
5e:74:95:a2:4b:9c:90:c5:66:59:36:83:e0:7b:84:
f3:67:af:b3:29:a1:ab:a0:61:95:04:1a:3d:20:a6:
12:74:35:b1:90:0d:8e:1e:05:c0:22:df:11:c0:c8:
70:79:26:8e:ec:14:65:36:4c:8d:5c:0c:c1:9a:25:
fa:d7:64:3a:86:05:3a:58:8f:70:0b:bc:c9:9d:9e:
c1:95:e3:18:e3:dd:ce:0e:a9:ea:e7:f8:17:c3:59:
08:ad:0f:41:b6:ae:78:74:91:40:86:13:e7:f2:77:
78:10:cb:dc:fe:bf:fe:b6:1d:21:2f:07:26:bf:d3:
2f:88:33:91:a7:c6:22:9e:a7:1f:a4:1e:aa:91:2c:
fe:b4:d5:77:78:83:b9:b8:2e:e3:68:23:2f:16:dd:
d2:57:44:f4:ce:63:ac:15:03:d3:00:a2:64:44:b9:
dd:8b:a0:dc:8c:0e:2a:a9:e6:db:fe:ac:28:8b:97:
5f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:60:99:75:A2:13:E8:58:A4:B7:D0:2D:9E:F4:D0:17:9D:EE:BF:14
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/amCZdaIT6Fikt9AtnvTQF53uvxQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.77.208.0/20
Signature Algorithm: sha256WithRSAEncryption
66:e6:d1:7d:05:5a:7e:2e:d8:4a:30:05:fb:47:42:57:80:4f:
11:2f:83:03:a6:0a:2b:ee:f9:7a:80:af:39:d9:91:f6:df:cb:
a4:f2:40:eb:40:f3:31:9d:83:8b:dc:f8:7e:aa:cc:b2:48:68:
0d:ea:ec:1c:d4:de:ca:a3:8c:e0:2f:67:b6:a3:c4:2f:33:01:
ea:88:b4:2a:20:c4:c3:a1:cc:f5:33:e9:7e:d6:61:cc:f0:3e:
f2:15:4d:3d:22:97:e7:d2:de:10:c1:5b:5a:05:43:8c:8b:94:
7b:6e:08:8f:88:a8:97:50:6a:0c:75:08:df:a6:c2:af:d3:13:
4d:cf:8c:59:f4:b0:38:96:60:ad:25:c0:cd:a7:92:7d:68:76:
c3:91:5d:3b:99:d0:2f:7c:46:1f:bf:89:b7:6b:73:98:31:77:
b1:90:28:51:fc:92:44:a8:b7:06:97:b8:5a:8b:99:cb:aa:d7:
e1:19:5c:7e:e5:41:92:6e:fe:bf:9d:85:48:39:42:bc:33:8f:
c8:0a:32:42:aa:80:e3:35:28:98:7c:8e:26:c3:d8:dd:71:1b:
b0:cc:7d:56:c0:58:39:be:3e:64:c1:a6:88:3d:ca:7f:1c:18:
54:a2:28:3a:f9:2b:32:d7:bd:4b:1e:2d:36:4a:a6:a6:1f:e2:
f9:dc:89:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:48 2024 by rpki-client on console-ams.rpki-client.org