Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/b0k2vpMYMkwKOoSdzxN8LA2vPhM.roa
File: b0k2vpMYMkwKOoSdzxN8LA2vPhM.roa (raw, json)
Hash identifier: flfET34+a+boHd0sL9SFxjb0YH+ji+6E3zOVnbRGIMA=
Subject key identifier: 6F:49:36:BE:93:18:32:4C:0A:3A:84:9D:CF:13:7C:2C:0D:AF:3E:13
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1A5A
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/b0k2vpMYMkwKOoSdzxN8LA2vPhM.roa
Signing time: Thu 27 Oct 2022 02:52:08 +0000
ROA not before: Thu 27 Oct 2022 02:52:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 61.58.120.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6746 (0x1a5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 27 02:52:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6F4936BE9318324C0A3A849DCF137C2C0DAF3E13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9b:61:91:26:f6:d5:11:28:90:be:ad:f0:dc:
cf:52:4e:5a:bc:fe:6e:16:26:3d:23:6f:ff:5c:b2:
44:dc:7d:8d:85:7a:a7:3f:bb:2b:99:13:5d:5b:37:
fe:09:7b:d2:80:54:04:c1:fe:22:6e:88:2c:a2:51:
d8:4b:2e:e6:1c:3f:8d:58:d0:ce:b8:9a:b9:a3:79:
26:ec:57:60:3c:46:10:32:bf:3c:1d:70:48:14:d6:
de:02:06:e1:63:95:92:95:c5:e8:8d:69:99:7d:67:
5f:b1:15:1f:f0:a2:3b:1c:05:73:32:02:69:7b:5a:
ca:13:b3:81:97:1c:52:d3:67:ed:17:c9:68:0c:7f:
f8:3e:b7:c0:93:45:6c:63:28:bd:b7:f7:68:0b:4f:
6c:d7:50:d7:03:a8:96:b5:9f:6d:42:2b:e5:73:6d:
8a:63:cd:e3:22:ff:89:74:dd:83:f0:2f:65:47:79:
b5:54:a2:2d:c6:54:5f:f3:c5:4a:37:d7:ac:4b:c6:
32:0a:92:af:a6:ad:60:94:08:e6:54:7a:d2:61:0f:
cf:5c:46:47:71:2d:38:3d:da:42:db:a4:68:32:de:
a4:a0:4b:e0:4e:f6:b5:ef:85:ff:27:67:b3:9e:e1:
c7:18:75:6e:82:f2:87:a6:9e:ca:11:c6:bb:43:a3:
ad:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:49:36:BE:93:18:32:4C:0A:3A:84:9D:CF:13:7C:2C:0D:AF:3E:13
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/b0k2vpMYMkwKOoSdzxN8LA2vPhM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.120.0/23
Signature Algorithm: sha256WithRSAEncryption
09:cb:70:d2:0c:87:6f:b8:98:f0:43:83:b1:da:fc:d2:2f:4e:
d8:86:46:71:21:59:0e:fd:59:8b:74:5e:3e:80:98:20:6e:f8:
02:e6:11:08:6d:d0:60:63:b4:4f:42:e6:22:e7:62:16:10:a2:
48:31:11:0a:be:ae:ec:f3:0e:a3:63:44:24:75:00:81:a7:1e:
6e:c4:54:69:38:e2:80:a0:3f:b5:14:d0:fc:5f:5e:c7:db:93:
13:40:bd:c6:d4:65:02:89:04:b4:e0:8a:7a:25:62:c0:59:2e:
8d:8b:22:be:ae:ca:37:d8:8b:40:bd:d8:88:08:37:f6:14:29:
b1:f3:89:5e:48:51:74:49:78:59:d8:a9:36:6f:10:3d:aa:35:
38:72:84:a8:cc:48:de:3a:17:a0:96:10:67:90:a4:67:d9:71:
c7:3a:9b:77:0e:1a:60:47:10:9c:0f:4f:af:ba:99:74:cd:b7:
1f:9b:fb:74:98:92:74:a8:ea:50:e2:2c:aa:0e:d9:23:a7:19:
0a:bd:e3:9f:44:e9:95:45:cc:cb:dc:45:6d:cf:aa:a9:83:51:
9d:87:02:f9:a5:20:78:27:08:82:30:89:0f:17:97:b1:cb:44:
35:22:97:b8:ad:b3:24:5a:24:05:72:27:1a:22:84:68:2f:97:
e2:72:88:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:48 2024 by rpki-client on console-ams.rpki-client.org