Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dNFh1sIimUaGsz6ghRy33G4CFaQ.roa
File: dNFh1sIimUaGsz6ghRy33G4CFaQ.roa (raw, json)
Hash identifier: M3HlD/OFis56cPpGV7t9mzAzp5kps60DF6tpVs54c4Y=
Subject key identifier: 74:D1:61:D6:C2:22:99:46:86:B3:3E:A0:85:1C:B7:DC:6E:02:15:A4
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1B1B
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dNFh1sIimUaGsz6ghRy33G4CFaQ.roa
Signing time: Thu 02 Feb 2023 06:59:19 +0000
ROA not before: Thu 02 Feb 2023 06:59:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 119.77.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6939 (0x1b1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 2 06:59:19 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=74D161D6C222994686B33EA0851CB7DC6E0215A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:43:1a:32:6c:82:3e:c2:77:58:c7:25:da:51:
b1:6d:60:dc:43:0f:3c:ae:60:f9:36:3f:cb:f9:fe:
e1:6a:00:9a:7f:a1:31:dd:22:6d:02:c9:28:f1:cb:
6c:2a:05:6d:98:bc:9e:3b:3a:66:74:ce:cd:ec:89:
ab:cd:9c:50:26:47:38:f2:f0:14:e6:78:c4:4c:b0:
7c:96:c9:f7:96:6b:ba:0d:26:46:68:0a:b2:11:ac:
8d:6c:65:eb:ff:28:78:b8:96:4e:c5:f0:7b:bf:72:
a9:67:1a:5f:97:f8:22:35:d3:ff:03:e1:10:1c:a5:
fb:ff:a9:cb:ad:93:b8:40:32:4c:d2:4a:c2:ca:1e:
7f:28:1a:8b:32:08:65:9e:80:f1:f0:7e:e1:23:fa:
c7:a0:c4:29:68:b7:08:9a:bb:2a:c7:f2:20:f4:0c:
7c:7a:f9:b4:6c:06:88:cc:37:86:33:f9:eb:3a:ed:
a9:34:d6:6d:a6:c8:e3:78:7c:da:72:96:5a:24:89:
4f:d1:49:fc:bc:ef:97:ae:dd:49:ba:1b:88:c1:d9:
fb:57:41:3d:aa:59:56:12:6f:31:89:3a:6f:f4:62:
7b:ea:56:30:58:7b:01:33:3b:58:b0:02:8f:5e:d8:
bd:10:60:91:46:62:f4:c5:fa:ec:38:4e:f9:41:d2:
28:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:D1:61:D6:C2:22:99:46:86:B3:3E:A0:85:1C:B7:DC:6E:02:15:A4
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dNFh1sIimUaGsz6ghRy33G4CFaQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.77.128.0/17
Signature Algorithm: sha256WithRSAEncryption
75:0e:07:df:c5:99:69:4f:00:9a:5b:12:8b:e7:f8:3e:5a:be:
86:1f:a5:2d:71:01:4d:53:20:23:82:25:0d:9b:3f:12:d9:60:
af:42:3e:6a:7d:a1:22:14:8e:43:e0:c8:52:99:76:8d:cb:fa:
4f:ef:38:08:63:3e:b0:6f:01:66:02:6e:54:07:1e:13:9f:fb:
88:29:73:43:d5:a0:e0:12:bb:84:04:4a:32:73:e3:0a:e6:7b:
66:44:51:6f:8b:1f:70:1a:7b:4d:d0:73:8c:3f:f8:c1:eb:d3:
65:a9:66:de:e5:a0:a6:ed:48:81:ad:4e:1e:09:17:73:25:c1:
e8:12:c4:c9:dc:6e:2a:2f:ba:55:ef:dc:eb:1e:ce:0b:1e:8e:
a1:84:70:09:37:b3:e7:e5:f5:58:ac:1c:f9:03:e5:a6:0e:c8:
9b:e4:4c:56:93:99:d6:a6:f8:ea:fc:dc:fb:0c:a0:e0:de:47:
58:76:3d:a6:69:47:1a:c2:7a:83:6b:e4:85:5d:a5:ad:9c:29:
1a:c7:e6:d4:0e:7a:78:9a:93:a2:cd:9f:d6:75:43:c8:2a:12:
cd:29:0c:07:49:44:64:59:46:27:f7:2b:30:e0:65:4f:4a:dc:
58:3a:9d:32:11:67:0b:c1:79:28:a5:46:1a:58:19:94:34:8f:
cc:f2:bb:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org