Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/iHSSH3hIRkfGSkfrbGIkinCBZe8.roa
File: iHSSH3hIRkfGSkfrbGIkinCBZe8.roa (raw, json)
Hash identifier: wqQ4s8sCkmuHvfXv+DGzOpN8kUldncvQuq9a96qOnmc=
Subject key identifier: 88:74:92:1F:78:48:46:47:C6:4A:47:EB:6C:62:24:8A:70:81:65:EF
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0F71
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/iHSSH3hIRkfGSkfrbGIkinCBZe8.roa
Signing time: Sun 07 Feb 2021 12:34:11 +0000
ROA not before: Sun 07 Feb 2021 12:34:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 124.6.16.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3953 (0xf71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:34:11 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8874921F78484647C64A47EB6C62248A708165EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3e:76:33:13:f7:38:ed:ea:85:9b:36:0a:08:
2c:54:ab:e9:e6:0f:f1:b8:02:4b:8a:ab:36:31:cf:
ad:e1:f0:32:0b:64:2f:fb:24:d6:66:55:bc:d6:5f:
3f:23:92:f6:82:e5:bf:0f:b5:52:4a:ff:53:40:d8:
15:d6:5a:50:d6:1f:e4:55:9f:f8:80:d8:f1:f8:bd:
a6:f9:da:f5:23:47:62:fd:aa:18:2c:6e:1a:0d:f0:
4b:29:95:3d:ee:d4:5d:52:a5:d2:c3:88:f0:11:71:
ac:dd:5e:38:7a:4f:ee:7b:e7:ea:6a:01:89:30:f5:
ec:f2:62:28:69:db:c7:7f:23:d6:6a:9f:ab:80:9a:
5d:c2:36:9b:a2:ef:ca:20:a1:19:f6:c9:f9:0b:7c:
93:4c:28:b6:a0:b8:05:2c:49:9f:69:16:fc:dc:51:
69:f1:46:18:ea:78:48:4a:ac:ca:2f:31:e3:76:9f:
c8:b5:5a:e9:ae:12:f4:4c:2a:39:97:15:72:3b:03:
5a:7b:71:57:cf:2f:07:ea:92:c6:00:eb:79:f4:da:
4d:27:87:db:43:32:db:3b:69:c6:52:29:f4:c5:0b:
52:ee:c3:5a:9c:7f:84:d2:28:22:47:68:44:f8:ff:
50:bb:f9:fa:4e:9f:b8:4d:6b:60:12:9d:3b:35:42:
1f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:74:92:1F:78:48:46:47:C6:4A:47:EB:6C:62:24:8A:70:81:65:EF
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/iHSSH3hIRkfGSkfrbGIkinCBZe8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.6.16.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:6d:03:3e:29:d4:3a:1e:3a:bd:68:bf:22:9a:71:30:52:1d:
bf:0d:06:17:85:11:61:b9:7b:3b:c7:ca:99:fd:af:8e:0c:8f:
34:b8:5a:ef:3d:17:d5:35:c4:35:e3:31:24:46:c3:36:98:b9:
80:c8:84:a0:07:d7:30:84:e6:c6:cf:19:33:0a:dd:65:8e:dd:
85:c0:6b:1d:fe:c0:34:ab:94:07:c6:da:99:e8:2d:64:92:a3:
3c:04:3a:80:a8:f0:1a:e1:13:49:02:04:08:d5:c6:5f:d5:19:
4f:bc:c0:83:ce:d0:de:bd:ea:18:f8:4b:28:68:f7:28:b6:18:
ab:85:43:06:b6:93:2b:e7:1c:41:4d:c8:56:1c:97:42:13:c2:
e7:d6:b8:b1:b7:de:73:aa:76:92:4f:f5:db:76:6d:3c:b4:b6:
0d:99:62:3e:1d:1d:fa:25:1f:84:47:25:b7:e4:86:37:e1:89:
b9:e4:88:3e:ec:6f:0a:f7:65:1d:f6:03:34:e8:32:5b:18:82:
68:88:1f:a8:0b:9d:f6:7e:8c:79:8a:91:75:b6:fe:18:70:9b:
fa:d6:31:50:02:fd:98:10:2a:29:79:37:03:7d:5d:a9:62:a4:
cd:18:ef:ce:83:f6:74:20:87:dc:ba:be:f7:19:44:bf:3a:6e:
f1:15:26:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org