Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kIFPHaV-tm1bXngEulq5xpTXihE.roa
File: kIFPHaV-tm1bXngEulq5xpTXihE.roa (raw, json)
Hash identifier: WXj8PetVCAdEKH3Pij5Pkfzsxe9rZrpjkEAL0u8T/pI=
Subject key identifier: 90:81:4F:1D:A5:7E:B6:6D:5B:5E:78:04:BA:5A:B9:C6:94:D7:8A:11
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0F93
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kIFPHaV-tm1bXngEulq5xpTXihE.roa
Signing time: Sun 07 Feb 2021 12:34:50 +0000
ROA not before: Sun 07 Feb 2021 12:34:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24163
IP address blocks: 211.76.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3987 (0xf93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:34:50 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=90814F1DA57EB66D5B5E7804BA5AB9C694D78A11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:19:a3:92:5e:69:d1:9f:8b:20:dc:66:95:dd:
32:b4:e8:4c:f1:67:74:eb:a9:32:c4:ac:f3:8d:65:
00:74:dc:94:fe:2a:fa:ea:45:c4:1c:90:f5:fb:ed:
d5:69:1f:09:d4:34:00:a1:91:5f:f6:d5:df:bf:31:
93:83:4e:eb:0d:5e:70:bc:a4:b8:32:9d:84:3c:8d:
58:96:7b:3b:c5:a9:04:8c:7b:6b:e3:d4:2f:1f:b2:
94:db:14:6b:ed:5f:fd:1c:13:3d:66:55:68:45:93:
af:1c:f5:20:ad:1d:d0:aa:01:e3:1d:ff:9e:c7:d3:
8c:0a:31:8a:bb:c3:06:0f:fd:af:d2:54:e7:73:0a:
8a:9c:76:50:4d:cd:11:00:1d:21:d6:9c:ea:4a:74:
4d:49:32:2b:46:4c:2e:99:81:f9:07:32:ad:a6:7b:
d5:17:8a:7e:37:9a:a7:21:b9:4a:fe:07:84:75:6f:
fd:a2:97:18:1a:a1:5d:34:26:93:b5:d8:6d:eb:2d:
23:a8:bb:f9:13:4c:dc:e1:46:e6:bf:09:98:0b:ce:
0b:28:bc:81:cd:82:bb:27:a2:de:5d:70:ba:77:29:
79:27:08:87:fd:e9:18:f2:dc:22:9f:45:02:6c:24:
f9:46:e4:67:80:09:45:eb:8d:ab:7e:a7:70:4c:de:
e6:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:81:4F:1D:A5:7E:B6:6D:5B:5E:78:04:BA:5A:B9:C6:94:D7:8A:11
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kIFPHaV-tm1bXngEulq5xpTXihE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.76.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:d3:bf:45:36:f9:5c:08:44:72:c6:36:d2:32:63:b6:81:39:
bc:bc:33:fe:ba:fa:19:dc:74:46:18:dc:b9:5c:d0:b8:8b:92:
1b:23:7b:d0:a5:1e:92:26:d3:6b:c3:11:13:ae:ec:8f:7e:d7:
83:42:e3:68:db:a2:aa:49:ec:02:8b:6c:8a:b0:8b:1d:f1:ab:
64:d6:46:f4:31:8d:b3:ee:35:a1:6d:bf:59:15:90:69:29:01:
91:bf:df:b1:3e:ae:57:ce:d4:68:04:dd:8c:0a:1a:00:72:01:
fc:f0:0a:a8:56:70:d1:8b:0b:1c:6c:96:82:af:74:98:2c:aa:
d9:e2:3b:06:7a:f1:1c:2e:ce:ad:ff:07:49:42:5c:b0:10:40:
a0:31:9c:80:f8:d4:ec:5e:7a:c2:6c:c3:f0:60:d6:d2:ba:16:
36:dd:73:23:cf:3d:95:63:a6:55:df:71:fa:aa:a0:99:c5:7c:
10:83:0d:85:e9:3e:eb:05:8b:0e:b4:24:07:34:fa:66:8c:97:
cf:12:ee:41:39:44:ac:7a:c0:b2:2b:ff:71:bf:85:66:ad:46:
c0:75:26:9d:aa:f3:85:51:4d:87:3d:cb:30:0e:c6:b4:f2:4a:
c8:c5:2a:cd:2e:ff:dc:22:38:6f:82:d8:b2:c9:ae:50:18:b6:
55:8c:1d:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org