Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lbwquazc3owGA0i30aNz3-yVF94.roa
File: lbwquazc3owGA0i30aNz3-yVF94.roa (raw, json)
Hash identifier: MST3ByN/jBgwv9SMjzVPpoCnmV0vkUAWf0EvLiui0kk=
Subject key identifier: 95:BC:2A:B9:AC:DC:DE:8C:06:03:48:B7:D1:A3:73:DF:EC:95:17:DE
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1A39
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lbwquazc3owGA0i30aNz3-yVF94.roa
Signing time: Mon 24 Oct 2022 04:19:51 +0000
ROA not before: Mon 24 Oct 2022 04:19:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 61.61.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6713 (0x1a39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 24 04:19:51 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=95BC2AB9ACDCDE8C060348B7D1A373DFEC9517DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:76:39:01:d6:ef:77:d8:1a:45:5a:c5:bb:2b:
2a:3f:97:68:2d:18:f0:1d:cf:fc:a0:9f:fd:a4:e7:
a1:80:03:e7:c5:ec:1d:dd:0f:7b:31:a1:d6:b6:a1:
35:5a:44:5c:bf:8f:c7:43:71:26:c5:aa:e9:17:0a:
4e:31:9d:cb:8d:6c:ae:d8:7a:91:44:a0:e5:51:bb:
93:a2:d2:60:c8:bd:59:8c:c0:7f:51:d8:11:d3:27:
20:26:28:fe:63:6a:6a:b5:ce:ab:07:df:27:bc:a0:
91:26:42:b6:e8:6c:15:66:19:0f:97:4f:55:e4:c6:
ad:a7:d7:bf:9d:03:28:23:e0:44:03:35:2f:28:25:
c8:b1:97:d3:4a:c7:37:85:df:3b:13:b8:40:2f:81:
e0:ff:46:c6:c8:e1:72:cd:05:88:45:f7:a0:75:6c:
d3:a7:7d:e4:3f:b9:93:fd:fc:79:de:d8:3a:32:1f:
e0:72:26:26:45:8d:1e:f6:20:f3:d2:26:e4:1a:d9:
d9:75:a5:9e:98:9d:78:ab:e5:44:26:25:b2:5e:fd:
ba:1d:55:d9:1e:a5:79:bd:52:b8:1d:44:0e:83:3b:
a2:54:fd:9e:2f:f0:32:55:e0:8c:e2:a7:12:f4:11:
4f:b7:cd:1f:c0:2f:ba:13:37:ab:5b:53:d1:26:9d:
65:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:BC:2A:B9:AC:DC:DE:8C:06:03:48:B7:D1:A3:73:DF:EC:95:17:DE
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lbwquazc3owGA0i30aNz3-yVF94.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.224.0/22
Signature Algorithm: sha256WithRSAEncryption
25:b8:5a:2c:cd:92:c5:54:67:dc:3e:54:cb:b2:68:a3:e1:02:
96:23:13:14:f5:63:84:70:30:b1:a2:d1:cd:c0:ae:2d:39:43:
a8:3d:fc:a6:f8:8e:fc:b0:ad:5d:a6:3b:7b:56:e5:3e:84:a1:
aa:17:a2:a7:0e:24:a9:ba:eb:b1:9f:5c:9b:90:0d:59:6a:15:
be:97:f6:01:32:d9:5b:45:de:44:b4:00:bc:68:c9:4a:41:8b:
cf:5d:20:47:df:39:3a:e0:4b:7a:f2:b7:b7:7b:ba:00:d4:16:
3c:f8:bd:1f:8e:f7:df:94:e0:a1:7e:08:db:5c:33:a2:35:bf:
63:0c:4e:ee:6c:4b:aa:47:26:c5:fb:a6:75:c3:5f:df:12:df:
42:f7:f1:93:4a:a1:da:2f:93:42:30:52:33:43:01:ac:ba:53:
e5:c4:10:a6:a4:e8:c4:04:08:e8:d6:9a:46:7f:cc:cd:ae:ee:
58:81:95:68:fc:75:09:bb:d9:9e:0d:ac:93:a5:f5:c1:36:3b:
0c:db:a5:ae:8f:75:e9:16:6a:47:12:f5:2d:51:cc:df:b9:c7:
92:e5:d8:6f:bd:f6:e1:fe:84:4d:13:41:a3:71:c5:8d:9e:94:
62:23:c3:54:22:0c:2d:19:d9:25:24:a7:7c:84:5f:cb:9d:59:
52:0c:fe:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org