Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oTobhs1f8impLhKdq1nIVaYDjnk.roa
File: oTobhs1f8impLhKdq1nIVaYDjnk.roa (raw, json)
Hash identifier: 8awTL/yaxRr3xnard3fNh6KytjSmKC5h0HYrSHaHknU=
Subject key identifier: A1:3A:1B:86:CD:5F:F2:29:A9:2E:12:9D:AB:59:C8:55:A6:03:8E:79
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1029
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oTobhs1f8impLhKdq1nIVaYDjnk.roa
Signing time: Sun 07 Feb 2021 12:37:55 +0000
ROA not before: Sun 07 Feb 2021 12:37:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 61.64.16.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4137 (0x1029)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:37:55 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A13A1B86CD5FF229A92E129DAB59C855A6038E79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b7:cb:c3:7c:a5:4a:0e:15:89:95:98:bd:fa:
b4:2d:f5:4e:45:dd:d1:fb:ad:26:13:84:5a:5e:53:
b0:4d:95:54:b5:89:28:c8:43:6d:2e:8e:14:29:16:
ca:dd:10:76:06:f0:4f:2c:f9:5f:5a:e0:27:3c:06:
fd:7a:5a:c8:89:0b:c9:9a:fd:95:12:59:ea:5d:bb:
f3:c7:75:a7:4d:ba:c2:18:bb:19:ab:4b:58:e6:d8:
26:f5:d8:d7:fb:94:7c:e6:2e:e6:ef:56:4c:ab:45:
a4:4d:5d:02:72:ec:2d:30:6e:de:a7:e2:2c:4a:18:
c7:98:1a:38:4d:d2:66:96:da:c9:1d:48:f8:0d:ce:
0f:40:08:07:ea:cb:aa:a9:4f:86:ae:bd:f8:fb:c2:
c1:ae:77:c1:46:34:d6:67:48:54:93:17:0e:4c:b7:
03:67:c8:f9:c3:a7:c1:c5:36:90:e4:5b:0f:b8:0c:
58:8a:b2:d9:f8:5b:a9:4c:f3:c3:0f:f1:a9:2e:27:
f8:b0:58:b2:0c:8b:1d:51:ba:2d:4d:9d:be:36:06:
b1:5a:2a:04:b2:f3:43:da:8d:cf:e8:94:2a:9e:1f:
d0:28:34:22:bb:9d:76:fe:4a:70:bc:a7:7b:92:10:
1a:21:49:2b:5e:85:9b:8c:6b:51:c7:02:4d:28:c1:
62:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:3A:1B:86:CD:5F:F2:29:A9:2E:12:9D:AB:59:C8:55:A6:03:8E:79
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oTobhs1f8impLhKdq1nIVaYDjnk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.64.16.0/21
Signature Algorithm: sha256WithRSAEncryption
72:f2:b9:07:fe:8c:7c:de:0f:af:9c:7e:73:44:c0:9a:2d:e9:
cb:fc:31:8d:55:48:b8:cd:5d:b7:b0:e5:50:3c:f6:9a:e9:89:
7b:48:6f:05:da:bd:1d:f4:65:39:8b:63:8c:db:e4:38:0d:0c:
81:08:a0:56:20:b5:af:c0:65:8c:77:ff:93:bd:7d:db:83:88:
ad:90:af:03:f3:06:f1:bd:6c:da:d6:ba:4b:0f:ac:3d:23:92:
68:2f:24:fa:29:a3:6c:de:e2:3c:c9:8e:2a:bd:de:03:bc:f6:
88:52:73:12:aa:ba:53:27:34:8f:27:b3:6d:40:95:48:4b:20:
5a:8b:d7:64:9e:e5:59:b1:c4:9a:e5:59:0b:07:b3:ac:8b:fd:
98:2b:45:63:df:8a:07:53:7f:7e:3f:be:2d:f0:a7:c4:b7:a7:
45:67:fe:72:73:a4:6e:ba:f5:39:a6:88:fc:80:25:10:53:4a:
7e:6d:b5:10:31:30:f3:0d:c7:19:49:9b:7b:7e:4a:5e:cb:63:
01:18:1f:31:d0:6c:1e:7d:11:85:27:b1:43:35:99:ea:7f:fd:
cf:47:90:65:a5:c8:42:e6:ca:d0:3c:6f:d7:fa:e9:86:a8:b6:
8e:46:ec:18:7a:90:8c:57:fc:f2:0b:7f:09:61:a9:cf:2f:4e:
f6:71:07:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:52 2023 by rpki-client on console-fra.rpki-client.org