Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/otXXBOIoWXUwvR49ZUhHcDttov4.roa
File: otXXBOIoWXUwvR49ZUhHcDttov4.roa (raw, json)
Hash identifier: NoGYkBoQumu30DBOeM/s+olznhgmVvan8cegpijMDdA=
Subject key identifier: A2:D5:D7:04:E2:28:59:75:30:BD:1E:3D:65:48:47:70:3B:6D:A2:FE
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0AF3
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/otXXBOIoWXUwvR49ZUhHcDttov4.roa
Signing time: Tue 29 Sep 2020 10:07:49 +0000
ROA not before: Tue 29 Sep 2020 10:07:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 61.58.112.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2803 (0xaf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:07:49 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A2D5D704E228597530BD1E3D654847703B6DA2FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:ff:b1:e7:a5:00:f6:3f:1c:9d:45:a5:41:b2:
f7:08:74:01:3b:56:3c:de:8f:7a:06:63:c8:ce:8c:
43:de:ff:91:f9:d6:8e:53:4f:53:21:e8:4b:f3:f9:
55:87:e0:a1:96:5e:8a:99:ba:a5:af:73:11:82:a8:
05:a3:ec:49:6c:9a:f4:e1:81:fe:d5:cf:21:c5:02:
46:e8:ba:bf:ec:73:dc:92:16:c8:c4:76:04:eb:36:
05:da:b0:be:64:68:fd:72:9e:49:4e:07:4e:9f:07:
c3:31:75:40:a9:ca:f6:54:f4:9f:1e:21:41:54:50:
74:ca:01:12:8e:a6:fe:ad:46:a3:61:cd:24:21:46:
34:9f:21:5a:e6:46:de:45:2b:62:70:f9:15:91:44:
62:52:dd:d6:07:61:af:1f:ed:55:15:32:25:8c:9a:
fe:44:20:82:23:79:c7:3f:a1:23:13:38:40:13:7a:
4f:f4:1c:37:29:5c:01:8f:3a:b6:25:71:5f:8a:27:
40:29:15:81:a8:1a:2f:2d:58:da:eb:75:c3:b3:33:
91:84:5b:fd:4a:f9:f3:5f:a1:00:30:46:62:84:22:
2b:ae:9a:f2:44:be:6a:49:5b:e5:0e:6d:51:c0:0e:
98:0b:07:75:9b:f3:35:72:bd:19:51:30:30:2f:b5:
86:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:D5:D7:04:E2:28:59:75:30:BD:1E:3D:65:48:47:70:3B:6D:A2:FE
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/otXXBOIoWXUwvR49ZUhHcDttov4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.112.0/21
Signature Algorithm: sha256WithRSAEncryption
8f:ca:25:b9:5f:29:1e:64:17:b8:0c:cc:d1:27:c0:d1:9f:57:
54:3b:a0:4a:e9:43:af:60:32:c0:25:62:aa:5b:c3:78:c0:d6:
c7:1d:6e:e3:3e:61:9a:5e:2b:7b:00:26:e4:3d:4d:41:f3:73:
01:6e:b0:74:c5:0d:3d:77:c7:1d:80:21:55:48:9d:26:83:b0:
99:e4:9d:d2:d1:6e:bf:ec:14:5a:df:2d:41:33:b6:2d:1d:ab:
52:9e:3a:85:5e:04:08:ed:b7:c0:be:d6:bc:4b:bc:b3:bc:f0:
86:4e:f0:9f:68:91:4e:9a:0e:de:4b:99:a4:09:23:f1:a4:9d:
87:2c:af:4c:fb:30:ac:96:a6:bf:da:60:e4:ca:5b:4e:46:c8:
6a:07:79:2c:d7:3d:c7:1f:c6:d7:08:38:87:f6:ea:a4:69:db:
2c:45:39:35:b8:29:ab:3a:45:6b:a5:5e:fd:b0:4a:09:61:f0:
01:34:db:66:32:85:0e:87:8a:4d:bd:d4:7e:0b:9f:41:61:51:
94:69:44:4c:13:35:93:0b:22:03:74:92:f3:51:67:4f:8a:72:
c5:16:3f:2f:c5:b0:83:05:f6:0b:20:8a:7e:c6:20:d6:96:a3:
0f:ef:a2:3e:1c:40:e0:21:80:fe:04:73:10:25:ad:3e:7e:ac:
c0:d0:ea:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org