Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/sCYi9wk6lApaBQAmstUv591RIAY.roa
File: sCYi9wk6lApaBQAmstUv591RIAY.roa (raw, json)
Hash identifier: gAz6k13YGXBjGM5ROgyc+A9ddrRYfQHqYN6Gclshvws=
Subject key identifier: B0:26:22:F7:09:3A:94:0A:5A:05:00:26:B2:D5:2F:E7:DD:51:20:06
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0B6E
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/sCYi9wk6lApaBQAmstUv591RIAY.roa
Signing time: Tue 29 Sep 2020 10:08:25 +0000
ROA not before: Tue 29 Sep 2020 10:08:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 115.165.216.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2926 (0xb6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:08:25 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B02622F7093A940A5A050026B2D52FE7DD512006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:d7:71:8e:90:36:24:91:c9:ab:63:5a:85:27:
2f:f4:43:0b:51:1c:3d:70:60:33:d6:ba:66:c2:e2:
c3:97:0f:2b:ed:00:e3:60:39:35:70:d6:9a:ad:0f:
65:91:df:53:12:c5:32:c4:30:54:fe:72:3a:0b:57:
b8:e8:c6:a5:70:b5:33:6c:40:f2:ed:e0:9b:51:ec:
34:f7:e2:09:84:5a:ec:52:dd:63:de:42:8c:88:79:
ae:b6:36:c9:47:2f:42:b9:b5:88:8f:78:cf:84:79:
07:70:7e:c1:7d:59:d4:74:06:c2:96:82:f0:70:30:
54:23:e0:89:82:86:ef:16:cc:b5:b5:09:59:ea:2a:
40:19:5b:76:62:d5:9b:34:54:1c:0e:e3:1a:a2:94:
bf:aa:0a:07:6f:1f:4f:40:a5:59:cd:07:b3:1c:7c:
4d:32:14:87:4f:78:54:b1:e4:ae:76:8f:70:bb:30:
50:2d:ad:e9:41:47:33:f4:57:7d:93:10:84:ba:ad:
28:af:db:8f:59:fd:68:80:9e:bc:3b:b5:1d:7f:25:
b6:0a:fa:f2:51:4e:cc:82:21:e5:f8:91:8b:f5:5d:
09:13:5b:ad:6d:0d:32:8b:6b:56:5a:15:36:4a:0d:
90:7b:8d:7a:10:c5:46:55:8d:eb:c2:17:64:cb:d0:
7d:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:26:22:F7:09:3A:94:0A:5A:05:00:26:B2:D5:2F:E7:DD:51:20:06
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/sCYi9wk6lApaBQAmstUv591RIAY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.165.216.0/21
Signature Algorithm: sha256WithRSAEncryption
0d:41:84:95:d8:54:9b:9d:32:bc:0b:df:dc:4b:66:01:a8:a6:
79:2e:71:a6:97:06:f4:eb:f7:95:1b:ab:d7:b9:b3:83:40:a3:
97:34:4c:19:c8:9f:20:5b:b7:00:7f:c1:e6:d5:14:cf:7c:31:
54:fa:b2:8b:ee:ce:cc:0f:36:53:0f:de:a7:a1:ec:9f:55:90:
d1:1c:2a:9a:ae:87:30:16:8e:cb:2c:a5:bd:51:49:b6:be:8e:
24:32:6a:dc:13:d4:4b:e7:57:4a:f8:80:d0:a6:57:36:83:49:
37:87:82:b0:47:85:0d:a7:eb:01:e5:49:85:f5:12:c9:4f:90:
86:c6:af:cc:bc:ec:fa:86:b0:eb:63:11:e2:3c:5b:37:7b:8c:
b4:22:56:9d:4d:ba:aa:68:94:14:4f:7e:d1:a3:a1:4b:14:28:
3b:41:c1:64:53:4a:27:8c:a6:d9:8e:72:c2:98:5a:85:a2:55:
a8:5f:d7:a6:b3:c5:95:93:1b:76:05:1e:66:3c:7f:0a:88:5a:
49:2f:31:58:b4:25:78:19:7f:26:83:a2:af:47:d7:42:a3:20:
7c:96:50:62:88:9d:3c:c2:7b:65:7c:57:dd:cc:c2:e1:96:02:
91:29:f8:e4:c2:40:24:af:15:a2:21:f7:56:dd:09:d8:13:57:
10:17:fd:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org