Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/t9OYi3DIQrkGRLmTE16TEpkEZII.roa
File: t9OYi3DIQrkGRLmTE16TEpkEZII.roa (raw, json)
Hash identifier: UfY9uLWvykkUjrFYXEtiH53ey4tIXPGr/zeICyCSJVk=
Subject key identifier: B7:D3:98:8B:70:C8:42:B9:06:44:B9:93:13:5E:93:12:99:04:64:82
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0D2F
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/t9OYi3DIQrkGRLmTE16TEpkEZII.roa
Signing time: Thu 14 Jan 2021 07:23:28 +0000
ROA not before: Thu 14 Jan 2021 07:23:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 119.77.189.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3375 (0xd2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Jan 14 07:23:28 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B7D3988B70C842B90644B993135E931299046482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:53:fd:b7:98:b9:f4:1e:58:81:1e:fd:bc:cd:
fd:3a:99:92:79:f4:d8:44:71:4c:5b:6d:80:f2:cf:
d9:c9:c0:59:c6:ed:89:ec:b8:e5:5a:af:80:c0:2c:
45:4d:c3:df:f7:10:f7:25:51:f7:7c:e9:89:8b:54:
c9:97:eb:1c:25:e7:c8:ae:63:89:23:05:ee:86:db:
06:78:a5:9e:17:ae:98:a6:1d:21:93:e5:d4:1f:d4:
01:6d:a5:ca:bf:10:39:c8:f9:2f:cf:0a:b1:7b:5d:
d0:a1:d8:a5:f9:d6:d1:ee:e0:df:4f:33:93:4f:13:
9c:1f:a8:a8:d7:bc:fa:ad:3c:4b:9f:c5:22:6d:d5:
96:1d:02:88:b2:9c:02:a4:d8:4e:09:f0:7c:fe:2c:
a4:1d:13:41:02:ab:fc:e7:cd:eb:ae:d1:53:5c:ed:
6b:5e:8c:be:13:e8:91:e5:ac:ab:b7:a0:50:54:47:
95:4e:3a:b0:7e:fa:d2:64:e8:23:26:26:00:2e:f8:
09:00:fe:b7:5e:99:6b:ad:b7:ef:bc:98:24:26:ef:
b8:54:fb:bb:d1:c2:88:84:13:02:71:69:f2:db:92:
ff:f1:b0:6a:0d:fc:ee:37:2e:8e:e6:58:b8:19:49:
dd:c5:f6:ac:1a:f1:2c:0a:d6:bb:b7:5a:0d:4a:fe:
6b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:D3:98:8B:70:C8:42:B9:06:44:B9:93:13:5E:93:12:99:04:64:82
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/t9OYi3DIQrkGRLmTE16TEpkEZII.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.77.189.0/24
Signature Algorithm: sha256WithRSAEncryption
45:2b:05:ef:fc:27:65:05:a8:4b:0c:ac:79:b3:80:a3:22:1c:
b8:8a:fc:49:48:19:4b:30:5d:00:c0:22:76:52:2c:2d:f0:f8:
3d:c5:3f:66:c1:8f:77:d2:33:86:cd:0c:70:a7:01:38:ab:74:
f7:56:25:8a:b8:08:1c:23:a4:74:85:ec:70:85:1a:f5:9e:6a:
26:6f:48:37:0b:fc:e6:d9:8a:07:a0:e3:9d:ae:8e:4f:f6:e7:
9a:cd:cb:89:83:b9:4f:1f:1f:38:38:9f:a5:1e:85:c8:2f:77:
78:9d:59:cf:db:95:9e:0a:a4:79:27:ef:54:ad:5d:0f:3e:b0:
87:5c:65:c5:ac:cd:31:99:aa:c4:5c:99:bd:6a:bd:84:31:1f:
05:6c:ab:4a:0c:ad:a9:7d:c8:f7:6d:2d:83:be:e8:3b:b2:f4:
b9:3a:db:24:f2:8a:f2:74:ce:70:54:e9:e6:13:aa:e2:9c:2b:
d3:4e:d7:a0:aa:39:1c:00:08:88:92:5c:42:41:97:8c:8a:c8:
76:dc:ad:fd:08:ec:ca:6f:a9:50:d9:fc:b8:5f:58:12:0f:b1:
a9:f5:02:83:34:db:a9:4a:a3:92:3b:11:36:f1:13:f7:b3:57:
98:ad:62:65:3d:8d:1e:da:64:25:9c:40:6f:0b:ae:9b:c8:59:
e7:d7:ed:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:50 2024 by rpki-client on console-ams.rpki-client.org