Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vwMsJLNweaYsw50VVlotsGBleMo.roa
File: vwMsJLNweaYsw50VVlotsGBleMo.roa (raw, json)
Hash identifier: l7+ZfIlM9+CIqmxMK2bUOnrvX9lvhPK2XU94uvcFxYc=
Subject key identifier: BF:03:2C:24:B3:70:79:A6:2C:C3:9D:15:56:5A:2D:B0:60:65:78:CA
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1445
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vwMsJLNweaYsw50VVlotsGBleMo.roa
Signing time: Wed 04 May 2022 01:54:52 +0000
ROA not before: Wed 04 May 2022 01:54:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24163
IP address blocks: 61.56.160.0/20 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5189 (0x1445)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: May 4 01:54:52 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=BF032C24B37079A62CC39D15565A2DB0606578CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f3:a6:28:a6:bf:84:fb:63:b8:5e:78:d8:3b:
3b:38:93:5b:27:d8:a5:a9:65:16:33:f8:0a:e0:2d:
f6:e5:4f:33:3d:e7:6d:59:78:ae:c2:b8:3d:29:64:
1f:1d:40:1b:3a:14:00:f0:00:39:6a:fe:da:49:bd:
0c:f8:87:8f:7f:4e:c4:d0:f5:5a:58:48:44:0c:6e:
71:ad:bc:b8:7e:ee:31:7f:43:5b:df:2e:b4:13:76:
59:66:21:3e:fa:53:21:a5:20:46:01:4f:cc:2d:44:
88:64:4f:08:c4:75:f7:38:12:27:89:14:b7:ec:1d:
74:94:64:99:ce:6d:0a:1b:c4:d9:1b:2d:88:68:f2:
b0:5e:24:b6:59:de:e4:03:cd:1a:83:74:2e:96:9e:
9a:31:ca:94:e7:f6:34:93:4b:08:77:5e:89:9a:64:
0e:9e:de:89:c0:af:12:5a:49:1b:7d:ed:95:35:c0:
dd:e4:cd:dc:38:d2:d0:c7:5d:2c:d7:d1:24:31:42:
f6:a6:3a:7f:da:b9:74:ee:d8:e2:e4:44:ff:36:ff:
6e:83:d4:23:01:75:9f:d1:9d:b6:d9:65:55:2a:d1:
83:20:02:87:bf:dd:c7:a6:79:9b:0c:f5:a5:8e:97:
fe:91:aa:64:5c:e5:e7:6b:e3:d4:36:fd:1c:13:72:
85:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:03:2C:24:B3:70:79:A6:2C:C3:9D:15:56:5A:2D:B0:60:65:78:CA
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vwMsJLNweaYsw50VVlotsGBleMo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.160.0/20
Signature Algorithm: sha256WithRSAEncryption
5b:b3:3a:44:fb:1c:f1:c9:a2:4e:ba:6f:41:6b:db:81:4a:81:
ad:e2:44:af:77:27:77:68:2b:44:2d:e5:75:9c:60:42:73:82:
09:4f:ff:f4:d4:8f:bc:71:33:c2:87:39:e3:bb:04:72:05:b7:
e1:40:a0:27:86:0d:5b:ad:47:a3:f0:5e:60:ca:5b:8a:f2:34:
03:c2:0c:ba:7c:33:09:b6:3c:9f:f0:37:ad:8d:48:79:8c:36:
5d:5e:da:d7:64:42:ae:59:88:a5:b8:80:f9:76:f9:e7:18:cb:
c0:ee:b6:05:d5:eb:60:55:25:23:5d:d1:99:03:57:39:80:74:
a7:e2:d4:78:8e:a8:c3:ad:e3:44:c6:25:5c:7e:e2:52:3f:4f:
6e:8a:c3:e8:1c:a5:61:8e:92:d3:b1:b2:74:de:e6:c3:aa:ca:
5d:b8:ef:53:db:84:bc:16:c7:42:ab:33:18:29:e2:49:f9:2c:
17:3f:eb:90:51:e2:f9:0c:b9:43:d9:28:4c:2d:16:02:34:a2:
cb:3b:0d:9e:39:ec:b7:83:81:ee:05:66:de:55:c7:b7:7d:ad:
11:36:ed:dd:d8:9d:85:b4:8d:64:3b:a9:b4:b7:c5:85:70:d4:
e4:4d:62:85:56:b1:df:a9:68:4a:06:6a:1c:90:95:43:9d:b9:
87:22:86:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org