Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yLQhtgBAhSUoEezspmiArYlQ1-g.roa
File: yLQhtgBAhSUoEezspmiArYlQ1-g.roa (raw, json)
Hash identifier: /i1uPVIRcxCf9CwJevRYZRFFkC2YWrt+NEt05Wld4UE=
Subject key identifier: C8:B4:21:B6:00:40:85:25:28:11:EC:EC:A6:68:80:AD:89:50:D7:E8
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0AA9
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yLQhtgBAhSUoEezspmiArYlQ1-g.roa
Signing time: Tue 29 Sep 2020 10:07:28 +0000
ROA not before: Tue 29 Sep 2020 10:07:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 124.6.16.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2729 (0xaa9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:07:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C8B421B6004085252811ECECA66880AD8950D7E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:77:50:7b:04:e1:63:f9:74:22:a9:78:e7:9e:
05:07:d9:dd:16:d1:f1:db:e6:e2:b1:a1:8d:0c:60:
03:4d:72:c0:55:46:61:e0:c0:85:d6:11:ea:bb:fb:
bc:90:93:d9:e2:51:7d:d0:ee:14:33:b2:04:6d:ca:
69:a8:41:ae:5e:d5:fe:b7:b1:72:d2:45:53:3f:ec:
63:25:01:57:a5:67:90:49:69:10:05:2b:9a:77:b2:
8c:56:fc:27:c9:ef:92:ff:f9:90:b6:5a:b4:b1:da:
18:4d:92:c4:10:90:f9:d6:d4:f8:7c:3b:f5:90:32:
ea:11:d0:47:53:09:08:bd:6c:4b:b3:29:35:c6:ef:
ab:49:c6:c8:32:89:c4:d4:e3:a3:ef:76:50:ac:b8:
85:bf:e4:ec:71:b6:9f:37:18:08:64:d7:39:dd:a0:
be:a7:e1:e2:62:33:eb:46:01:b7:0f:b1:d6:be:40:
ec:4a:9c:fa:c4:ff:57:d8:0f:3c:a9:a1:d0:98:20:
4b:21:38:d5:5a:cc:31:71:be:63:19:4b:c9:e8:69:
fe:b4:88:b4:28:85:f6:f4:05:d5:69:a7:24:24:d2:
b3:54:af:18:d3:fe:24:57:f0:b0:eb:c8:22:fc:03:
a3:bd:63:1b:3f:5f:be:7f:f8:ca:d2:c3:a9:7a:cb:
13:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:B4:21:B6:00:40:85:25:28:11:EC:EC:A6:68:80:AD:89:50:D7:E8
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yLQhtgBAhSUoEezspmiArYlQ1-g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.6.16.0/21
Signature Algorithm: sha256WithRSAEncryption
11:2b:76:3e:68:46:56:6e:2c:2d:dd:b7:3c:07:06:97:a1:8c:
b8:45:7b:b5:64:1d:ae:36:91:49:de:9c:9c:53:2b:e1:2a:23:
e8:5b:32:b9:c6:e1:aa:31:5d:e2:b4:e3:9d:61:d8:e2:ff:c8:
e2:41:ab:e7:9b:9b:bc:53:6e:d4:a1:51:a2:d9:f2:5a:6d:9f:
69:fb:ce:f0:a1:54:19:c7:7b:ee:4c:91:59:b7:57:e0:dd:7e:
4c:76:18:3d:74:40:a7:67:7b:fd:a6:96:80:de:2f:75:3c:7c:
18:55:ac:5f:d7:d1:47:cf:cc:65:8e:90:45:0d:cd:ee:2e:64:
84:68:30:3b:18:e8:c8:55:b9:84:f0:d6:5e:0e:d3:0a:07:30:
ed:69:ff:14:e6:be:a0:ec:24:06:18:0b:55:e9:c6:4f:36:55:
27:06:ad:5b:1b:08:44:95:0d:98:86:ed:33:a6:d9:13:7a:27:
cd:1e:71:45:e5:87:1c:41:cd:fe:89:02:66:1e:fd:10:c0:f1:
32:c4:83:97:ae:a3:21:5b:8d:9f:d5:a2:12:fc:01:66:10:9a:
7b:7d:3e:1c:e2:9f:90:0b:2b:c5:12:01:e6:7f:57:1f:dd:24:
6a:59:f5:96:22:c1:2c:01:8e:c8:82:52:25:b1:1a:8e:3f:a6:
9e:2d:01:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:41 2023 by rpki-client on console-ams.rpki-client.org