Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yiCm6H0XEWIj1Z20XG84c3uPxH8.roa
File: yiCm6H0XEWIj1Z20XG84c3uPxH8.roa (raw, json)
Hash identifier: Aa1oyee+7nvvNGMVFW36sSK3XhmDSg81YCqu2mNH7Vc=
Subject key identifier: CA:20:A6:E8:7D:17:11:62:23:D5:9D:B4:5C:6F:38:73:7B:8F:C4:7F
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1270
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yiCm6H0XEWIj1Z20XG84c3uPxH8.roa
Signing time: Wed 29 Sep 2021 02:54:34 +0000
ROA not before: Wed 29 Sep 2021 02:54:34 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 124.6.24.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4720 (0x1270)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:34 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CA20A6E87D17116223D59DB45C6F38737B8FC47F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:26:8a:8f:6a:f2:62:05:9d:e2:ae:7d:24:8f:
7b:0d:21:1f:93:51:a6:55:c0:44:50:46:b3:3c:39:
22:7f:82:96:7f:90:b9:ea:6d:99:9f:f1:0b:9e:77:
19:7a:90:d3:08:93:62:25:2d:10:a7:43:6c:83:48:
1b:d8:13:8d:b1:f8:91:f1:a0:9a:f4:18:af:70:75:
c4:80:50:2c:91:42:2c:33:05:ec:6d:00:7c:c3:12:
8a:89:c9:e6:a0:25:e5:d1:96:ba:67:85:d3:dd:f6:
91:ff:5c:5a:4b:5f:01:3b:90:52:fa:be:88:28:59:
ad:24:00:88:3f:9f:96:55:2d:ba:00:5d:db:7c:3b:
22:5d:be:47:58:2d:8d:14:64:f6:fb:47:a9:80:75:
27:53:d3:fc:62:ae:ee:34:f3:ea:be:b0:d9:1b:e6:
73:db:90:d9:22:f2:cc:af:3f:91:79:dc:af:04:39:
e6:01:aa:0d:ca:9f:74:00:bd:6a:a8:12:5c:3d:b3:
5f:b4:76:29:55:3b:f3:15:b5:c0:95:1e:c9:52:1f:
51:ba:fb:29:0e:30:be:7b:56:44:9a:7d:df:d3:97:
09:ba:f5:58:7a:4c:57:d7:ba:82:a2:7e:e1:17:40:
b9:b8:b2:b3:47:cf:4a:59:2a:82:c4:f5:cb:97:6f:
c6:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:20:A6:E8:7D:17:11:62:23:D5:9D:B4:5C:6F:38:73:7B:8F:C4:7F
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yiCm6H0XEWIj1Z20XG84c3uPxH8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.6.24.0/22
Signature Algorithm: sha256WithRSAEncryption
66:a2:a2:c1:52:c9:53:16:d2:4c:ce:88:aa:5f:74:87:aa:99:
bf:ed:3e:a9:62:05:39:cb:89:98:25:9e:1b:5d:18:b8:9b:f8:
b6:b7:49:0f:a5:e0:64:f0:32:bf:e5:f8:4d:aa:e1:df:6d:73:
80:e5:a6:60:29:92:9f:10:de:7a:59:12:48:77:a5:7e:29:38:
e0:9b:2b:59:ee:5b:d1:9c:f7:3f:25:2d:70:8f:56:85:35:84:
90:d4:0a:38:3f:e9:2a:8a:f7:9b:89:b8:f6:ad:e6:a2:e0:54:
f9:57:27:09:d4:9d:0e:95:8c:9a:da:f8:52:69:8e:8b:16:a7:
03:ac:0c:7a:e7:0c:3a:35:0f:b3:73:45:ab:98:bc:7a:17:ef:
5c:b4:5c:db:90:68:c3:0a:77:6e:3c:c4:71:5c:a4:6e:00:34:
fd:2f:fd:b0:46:86:bf:70:8c:16:cd:63:f6:4e:5a:90:d9:aa:
45:e9:57:df:02:c6:50:f1:66:94:32:8e:fa:63:1a:f4:c2:5e:
cc:be:38:6e:52:5e:4b:0e:a7:10:ca:a4:74:18:e2:55:8a:02:
30:48:39:c7:7d:db:9b:42:53:f6:34:24:3d:39:92:03:fa:33:
04:1d:c2:60:4f:86:d0:74:51:79:81:b6:fe:ce:81:39:80:97:
d7:17:5d:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org