Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ynRnMUG6nvjBfhrEAuLcDAE-YQY.roa
File: ynRnMUG6nvjBfhrEAuLcDAE-YQY.roa (raw, json)
Hash identifier: icCvgDZKtYYu4YpeLs8snLGtfEIRGZjQGxmPuaU1LPA=
Subject key identifier: CA:74:67:31:41:BA:9E:F8:C1:7E:1A:C4:02:E2:DC:0C:01:3E:61:06
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 134F
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ynRnMUG6nvjBfhrEAuLcDAE-YQY.roa
Signing time: Wed 29 Sep 2021 02:55:36 +0000
ROA not before: Wed 29 Sep 2021 02:55:36 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 124.6.8.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4943 (0x134f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:36 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CA74673141BA9EF8C17E1AC402E2DC0C013E6106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5c:12:6c:6a:0b:42:58:1e:64:dd:b3:ee:2e:
3d:f2:fd:bd:d3:d1:03:12:5b:95:de:18:a6:b3:16:
0b:fd:30:4d:cb:71:17:a7:1c:03:aa:da:b2:d5:55:
8c:d9:04:f7:8f:9c:ac:ab:f9:f1:de:84:ac:d5:d5:
9f:a6:86:55:24:56:61:47:ee:f9:cd:47:ec:c5:2c:
6f:42:f8:db:74:e9:a2:6c:d0:21:85:82:f3:cd:f6:
ec:7e:64:90:42:93:7f:c8:0a:37:4c:38:22:5d:98:
b8:66:e7:cc:49:8e:5b:e7:cd:68:85:81:db:d3:70:
d1:00:14:89:54:d5:65:00:02:e7:ae:6f:80:10:fc:
5a:0b:ab:a4:36:7f:54:aa:09:ac:48:bf:00:86:4a:
27:82:37:0e:31:9a:e4:dc:9d:fc:3e:ec:78:18:d3:
2a:1a:26:90:12:8c:0f:4b:a3:aa:81:6c:5d:2d:15:
ea:55:a0:7a:0e:59:c8:77:46:1e:71:a7:41:86:b5:
30:c4:cc:6c:9f:dd:ed:b1:7a:51:3b:51:5e:68:06:
9c:5e:d8:84:12:c0:36:ca:c8:0c:c9:32:50:f2:76:
84:f4:1d:81:9c:3a:78:34:25:db:ac:dc:cb:4f:90:
62:01:14:0a:5b:7c:a1:35:b1:ef:50:4a:fd:fd:cd:
a3:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:74:67:31:41:BA:9E:F8:C1:7E:1A:C4:02:E2:DC:0C:01:3E:61:06
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ynRnMUG6nvjBfhrEAuLcDAE-YQY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.6.8.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:f5:32:91:de:2e:a8:00:c2:ed:ac:7a:fa:73:8d:be:f4:05:
1c:6e:0d:86:95:e2:44:e9:a7:db:b7:2b:1a:61:d5:66:18:c1:
ca:49:da:4e:98:df:51:9d:64:05:f3:c5:c2:f0:8f:f0:98:dd:
af:f2:db:a3:54:05:26:52:0d:52:f9:7b:e5:f8:94:31:38:81:
37:1f:e7:8a:02:df:98:2d:08:a4:37:f5:4a:d8:17:af:59:e2:
cf:1a:9c:fc:b3:d1:1e:c5:a3:6a:78:3f:75:75:4c:3c:28:45:
9e:5f:f1:c0:0e:4b:46:24:3b:c9:cf:15:41:4c:0b:0c:e2:a6:
d6:d4:7c:be:21:1c:ad:f8:70:c1:eb:43:9b:4c:5d:38:5a:d9:
0b:93:3f:17:c4:a2:e1:33:af:f0:61:20:87:e4:51:cb:57:4a:
b4:65:b4:df:93:a7:4e:20:ed:39:58:3c:96:bb:be:7a:69:f4:
2b:bc:70:34:5b:f1:0e:f8:9e:4d:3b:ec:83:e4:14:45:7e:aa:
f7:1c:72:b8:4f:d7:89:8e:29:d6:07:53:2f:b9:d6:73:de:90:
91:13:f3:bd:b9:cf:f0:be:8f:f5:57:f6:9f:9f:69:5b:e6:a5:
c4:eb:80:7a:48:f1:51:e3:28:bf:0c:e0:73:9a:3c:35:b2:c4:
75:3f:4f:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org