Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/zfEkQ9q5iVzZ88e_AEUz8m9Ysd8.roa
File: zfEkQ9q5iVzZ88e_AEUz8m9Ysd8.roa (raw, json)
Hash identifier: GXDHfXeYgzVBQXR88BdAPoFLUAP/CzLtnF/0P7q+l78=
Subject key identifier: CD:F1:24:43:DA:B9:89:5C:D9:F3:C7:BF:00:45:33:F2:6F:58:B1:DF
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1350
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/zfEkQ9q5iVzZ88e_AEUz8m9Ysd8.roa
Signing time: Wed 29 Sep 2021 02:55:37 +0000
ROA not before: Wed 29 Sep 2021 02:55:37 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 124.6.20.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4944 (0x1350)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:37 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CDF12443DAB9895CD9F3C7BF004533F26F58B1DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:2f:2c:b5:9b:90:88:0d:41:41:94:4f:01:dc:
20:c4:81:0e:c9:ca:53:61:17:db:e4:c0:13:b4:e4:
0e:d7:3f:06:78:d4:63:5e:f1:3b:c3:9c:e0:f6:23:
1c:1c:d4:3a:96:e4:7a:09:2a:0b:62:3b:43:ad:13:
c3:15:97:eb:ae:2f:d4:65:4e:64:9a:9e:31:d1:a7:
43:dd:01:64:b3:84:48:a0:a9:38:02:a0:22:1d:cd:
cb:46:c6:92:cd:28:e1:b1:5e:08:49:de:9a:18:30:
36:c6:08:dd:bb:ce:38:fd:78:49:a3:fe:a7:98:39:
49:2b:f9:1f:ed:c9:c5:a3:b0:eb:19:73:4c:34:3e:
1e:29:14:40:3f:f3:25:88:f2:7c:65:03:19:f6:f6:
79:10:44:9a:cc:52:1d:8e:07:b9:07:ce:5e:57:ae:
51:1d:c3:a3:bd:d1:fa:d6:1d:b6:4e:f1:e9:70:f6:
05:d6:45:e8:d1:1b:23:64:e5:61:a6:58:3a:db:3e:
7e:02:03:d3:f9:58:77:3a:91:df:b4:c6:f3:ae:12:
74:df:16:87:19:f2:f8:a6:ce:21:67:49:ba:6d:11:
05:8e:de:29:d6:ff:c0:19:d7:87:fa:71:37:1f:2f:
5f:d3:a6:34:d6:9b:56:b5:94:96:a5:3c:7f:e9:5e:
a7:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:F1:24:43:DA:B9:89:5C:D9:F3:C7:BF:00:45:33:F2:6F:58:B1:DF
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/zfEkQ9q5iVzZ88e_AEUz8m9Ysd8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.6.20.0/22
Signature Algorithm: sha256WithRSAEncryption
05:ea:11:92:df:74:51:c3:fd:78:9a:98:09:31:2b:5f:e1:f7:
61:36:28:7d:2f:7b:dd:51:57:51:65:36:52:ec:b1:d9:26:ab:
af:f8:26:bc:1d:b9:ce:00:7e:32:a5:e8:da:ed:14:0d:ea:d2:
67:65:53:fe:9a:8a:3a:7b:bf:5a:27:13:f8:6a:44:35:00:3b:
e3:41:82:b9:8b:c7:45:47:f4:3d:12:83:b9:d4:e6:84:7e:7f:
d0:9a:52:4f:b9:b5:eb:de:dd:15:7a:01:85:7f:01:ac:fd:da:
0e:b6:47:50:35:7b:48:94:03:fd:c7:e8:f1:74:72:7f:92:78:
d5:5d:64:50:8b:cc:2d:56:97:80:82:a8:a9:99:3a:57:5e:f3:
79:36:47:82:cc:5e:42:ed:e8:75:82:ab:c8:4c:d2:05:6e:ef:
68:01:8e:46:2b:58:ef:86:e2:6a:45:1f:33:53:1f:d1:05:8d:
6a:15:85:0f:15:db:ed:3d:bc:c9:1c:eb:ad:fb:b3:00:a9:8a:
52:8b:e4:9e:d6:8b:85:92:b0:b9:bf:0a:84:c4:5a:22:b0:2f:
78:e9:15:4f:8a:0c:c0:a8:33:23:f5:2f:f3:cf:1d:d7:36:7e:
32:98:be:8d:6e:0e:f2:67:9c:9c:d6:b8:27:63:05:92:f3:1c:
ce:1d:8f:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org