Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/zyIXx_JaFN7iAMrhd7aNaDp_mQE.roa
File: zyIXx_JaFN7iAMrhd7aNaDp_mQE.roa (raw, json)
Hash identifier: zyqi9azIyd/xri7EIwTxImU55ovO8nQn7gQHtTqlyWY=
Subject key identifier: CF:22:17:C7:F2:5A:14:DE:E2:00:CA:E1:77:B6:8D:68:3A:7F:99:01
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0BBC
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/zyIXx_JaFN7iAMrhd7aNaDp_mQE.roa
Signing time: Tue 29 Sep 2020 10:08:47 +0000
ROA not before: Tue 29 Sep 2020 10:08:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 119.77.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3004 (0xbbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:08:47 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CF2217C7F25A14DEE200CAE177B68D683A7F9901
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:ae:24:fb:c1:40:c3:be:76:21:85:bb:0e:a1:
23:28:f3:a8:13:a1:1c:e6:ec:08:f6:92:84:3a:10:
27:b8:2a:88:da:7a:08:6f:59:6e:d0:a9:88:83:fc:
03:4d:da:c2:4b:66:70:e7:32:62:b0:01:a6:ec:ed:
a3:f7:d6:e5:42:b1:5c:c4:df:40:94:1e:e3:cb:21:
9d:30:8d:1e:ad:2e:04:3e:7d:c9:11:84:db:7a:d8:
70:ab:a9:40:60:cc:f3:54:85:16:e5:b8:02:d4:06:
3f:86:54:97:f1:00:36:6d:94:47:b7:8e:26:da:8e:
8a:6b:4a:08:01:f7:4b:f6:a8:e1:3e:53:cf:8e:c6:
a1:68:e3:b6:40:cb:95:63:de:42:e9:48:6c:4e:38:
b8:ff:32:2f:27:a3:0d:16:45:b9:27:82:98:a5:35:
a2:f3:bc:2c:b7:b5:e7:9b:03:44:76:7f:ed:81:89:
33:b2:6b:8f:67:69:3d:77:30:47:60:f4:47:ec:f0:
ec:8c:86:2f:a9:85:29:01:d1:02:39:0f:74:09:6d:
22:8c:ca:c4:89:0b:08:6e:cf:da:06:09:a5:ee:8e:
c7:ff:29:4f:29:87:a0:d3:51:65:d2:da:dd:5a:ef:
6a:56:29:9d:36:be:ea:22:41:65:eb:d1:fd:7a:4d:
a8:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:22:17:C7:F2:5A:14:DE:E2:00:CA:E1:77:B6:8D:68:3A:7F:99:01
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/zyIXx_JaFN7iAMrhd7aNaDp_mQE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.77.197.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:e3:5e:80:fb:12:a6:0c:b9:4a:70:51:1f:39:66:2e:d4:dd:
5b:15:11:73:93:c0:56:f9:38:8c:85:11:57:11:80:9a:c3:c9:
99:5c:5f:65:c8:69:17:d1:39:6d:40:9c:c3:9c:63:4c:25:20:
d0:be:0a:ef:96:b3:5b:02:13:6f:f7:ce:b7:10:9c:d2:b4:ed:
a5:93:0f:49:c6:fe:7a:6b:fd:52:b5:8d:5c:b6:da:3a:41:56:
f9:9e:01:7a:fc:b0:86:94:81:1d:21:ff:2f:44:53:33:7b:0c:
f6:93:66:96:a4:38:03:9c:53:a8:12:d9:74:c4:11:e9:29:35:
ba:5c:c3:21:c4:97:d8:95:40:05:60:ea:62:1f:a6:67:a5:a7:
6f:52:b1:c0:7c:75:9e:77:d2:df:3d:4d:c5:48:cd:1f:a9:19:
34:dc:dd:d4:01:fd:a9:cf:24:2c:0a:f5:14:a4:5c:ef:49:38:
46:cb:22:80:c1:f0:76:1f:cb:a8:ed:0d:00:7c:c5:a3:92:b9:
d1:b1:75:ec:4a:c4:e0:a3:a8:b1:be:3b:0f:e9:9a:4e:24:d3:
a6:48:d6:af:0c:75:00:d0:aa:17:6d:9b:e5:b1:86:20:72:36:
66:53:3c:9f:74:7e:05:c6:c7:24:65:2b:b2:14:21:ef:55:70:
7d:2b:77:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org