Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2MkmqCMPe2wyzKh2U8XyNjli3qk.roa
File: 2MkmqCMPe2wyzKh2U8XyNjli3qk.roa (raw, json)
Hash identifier: AtoOqGKV4y9/SNHxQHPSTm4ZrGj2eVUlz0RdOUwVhXg=
Subject key identifier: D8:C9:26:A8:23:0F:7B:6C:32:CC:A8:76:53:C5:F2:36:39:62:DE:A9
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0D52
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2MkmqCMPe2wyzKh2U8XyNjli3qk.roa
Signing time: Thu 14 Jan 2021 07:36:11 +0000
ROA not before: Thu 14 Jan 2021 07:36:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 49.158.220.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3410 (0xd52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Jan 14 07:36:11 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D8C926A8230F7B6C32CCA87653C5F2363962DEA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:34:55:fb:63:ed:c9:30:0a:11:9b:d6:4f:01:
00:3f:32:10:92:0f:fc:06:e8:5b:9d:b1:24:7b:69:
39:83:be:db:e2:c8:c9:06:33:67:44:97:95:2e:e6:
64:9e:74:9a:d7:01:64:92:16:d2:54:c5:6b:28:9a:
c5:44:82:5e:99:86:8f:14:86:8c:e9:b4:41:04:b1:
76:5d:01:a6:af:61:4a:bd:ff:7d:8e:bf:d9:af:f1:
31:9f:ad:c1:e3:cd:f2:ce:88:cf:f6:56:16:54:91:
1c:ec:4a:26:45:df:5f:ed:57:3d:9f:c0:24:db:3b:
a0:e4:53:65:30:b8:50:cf:c3:dc:88:e7:ba:fc:6b:
c9:6b:44:95:90:ff:f7:5b:0a:78:d4:82:9d:8a:3f:
17:82:dd:43:ae:3a:a4:aa:21:3a:22:62:44:7e:35:
10:27:8a:ed:3e:83:37:34:f6:66:a8:54:1f:4f:46:
65:db:4d:a1:51:af:22:ed:ad:a2:fe:1a:ad:38:2d:
14:4a:de:c8:64:ed:ca:ee:3c:86:00:3f:0e:4f:19:
f0:fa:0c:6d:5c:5a:f0:58:fd:17:4c:9f:91:5e:e7:
7b:9c:bf:03:e5:3a:84:6e:9a:d9:c4:31:7b:41:40:
fd:41:ec:f8:ad:e8:da:d8:b3:d2:9b:06:a6:90:0c:
77:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:C9:26:A8:23:0F:7B:6C:32:CC:A8:76:53:C5:F2:36:39:62:DE:A9
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2MkmqCMPe2wyzKh2U8XyNjli3qk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.220.0/22
Signature Algorithm: sha256WithRSAEncryption
14:87:1c:be:cc:0e:1a:2a:50:8a:95:07:3e:31:59:b3:e5:d3:
4f:63:90:9b:26:68:3d:c9:ab:3c:3e:c2:31:56:2c:41:56:f3:
88:d9:11:15:d6:2f:88:d7:bc:de:2f:98:85:22:1a:52:a3:74:
48:49:1f:3c:e8:e1:5c:d7:75:70:e8:fd:69:95:ec:7a:ad:b0:
16:df:53:39:e4:eb:e0:fc:06:84:fe:50:65:c9:f9:01:61:8a:
38:53:2e:3a:a2:a6:ce:4a:b2:45:37:78:9b:80:57:86:7e:40:
28:3d:d3:18:ac:19:44:db:bf:6a:4f:8e:08:ce:0f:31:90:f2:
03:cf:d0:f4:d5:68:8c:80:7e:7e:0c:cb:fa:6e:1b:67:ae:04:
9a:75:8a:57:59:7d:84:c3:db:29:20:7e:82:21:30:6a:0d:85:
72:bb:70:b2:92:ea:36:64:48:42:47:d9:5a:dc:5a:ea:5e:7d:
36:d3:28:92:e5:26:86:dd:ef:f3:8c:81:d0:61:89:44:08:09:
18:ba:fb:93:7d:fc:07:f3:4c:b9:ec:ff:ba:2e:21:5c:0c:65:
13:1d:ca:6f:b4:de:33:af:e4:99:0c:53:55:5a:b9:95:b1:09:
fb:6d:dd:01:01:1c:99:19:c7:9c:b8:3c:9b:a5:1c:e6:51:5f:
71:06:a6:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org