Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/793bK1wjxjrY59WwKVQGHcplLx0.roa
File: 793bK1wjxjrY59WwKVQGHcplLx0.roa (raw, json)
Hash identifier: XKT36SHJnGiKd/0y+IG5+zjF5DgORMs6tRb4N0KGNx8=
Subject key identifier: EF:DD:DB:2B:5C:23:C6:3A:D8:E7:D5:B0:29:54:06:1D:CA:65:2F:1D
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0ADB
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/793bK1wjxjrY59WwKVQGHcplLx0.roa
Signing time: Tue 29 Sep 2020 10:07:42 +0000
ROA not before: Tue 29 Sep 2020 10:07:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 49.159.168.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2779 (0xadb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:07:42 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EFDDDB2B5C23C63AD8E7D5B02954061DCA652F1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:73:10:ff:a8:3c:85:27:21:bd:cc:f6:dc:de:
19:13:ec:26:b9:53:de:b0:33:f9:ca:96:14:6f:a7:
5c:b1:f1:4a:ed:0f:a3:cc:ae:ae:1e:40:30:28:6d:
1b:bc:27:69:79:61:d9:21:f4:a3:69:6a:cc:f4:fb:
a5:00:14:13:f5:a6:95:e9:57:e3:4e:48:6b:d3:cc:
60:45:8d:d3:98:ca:df:6b:7e:45:25:40:3d:03:b5:
b1:ea:cb:26:92:53:d6:fc:53:6b:aa:fc:98:8f:b2:
c4:32:5a:91:0e:da:42:a3:a0:81:86:ef:66:30:21:
31:e7:ac:f1:8b:c6:c0:a8:ac:5f:19:2c:ae:38:0b:
d7:17:a0:bb:3c:09:e4:23:f7:46:e8:0f:ee:38:99:
13:23:23:a4:e5:d8:21:8c:a8:27:67:47:0d:57:d6:
4a:b0:03:21:42:9c:07:9a:ed:f3:57:53:86:ea:3e:
80:a6:c4:3b:8d:35:75:36:b6:75:e4:97:7f:38:20:
d9:d5:e8:bf:08:95:c4:d6:eb:85:04:5e:02:cf:66:
03:e0:55:00:95:d3:ac:6f:85:16:77:01:5f:0e:3e:
1e:ae:e7:81:a9:7f:59:8f:12:26:b8:61:1e:16:4d:
f7:61:6c:cf:44:d0:8f:d4:e9:62:d4:1b:9d:44:b1:
5d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:DD:DB:2B:5C:23:C6:3A:D8:E7:D5:B0:29:54:06:1D:CA:65:2F:1D
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/793bK1wjxjrY59WwKVQGHcplLx0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.168.0/21
Signature Algorithm: sha256WithRSAEncryption
12:01:8f:20:71:5d:91:ac:6f:f4:0c:99:c4:7a:e6:3e:bf:ad:
12:4a:75:24:f0:51:e5:a4:fc:f0:b6:68:6d:2b:30:9b:e3:8a:
cf:99:b5:b7:4f:f9:5a:a4:4e:dd:6f:05:7d:c7:e9:ed:03:83:
9b:f1:aa:e2:a0:7d:50:92:d8:f9:b9:90:4b:2c:76:07:66:93:
65:9c:0e:13:95:a0:9d:68:fc:74:a1:48:1e:e7:de:da:72:cc:
38:c9:e8:ff:d6:27:b5:de:56:ad:c0:4c:78:68:e3:fc:65:2d:
07:27:58:1e:67:20:b7:9b:9e:4f:58:30:e6:5d:7b:26:c3:67:
3b:fb:06:da:45:a0:37:88:79:98:ad:aa:7b:16:61:ee:96:db:
f6:41:d0:34:65:32:8f:4f:6d:06:ab:37:75:16:23:ad:a2:3f:
72:55:71:4c:92:6e:fd:fd:1e:3c:62:ab:e4:6c:e5:52:40:e5:
e3:d4:2e:48:82:10:3b:2d:58:60:8c:97:d1:58:c7:db:42:ac:
a2:f5:ba:e1:42:88:ab:3c:f6:6c:a0:f6:9c:3e:b6:d5:74:5e:
6b:0b:ef:5f:d0:a6:24:90:9e:dd:79:38:7d:3d:c3:63:e6:f3:
f7:fb:db:f4:61:bf:b5:cb:b5:b0:4d:ca:43:79:77:25:36:12:
3c:dd:89:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org