Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ERSkeHXpGJWydftSCUOcKUMzflA.roa
File: ERSkeHXpGJWydftSCUOcKUMzflA.roa (raw, json)
Hash identifier: 7bsGAe4dHKGBJRownQ0wYS0NOENFNXzo25MdXyzELkI=
Subject key identifier: 11:14:A4:78:75:E9:18:95:B2:75:FB:52:09:43:9C:29:43:33:7E:50
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 100D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ERSkeHXpGJWydftSCUOcKUMzflA.roa
Signing time: Sun 07 Feb 2021 12:37:23 +0000
ROA not before: Sun 07 Feb 2021 12:37:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24163
IP address blocks: 49.159.88.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4109 (0x100d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:37:23 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1114A47875E91895B275FB5209439C2943337E50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:75:cd:38:a8:22:a7:c2:5e:c0:89:15:cc:07:
ab:66:dc:fd:f6:be:da:52:44:55:6d:03:5a:9d:15:
e3:c3:8d:d8:48:7f:02:62:82:22:5c:d6:c5:2b:52:
d7:b9:64:72:0f:21:95:a1:b0:8e:dc:2c:36:0d:d8:
e8:60:dd:f8:1a:bc:22:4d:06:16:d9:74:81:8c:57:
b1:53:7e:8f:02:4c:61:37:f7:8b:51:16:66:d6:47:
61:37:59:f1:51:82:16:90:38:4d:48:e5:56:00:12:
9a:68:52:0e:b6:60:1b:24:3f:ad:e8:66:d0:08:28:
49:88:e9:ba:b4:75:1e:cc:5f:fa:1a:8c:95:32:e0:
34:55:f4:74:b2:78:25:dd:29:42:1a:f3:23:27:f4:
f5:51:88:63:fe:60:53:92:ac:d3:99:57:18:6e:15:
f2:07:1f:30:6a:71:2d:a5:a9:76:6b:ea:74:d3:83:
8f:c9:ec:8b:b1:12:fb:e2:95:2d:fc:79:bc:37:46:
82:e3:c1:37:6c:f5:ca:0d:a8:e7:76:f3:8c:58:6c:
0d:84:8d:89:87:84:90:75:fc:46:26:6f:f9:37:9a:
49:5e:9e:30:ba:66:8d:52:e6:71:06:78:47:07:c8:
76:1b:0e:d8:a2:82:2a:99:91:65:68:05:1d:2b:d1:
39:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:14:A4:78:75:E9:18:95:B2:75:FB:52:09:43:9C:29:43:33:7E:50
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ERSkeHXpGJWydftSCUOcKUMzflA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.88.0/21
Signature Algorithm: sha256WithRSAEncryption
76:bd:be:ef:c4:95:7e:68:ec:94:77:4e:2a:78:2f:56:8f:14:
71:22:06:e7:18:8d:2d:45:a7:c4:67:31:83:2e:e7:d6:1c:64:
f6:e5:ff:1f:cb:56:14:53:88:2d:51:ff:f1:44:e4:6e:d6:d4:
90:54:2c:0d:db:29:51:32:f6:23:04:7a:82:9f:3e:58:0b:fa:
6f:69:65:26:26:1f:2b:a1:e9:5d:c5:16:88:de:0d:9e:49:45:
fd:67:8c:e8:64:48:e1:56:51:fe:c2:3d:4b:aa:64:34:53:00:
54:99:29:7a:89:0c:18:47:7b:f7:38:2f:f7:71:5a:6f:bc:ec:
5b:08:ee:46:cc:9d:da:e9:e9:56:d9:1e:77:c5:cb:8d:dc:d8:
78:fc:a9:1d:97:3f:bf:3a:89:0d:b0:8c:55:1f:d9:f3:b3:fb:
ec:e2:41:0d:09:ea:56:0c:4d:31:c0:30:1a:2c:b7:91:dc:33:
71:34:72:c2:87:9a:3c:b7:d9:0c:6e:f0:3f:25:93:0c:89:b3:
88:1e:1e:38:99:34:31:b0:c5:81:8d:b3:6f:f2:0f:0a:18:39:
45:d9:7c:15:b1:46:35:53:ba:36:31:8e:3d:6c:58:cb:e5:6a:
4e:93:b7:98:ea:ff:08:d4:87:07:aa:eb:a4:10:da:f2:ce:70:
08:4c:14:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:46 2024 by rpki-client on console-ams.rpki-client.org