Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JGZ9U0dyFVPaV91kL7mTpO11jLQ.roa
File: JGZ9U0dyFVPaV91kL7mTpO11jLQ.roa (raw, json)
Hash identifier: Cj0RMff3kgQI2isdX4XgBQbgsx020A6wCeZ1pzYkes8=
Subject key identifier: 24:66:7D:53:47:72:15:53:DA:57:DD:64:2F:B9:93:A4:ED:75:8C:B4
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JGZ9U0dyFVPaV91kL7mTpO11jLQ.roa
Signing time: Thu 15 Sep 2022 02:36:36 +0000
ROA not before: Thu 15 Sep 2022 02:36:36 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.158.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:36 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=24667D5347721553DA57DD642FB993A4ED758CB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f4:06:b5:7a:9d:52:0d:1a:6f:ba:a1:28:0f:
8d:57:7a:a5:4c:fa:3c:1c:6c:ef:f4:59:a6:40:92:
18:ad:15:f9:a5:20:48:ed:f1:57:cd:6b:40:76:63:
8f:f3:04:09:14:76:77:20:02:c4:0f:77:38:3b:ee:
52:63:1e:f2:0a:80:63:49:90:bb:e1:03:41:89:f5:
7c:78:4a:af:7f:a5:12:59:9e:70:2a:38:c0:21:91:
05:4a:e5:1e:39:af:34:ff:66:bc:da:fe:7b:a3:5a:
a0:ee:53:87:da:42:d5:5f:70:63:f2:db:f4:7d:ac:
a3:a0:32:ba:44:4c:38:92:5a:ee:e9:d5:3d:30:ae:
d4:a0:f7:fe:4e:cb:d8:70:30:6a:e8:5a:87:43:f6:
fe:90:35:09:24:1b:1b:29:a3:02:d1:1a:83:52:27:
65:2c:e5:54:d7:07:5f:32:61:44:b3:d7:37:6e:f2:
37:5e:63:a3:13:95:c0:22:cc:de:63:6b:44:f4:4a:
aa:ae:be:93:4b:59:29:4e:c2:48:09:37:72:4b:c4:
a4:1e:ee:fd:0b:cb:67:5e:05:7f:ce:23:fe:b7:12:
6b:96:e6:6c:a3:db:fd:f8:c5:98:41:10:0d:59:83:
3d:0a:c1:48:3d:bc:37:70:04:76:98:d2:90:65:b1:
02:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:66:7D:53:47:72:15:53:DA:57:DD:64:2F:B9:93:A4:ED:75:8C:B4
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JGZ9U0dyFVPaV91kL7mTpO11jLQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.146.0/24
Signature Algorithm: sha256WithRSAEncryption
02:82:0f:cf:d1:11:0e:3c:3c:07:98:13:00:73:63:89:1f:b5:
e2:7f:61:42:c0:86:86:f3:f6:ac:3a:dd:d0:7d:5c:44:05:f7:
90:ae:45:db:73:0b:36:3a:83:35:3c:bd:39:e7:d5:97:1d:bf:
42:3c:6a:ff:7a:e2:2f:fb:9b:73:34:82:e0:3f:da:6b:5d:bb:
09:d9:4f:b7:ae:60:e3:c0:02:5a:d2:a2:da:42:75:01:22:26:
6e:85:49:04:28:cf:87:05:82:f1:e1:13:c0:0a:eb:19:a2:ea:
91:ec:ed:de:bf:07:52:2c:2d:e5:b6:6b:b4:31:7e:59:9c:f4:
9f:cf:b0:ad:98:a9:c6:02:90:1d:68:52:45:21:a4:1d:28:12:
a2:09:24:dd:92:24:8d:db:7c:9c:b9:cd:f3:d2:43:6f:12:58:
c2:34:9c:cd:ba:d8:57:66:70:65:c7:04:4a:a2:6e:f3:6d:c1:
d2:97:93:4a:bd:32:59:87:15:3c:24:84:fc:dd:a3:f9:a7:aa:
0d:a0:3b:74:5e:58:84:9d:8a:79:3c:14:7a:d9:9d:06:b3:6c:
f7:2d:22:23:c3:0a:bd:38:69:bf:1e:07:4c:72:8d:4b:7f:0c:
fc:01:9a:10:74:54:fc:aa:4e:53:49:b4:36:4b:67:a3:01:91:
04:ab:88:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:46 2024 by rpki-client on console-ams.rpki-client.org