Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Ky4bGUPYq6o_9LGHCfSUVgbEZSs.roa
File: Ky4bGUPYq6o_9LGHCfSUVgbEZSs.roa (raw, json)
Hash identifier: s+yStiLF++wBpuEPdZHBwQUUUdEnsqaWI9CbppMhWYY=
Subject key identifier: 2B:2E:1B:19:43:D8:AB:AA:3F:F4:B1:87:09:F4:94:56:06:C4:65:2B
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12FB
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Ky4bGUPYq6o_9LGHCfSUVgbEZSs.roa
Signing time: Wed 29 Sep 2021 02:55:12 +0000
ROA not before: Wed 29 Sep 2021 02:55:12 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 49.158.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4859 (0x12fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:12 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2B2E1B1943D8ABAA3FF4B18709F4945606C4652B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:5a:30:24:49:ca:de:b0:f4:22:a7:d3:c2:b3:
87:b6:9d:7b:b1:34:e7:f4:d5:35:06:fc:8d:85:28:
68:72:a7:b1:0e:3b:8e:c9:79:09:ce:6c:97:ab:48:
38:0b:cc:5f:46:2e:b9:a0:a5:34:bd:d0:16:9c:c0:
d9:73:bc:c6:39:25:12:c0:46:15:6a:d7:ad:85:fe:
36:a2:38:ba:94:72:af:3f:90:4a:aa:de:8d:c2:01:
6c:cf:d6:1b:bb:b5:fa:35:82:7f:84:e4:c7:35:94:
38:24:5e:d9:8b:aa:bd:a7:18:15:39:c8:ec:47:a0:
07:f6:74:f8:b5:ef:ae:4c:26:1e:db:0f:d3:af:c3:
f3:d9:e1:25:60:a6:5b:30:7d:be:f4:64:fb:60:1e:
b1:09:2d:07:bd:63:87:45:54:26:29:4d:f2:bd:cb:
34:94:ca:90:bb:51:e2:34:a9:51:bd:66:86:c8:ab:
77:eb:87:5e:44:bd:50:54:59:a6:cd:bf:ea:7c:38:
bb:7a:f7:a2:48:d0:5b:36:84:39:f7:15:86:c5:e1:
35:81:1c:97:95:cb:8f:eb:1b:d4:6c:cc:be:b9:c2:
be:b6:6d:2c:36:e7:2e:4d:7c:18:9f:f6:fe:b7:da:
c6:b5:2a:ce:13:e7:09:2f:64:62:08:13:a9:b6:32:
96:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:2E:1B:19:43:D8:AB:AA:3F:F4:B1:87:09:F4:94:56:06:C4:65:2B
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Ky4bGUPYq6o_9LGHCfSUVgbEZSs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.81.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:34:87:39:53:5c:43:17:93:0d:12:e2:f0:70:75:95:71:3a:
42:4d:09:f9:50:2b:38:44:4d:c3:8d:59:b9:58:67:05:d9:89:
b1:2c:82:aa:98:fc:0a:53:81:08:51:31:e0:fc:6f:b9:65:68:
17:e8:6f:a9:0d:04:01:f4:a3:d9:35:aa:a5:48:40:8b:31:3a:
4a:21:84:64:97:e0:8d:7e:51:9d:49:39:19:c9:19:b6:7e:22:
c9:ae:8f:fd:58:f1:65:74:08:28:c9:86:e4:90:88:fe:e6:55:
08:6f:6d:2c:aa:40:31:76:37:f2:59:9e:3b:86:99:18:2c:04:
f3:0a:84:b3:5a:99:d3:b8:1b:89:56:80:eb:66:34:ed:76:e4:
61:09:73:8c:df:b0:c0:bd:73:27:4c:0d:56:2d:be:66:d8:b7:
20:29:8f:d3:21:88:04:fd:05:89:70:1a:7e:e5:a5:69:0d:80:
8d:b8:7b:da:62:bb:8a:b5:a7:a4:04:8a:ed:b9:ce:1a:85:22:
ba:2d:15:5d:8b:ff:86:98:9b:4c:9b:d9:24:8c:bf:ea:4d:79:
21:ab:bf:f9:70:02:76:b3:20:46:24:f9:29:89:3c:31:07:dc:
49:2d:00:09:ea:10:65:12:fc:da:a1:90:35:60:bf:61:60:af:
41:4f:cf:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:46 2024 by rpki-client on console-ams.rpki-client.org