Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NmHm-9AgQSKPGnqJYDctCZsEj0I.roa
File: NmHm-9AgQSKPGnqJYDctCZsEj0I.roa (raw, json)
Hash identifier: OzP39dDz1N/zI4YE/CIZDolSLeCfRxLnNcLlH81CxQU=
Subject key identifier: 36:61:E6:FB:D0:20:41:22:8F:1A:7A:89:60:37:2D:09:9B:04:8F:42
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0EED
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NmHm-9AgQSKPGnqJYDctCZsEj0I.roa
Signing time: Sun 07 Feb 2021 12:30:50 +0000
ROA not before: Sun 07 Feb 2021 12:30:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 49.158.0.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3821 (0xeed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:30:50 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3661E6FBD02041228F1A7A8960372D099B048F42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:83:6c:4e:66:13:9a:e2:27:b5:da:01:f0:99:
0f:33:c1:0c:e6:36:70:5c:80:20:af:42:92:e3:f1:
c3:3c:4c:5f:48:61:92:4d:4f:53:47:16:ae:f1:63:
8f:67:06:a5:6b:63:bf:d1:62:8b:38:9b:9e:1b:f4:
cb:2e:63:24:88:7b:22:da:a7:ab:d4:f6:c7:c6:44:
fc:70:8d:45:5f:0a:ae:b7:b4:f6:ff:61:cf:1f:9a:
76:6b:3e:0f:22:17:4e:3d:d7:32:47:ce:57:b5:72:
dd:98:7b:59:36:38:80:b9:5f:fd:08:39:4a:e3:d5:
f5:d1:50:fb:6f:56:76:4e:13:62:66:59:62:a0:78:
50:85:07:e1:c8:4e:26:84:25:3e:53:74:d9:e6:b5:
18:1f:e4:7b:e9:ba:87:b2:9b:bd:d2:4a:11:48:f5:
09:55:19:78:b9:53:e5:d3:0e:bd:22:8d:57:60:24:
44:10:14:3f:f6:d1:69:6a:2f:76:17:7c:66:0d:01:
5c:a1:85:b3:4a:b8:c7:5e:30:6f:f5:d5:21:e4:32:
b4:54:65:72:23:b5:87:a1:8e:86:75:14:e4:f2:56:
83:a5:b4:58:f1:c0:ed:69:4e:1f:84:cf:c1:c7:54:
8a:91:da:e2:98:cc:aa:1d:1d:57:ac:76:8e:64:72:
d0:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:61:E6:FB:D0:20:41:22:8F:1A:7A:89:60:37:2D:09:9B:04:8F:42
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NmHm-9AgQSKPGnqJYDctCZsEj0I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.0.0/20
Signature Algorithm: sha256WithRSAEncryption
06:ea:5d:5d:15:9b:1b:e4:cd:c5:4e:9c:d9:8d:e7:2f:e7:0e:
fa:f1:cc:d9:a8:ac:c9:51:68:97:66:89:64:3b:01:51:32:e0:
ad:78:3e:2c:06:32:e2:92:18:65:54:62:92:7f:7b:e5:2e:75:
e9:cd:9c:ee:9e:78:18:51:39:2e:5e:5d:18:47:93:a1:4b:52:
f6:09:39:45:6f:b7:3b:16:21:6d:b8:b3:14:46:d8:87:a5:32:
87:eb:10:8b:67:d6:66:2c:dc:4c:f5:63:fa:c3:a3:4f:b8:67:
d2:f6:31:2c:c9:1f:35:45:8a:fc:59:b7:ff:98:0d:84:52:c6:
b4:f6:18:2b:63:f5:ae:a5:ae:b1:cb:56:0d:1b:64:9a:30:cc:
9f:e9:ed:ce:06:9c:a8:4b:ca:ca:e8:26:cd:ee:0e:56:21:c7:
7e:b9:5d:51:8f:be:99:46:21:94:87:5d:91:8f:c9:17:51:b5:
49:01:6a:83:0e:3d:bd:6c:fc:a2:40:05:ef:bd:b2:4b:18:c0:
a5:7b:29:b0:6e:42:78:cb:4c:3a:07:8e:ae:cb:e4:27:5b:41:
ef:4b:dd:4a:94:48:d3:fb:83:49:14:19:8f:ab:45:0c:86:a5:
05:3b:dc:0a:e1:d0:e6:90:7a:1d:09:09:c4:69:d9:8a:08:7d:
8f:0c:ab:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:47 2024 by rpki-client on console-ams.rpki-client.org