Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PUUIn1ITH1H1kpy7Jalj8_9Z44Q.roa
File: PUUIn1ITH1H1kpy7Jalj8_9Z44Q.roa (raw, json)
Hash identifier: o3ysVtFjH2EteMZVgdZPijQNGNnwZ9XY4yqJoTy6nvM=
Subject key identifier: 3D:45:08:9F:52:13:1F:51:F5:92:9C:BB:25:A9:63:F3:FF:59:E3:84
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1259
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PUUIn1ITH1H1kpy7Jalj8_9Z44Q.roa
Signing time: Wed 29 Sep 2021 02:54:29 +0000
ROA not before: Wed 29 Sep 2021 02:54:29 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24163
IP address blocks: 49.158.140.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4697 (0x1259)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:29 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3D45089F52131F51F5929CBB25A963F3FF59E384
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c6:fe:26:a7:5f:03:a3:c6:17:53:12:83:1b:
9b:a5:77:f3:c8:0b:22:b5:d7:df:ad:86:56:ca:7a:
9a:c7:65:12:22:41:9f:58:f1:4c:35:59:53:fd:d4:
4a:af:85:30:86:ce:4f:de:c3:ea:88:f7:b6:eb:2e:
e0:3d:7d:b1:46:27:89:57:22:18:6f:c8:51:5f:a0:
b0:25:51:2f:02:7c:72:41:b8:c9:97:b6:86:4b:c1:
58:0e:e2:60:74:74:5e:c3:a3:77:58:0d:5d:c5:77:
1b:d4:d7:07:f7:e4:b0:d7:b6:0a:2d:26:f1:e6:e4:
0e:f1:87:bb:8d:01:6b:6c:1c:78:fd:3b:e3:e3:4f:
88:c9:83:99:eb:f3:1b:65:3f:ae:34:71:b2:af:41:
77:a8:54:2b:ae:2b:fc:71:3d:87:a1:12:9b:a5:7a:
d9:d1:fe:30:df:2a:36:7b:50:03:4e:88:ff:7c:b9:
f0:90:39:60:7f:48:f7:2c:ef:7f:9f:db:23:44:5f:
6e:4f:e8:6e:a9:27:96:39:6c:03:65:c4:f1:57:34:
00:ed:a3:70:8b:b4:2d:ea:29:eb:48:d6:bc:18:b3:
b0:05:7e:4a:11:7a:0d:58:9d:2f:42:8f:00:46:fa:
23:9f:a0:df:22:b0:03:d9:20:4e:2e:c7:df:fb:ea:
cb:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:45:08:9F:52:13:1F:51:F5:92:9C:BB:25:A9:63:F3:FF:59:E3:84
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PUUIn1ITH1H1kpy7Jalj8_9Z44Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.140.0/22
Signature Algorithm: sha256WithRSAEncryption
48:de:ef:80:65:6a:dc:4d:56:62:69:d7:5a:db:c0:20:97:cd:
60:5e:53:69:0c:cc:02:db:12:54:e8:79:02:e6:7a:48:c2:d6:
94:98:27:7e:5f:53:d2:fc:09:f1:59:f5:46:7a:d0:d2:cb:6f:
d9:71:95:48:b5:63:c0:ff:f9:cf:14:a1:81:18:a5:57:fc:72:
78:a8:99:d8:80:f6:ba:b6:d0:c6:9d:99:7f:a6:dd:a5:5e:22:
0b:40:13:6d:7f:d7:7a:d5:70:51:71:6b:0c:be:22:db:ab:e2:
b9:f3:3c:a2:ef:72:f7:0d:86:38:5f:da:7e:1e:af:04:48:eb:
0b:bb:6a:b9:98:58:8a:1b:ce:ff:99:c2:70:4b:44:75:c6:ea:
65:0e:5b:49:56:62:2a:f6:f4:0f:00:22:64:cd:c1:5a:b3:8e:
ef:f5:7f:37:74:af:55:48:40:05:79:88:bf:61:01:79:bc:bc:
fd:c3:d4:d9:35:12:29:3e:ff:f6:a0:ef:20:51:e4:9c:82:0a:
aa:c4:e0:d5:98:79:4f:c7:4c:10:f7:09:d8:1b:fd:5c:03:54:
b0:d4:5b:d6:dd:a9:36:3a:46:0d:ec:2f:19:36:bc:6b:ac:8b:
92:e2:7c:a0:30:45:c4:f5:e7:e6:db:f4:ca:4b:17:f0:24:cb:
93:ee:93:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org