Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/R5lHmzlsel5yWx1UF5iiJbZttRM.roa
File: R5lHmzlsel5yWx1UF5iiJbZttRM.roa (raw, json)
Hash identifier: U0TPLX4bmX4KBvgU/1OSbyNiq7/P4Q1gvmjnGn7Odaw=
Subject key identifier: 47:99:47:9B:39:6C:7A:5E:72:5B:1D:54:17:98:A2:25:B6:6D:B5:13
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0F9D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/R5lHmzlsel5yWx1UF5iiJbZttRM.roa
Signing time: Sun 07 Feb 2021 12:35:13 +0000
ROA not before: Sun 07 Feb 2021 12:35:13 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 49.158.100.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3997 (0xf9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:35:13 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4799479B396C7A5E725B1D541798A225B66DB513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:6e:d1:e7:46:53:90:f3:08:76:dd:a9:c3:59:
e8:38:59:94:8a:4e:b9:c0:0f:9c:c0:49:43:b2:ec:
a2:6a:8f:8c:b3:a6:6c:7e:51:67:60:cd:e0:45:18:
c5:d2:e4:fb:80:dc:08:95:28:f5:95:63:35:57:4f:
d5:df:26:f7:cb:51:69:11:a9:9a:7d:30:bc:43:1f:
ef:fc:f5:a5:64:d3:98:18:47:5d:9c:9b:b6:5c:30:
9f:20:e7:49:c4:8b:af:b1:2d:9f:5a:73:76:62:c5:
de:96:1b:fd:ab:8a:09:50:ce:33:0d:ec:c6:24:77:
3e:41:e5:1e:ec:c6:29:f1:9b:e1:1b:94:15:d8:d4:
e6:30:cf:9a:b0:08:de:16:e2:b4:ff:2c:9b:b4:de:
a3:37:26:1c:a8:56:ee:0c:d6:ff:9f:fe:d9:b8:ef:
28:dc:1f:2b:f8:38:e6:df:ba:ab:58:60:b5:a6:43:
95:dd:91:67:a3:6b:a5:83:71:db:f0:16:81:6c:e5:
95:7f:c6:29:97:f0:66:77:2c:c0:9b:cb:9c:08:15:
5a:df:1a:19:65:89:81:77:76:d0:40:07:ee:4a:35:
56:92:b6:a2:57:0c:1c:c9:6d:5b:08:cc:0d:ad:e5:
0e:dd:dc:04:41:be:d4:99:61:c3:3a:ff:0e:49:7d:
a1:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:99:47:9B:39:6C:7A:5E:72:5B:1D:54:17:98:A2:25:B6:6D:B5:13
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/R5lHmzlsel5yWx1UF5iiJbZttRM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.100.0/22
Signature Algorithm: sha256WithRSAEncryption
39:f1:40:2e:69:7e:c3:26:cd:96:fc:7d:66:38:56:2a:8f:e9:
a9:bc:30:4c:8b:f6:3b:fb:bf:36:b3:e7:0d:ca:54:dc:77:a9:
ba:2e:9a:39:a4:c9:78:95:cb:b2:6d:29:7e:1f:da:76:36:a9:
bf:f3:04:77:7c:90:6a:6d:3e:d4:03:8d:6f:3e:31:e1:30:6d:
c3:4a:0a:31:70:89:88:67:9b:a6:d6:13:a1:c5:3d:f4:99:9e:
bc:72:06:fc:d1:6a:83:63:75:e3:64:a3:f7:20:2a:be:3b:2e:
db:b1:30:4a:40:b4:28:9e:a1:8d:b1:3f:f3:95:bd:9c:78:65:
98:ac:be:2a:10:b9:44:8a:e3:5d:60:a1:4b:25:3b:4f:e5:fa:
9c:50:f5:87:b6:7c:e2:1d:ba:8e:22:64:86:ca:b3:a0:1d:35:
08:7d:52:e2:ab:d1:1e:8e:71:30:5c:08:1e:c3:2e:fa:24:3a:
48:dd:f3:1d:64:9f:1a:e9:69:ce:ad:68:0c:57:75:0e:35:f4:
01:c1:52:e9:3e:91:75:aa:ae:91:e6:d7:32:a1:7f:15:38:4d:
ae:e1:e5:62:3d:3a:6b:c7:40:f4:03:68:1f:78:17:71:91:3b:
e3:72:b9:60:81:0a:28:5f:0f:88:64:27:a3:16:16:96:3e:c6:
54:a1:22:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org