Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/g1Ik_gE9VediCORAzU6JL5B0cjI.roa
File: g1Ik_gE9VediCORAzU6JL5B0cjI.roa (raw, json)
Hash identifier: JCfPDNLaTdJbQaNiY9gti8vC+1iIioPhmPNn9u00/VM=
Subject key identifier: 83:52:24:FE:01:3D:55:E7:62:08:E4:40:CD:4E:89:2F:90:74:72:32
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/g1Ik_gE9VediCORAzU6JL5B0cjI.roa
Signing time: Thu 15 Sep 2022 02:35:29 +0000
ROA not before: Thu 15 Sep 2022 02:35:29 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.158.88.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:35:29 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=835224FE013D55E76208E440CD4E892F90747232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:bf:e3:02:c3:6b:46:7c:92:24:10:a2:1b:d8:
0b:76:b6:4c:40:2d:66:a4:e6:55:36:33:f2:5c:1c:
da:8b:0c:a0:58:e7:9d:66:84:b6:f7:11:3b:35:41:
cf:65:1a:34:7b:e2:89:24:fc:ed:95:76:ef:d1:66:
b0:d3:4f:7d:dd:c3:51:a3:15:14:81:71:dd:e3:36:
ed:f0:bd:5a:d2:28:52:94:9e:37:6f:1f:4d:35:de:
f4:61:20:35:da:80:92:0a:a1:f4:73:61:fb:da:bf:
d0:ba:c5:98:c3:0b:24:f1:5b:db:f8:d3:da:93:e6:
c1:2d:51:61:9f:a3:9b:e4:ad:1e:7c:4e:12:f9:49:
2a:a5:77:57:b8:a6:72:98:d7:c3:d9:df:fb:73:21:
28:9d:26:6a:61:c6:b0:55:71:c6:10:9f:58:75:e2:
f0:c6:38:de:4e:e7:33:b5:f9:67:29:29:66:66:07:
c3:46:fb:c6:5e:7e:c2:2a:b3:93:cc:5b:3c:69:b1:
d4:0a:0e:59:ff:08:09:03:36:dd:a9:07:28:d8:b6:
df:34:7e:21:5c:fa:0f:d2:65:a3:33:e7:76:59:3f:
be:24:62:04:cb:d7:f4:1b:38:0f:e1:cb:27:b6:05:
cb:67:b7:90:99:78:35:5f:70:37:84:3e:19:f8:97:
87:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:52:24:FE:01:3D:55:E7:62:08:E4:40:CD:4E:89:2F:90:74:72:32
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/g1Ik_gE9VediCORAzU6JL5B0cjI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.88.0/21
Signature Algorithm: sha256WithRSAEncryption
58:c6:c2:fd:6a:c7:be:95:6e:de:d5:a7:c9:f6:b4:8b:ac:63:
c7:80:ff:91:01:2a:c8:a7:6c:4a:12:c2:9e:ed:f6:b0:08:14:
1e:15:68:1c:cd:86:76:fc:70:72:24:44:20:9f:21:94:95:5b:
a5:db:90:04:7b:f0:30:3a:b6:f5:8c:10:84:f6:27:b0:2e:cc:
4d:ee:11:f3:87:ac:99:07:b3:41:95:2f:e3:98:b9:c6:68:55:
61:96:66:04:c1:93:32:66:1c:48:8a:96:a8:d3:b1:3b:5b:43:
32:cf:fb:89:e6:51:61:67:3c:8d:d9:22:91:ea:d4:f7:14:ca:
23:88:73:93:96:5f:b0:7d:bb:28:7d:d5:ee:dd:cb:e2:d4:15:
f5:57:ed:38:2b:a8:33:39:4b:89:83:87:ef:b6:c3:30:96:0c:
20:ff:bb:f6:1c:72:4b:e2:a1:04:99:9c:69:c0:3a:51:ae:ba:
79:07:85:23:2f:e3:ea:d4:66:d7:4c:10:47:88:99:a2:86:56:
ea:85:ae:36:bb:47:34:07:a5:cf:e3:8c:af:ce:6f:d5:6c:c4:
9a:51:66:1d:d2:af:da:3e:aa:4f:d5:06:b8:b9:a6:dc:ae:f9:
db:42:c3:9c:46:5b:bb:bd:09:7f:36:60:eb:b7:95:8b:9e:1d:
29:02:6c:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:49 2024 by rpki-client on console-ams.rpki-client.org