Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/icQfdSjsfaXul_cVKTSlaZfQktc.roa
File: icQfdSjsfaXul_cVKTSlaZfQktc.roa (raw, json)
Hash identifier: O/TFZ9v0a3SHgYZLQ0dWHEcNOWBo2HP0S1B3E4farp0=
Subject key identifier: 89:C4:1F:75:28:EC:7D:A5:EE:97:F7:15:29:34:A5:69:97:D0:92:D7
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1294
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/icQfdSjsfaXul_cVKTSlaZfQktc.roa
Signing time: Wed 29 Sep 2021 02:54:45 +0000
ROA not before: Wed 29 Sep 2021 02:54:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 49.158.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4756 (0x1294)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:45 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=89C41F7528EC7DA5EE97F7152934A56997D092D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:3e:7a:e7:56:84:af:ad:eb:6a:a0:72:61:17:
50:36:32:f3:c8:d4:78:d9:50:ce:24:14:ab:ee:98:
ed:ed:fc:e5:8f:e0:89:de:90:e6:75:3d:af:a9:90:
5f:d9:dd:de:b4:91:59:51:c9:8c:04:ff:db:ea:a8:
2d:b1:40:1a:25:7f:78:44:a0:13:c7:09:dc:13:e9:
cf:b9:0a:1b:4e:32:c6:df:a3:51:47:2a:e7:eb:46:
c8:97:a0:cb:2e:c0:ce:98:e1:8b:22:2a:28:e8:0d:
42:df:81:c9:7a:60:3b:ac:be:3c:9a:6e:bb:f3:a1:
c4:a1:ae:07:db:81:43:04:ac:f7:55:0c:5d:3e:9d:
62:90:03:bb:52:15:82:f0:28:1b:14:1f:5b:52:40:
16:38:56:ee:4b:8a:d3:9d:d8:9c:fd:ac:5f:4a:66:
61:d5:d9:5f:47:c5:ef:ac:4c:32:bf:39:47:b1:36:
a5:ab:27:cb:a1:fd:0a:fb:0f:62:e6:1d:49:3f:ac:
24:88:70:f5:3e:7f:3f:a6:e5:a5:3f:e8:b7:08:64:
82:e8:b5:3f:22:94:fa:87:56:19:1c:c8:bf:c6:60:
fd:9d:fc:84:23:62:9b:59:18:e1:92:8e:ef:7d:11:
cb:3e:cf:61:9b:e5:8a:86:25:50:e3:7f:3e:53:07:
25:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:C4:1F:75:28:EC:7D:A5:EE:97:F7:15:29:34:A5:69:97:D0:92:D7
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/icQfdSjsfaXul_cVKTSlaZfQktc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.236.0/22
Signature Algorithm: sha256WithRSAEncryption
93:56:cc:ec:08:7f:e1:36:e9:c6:9e:ec:b8:b0:5f:83:a0:dd:
6c:36:9b:4c:61:08:1d:c1:4c:67:43:69:0d:42:76:b2:1b:9a:
48:63:79:76:e6:3e:3e:c5:30:d0:fb:8a:72:0b:13:6a:bd:98:
bd:fc:ae:f5:df:69:4e:14:c1:98:76:53:40:f7:9c:79:87:1e:
4f:b4:cd:f5:1f:b4:7b:0b:8e:44:dc:57:ad:3f:05:b8:51:65:
d7:7f:93:1d:7d:e0:b3:3d:d5:76:b8:24:52:23:a8:5b:00:c5:
15:dc:70:86:2b:4c:0c:20:ce:e3:72:b6:7b:8c:30:05:54:2d:
09:15:61:cd:05:c2:67:6f:78:8e:90:70:66:fe:cb:29:a7:2d:
31:b4:c8:15:7e:22:98:5e:a8:72:58:50:0e:3d:7f:b7:71:83:
d9:72:b3:9e:22:23:cb:47:55:85:a5:3c:8b:66:2b:f8:09:38:
a6:fc:c7:45:48:32:0a:6c:af:a6:34:83:41:9c:07:26:81:0c:
96:1c:45:a8:95:a6:dc:51:fe:78:c0:1d:a7:6a:57:9f:81:4e:
1f:30:0d:9d:a4:5c:d9:2a:e4:f6:9b:40:8e:a3:e0:63:ad:07:
89:a4:4b:64:dc:23:46:49:b8:41:70:44:17:c5:1a:2e:43:77:
98:48:10:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org