Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ikNsHiEDICW4epOJLwBFga0GaLQ.roa
File: ikNsHiEDICW4epOJLwBFga0GaLQ.roa (raw, json)
Hash identifier: T6a5hDycK1z1br3Wq5BG7c+vQtC7noVhWivOl9TkLtM=
Subject key identifier: 8A:43:6C:1E:21:03:20:25:B8:7A:93:89:2F:00:45:81:AD:06:68:B4
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0FAB
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ikNsHiEDICW4epOJLwBFga0GaLQ.roa
Signing time: Sun 07 Feb 2021 12:35:29 +0000
ROA not before: Sun 07 Feb 2021 12:35:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 49.158.136.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4011 (0xfab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:35:29 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8A436C1E21032025B87A93892F004581AD0668B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:25:40:77:27:9d:cd:9f:49:bc:a6:8e:57:07:
60:bf:84:5a:3a:28:98:ab:cc:ce:9b:a4:3b:9b:4b:
66:91:ec:11:9f:bc:a0:0f:d6:2f:32:10:22:88:68:
b9:41:b9:59:ac:5e:04:aa:3e:e8:d2:0e:21:f0:e3:
5e:39:d7:51:84:06:53:48:21:a5:8e:08:2e:44:94:
ee:ce:9b:44:bb:d9:4a:23:29:b2:7a:f0:fe:00:87:
4b:64:28:3b:70:6f:4c:37:c7:fa:54:99:90:9a:65:
e1:c3:f4:42:b6:1b:bc:ec:9c:30:e6:34:73:c6:e0:
a3:1d:79:2b:b9:0a:86:64:70:8e:ca:ed:1f:ef:a7:
6e:5f:83:92:2e:92:66:d4:16:2a:a4:46:45:4b:52:
53:33:68:39:15:e0:15:75:6a:74:eb:68:85:2c:19:
2c:49:1b:e9:58:03:99:fc:a3:4c:61:a8:24:83:40:
22:3b:68:92:9b:af:d0:d4:44:0f:74:8d:ad:b2:e7:
11:cb:6f:b2:82:7f:94:be:f9:2c:87:e6:26:f1:09:
cd:38:5c:17:33:e3:53:e7:23:92:9b:11:5b:59:ab:
ae:85:c0:06:a1:df:d3:48:b5:11:21:42:a1:e1:ea:
e0:0f:f7:fe:90:44:bd:2c:d2:de:18:15:fa:08:fe:
bb:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:43:6C:1E:21:03:20:25:B8:7A:93:89:2F:00:45:81:AD:06:68:B4
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ikNsHiEDICW4epOJLwBFga0GaLQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.136.0/22
Signature Algorithm: sha256WithRSAEncryption
52:6b:35:e5:2e:d4:c6:45:a2:34:c1:5a:4e:70:4b:f0:06:a8:
2b:a8:2e:24:b3:6e:cd:be:92:ce:2e:95:5d:ef:3c:44:2b:04:
cb:03:8e:72:0f:c5:e9:e3:25:7b:b2:02:03:fd:2e:1a:a1:92:
5a:7c:a7:32:fc:4e:08:b1:4a:0a:57:f2:39:aa:c0:0d:c6:3b:
34:c1:be:11:ac:e1:2f:b1:76:d4:73:e1:c9:8a:a6:30:70:6d:
4d:5f:23:b1:38:72:71:4a:68:25:f2:bb:5a:53:78:e8:3a:97:
72:3a:9b:0d:80:91:c4:50:71:68:ba:89:f0:f0:11:75:44:9c:
bb:16:ae:cc:1e:7d:f1:d6:ec:78:64:13:a4:d1:05:fd:8f:42:
30:36:17:18:dd:5b:49:08:da:7f:cd:76:52:9b:cf:1d:6e:13:
55:f3:4e:3d:f5:59:45:dd:04:11:b9:7b:e3:ce:2e:dc:ef:34:
a1:a1:98:e3:5f:0c:76:4a:22:0a:9f:eb:30:d2:df:ce:88:db:
1f:82:78:e8:d9:88:05:f8:18:d1:72:b6:dd:75:77:8a:d4:81:
66:0e:9a:7b:eb:62:14:c3:2d:f3:81:7d:a0:be:4b:d0:76:be:
25:96:c1:4e:22:e8:96:13:7d:fa:9b:3f:93:86:99:31:15:b4:
91:10:7c:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org