Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/p0BFBC467dfc293e05kp88kiBmY.roa
File: p0BFBC467dfc293e05kp88kiBmY.roa (raw, json)
Hash identifier: DXwxj4VRrvca0D71xKKByHTE3N36AUp+BRG5kF8wIVY=
Subject key identifier: A7:40:45:04:2E:3A:ED:D7:DC:DB:DD:DE:D3:99:29:F3:C9:22:06:66
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12AE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/p0BFBC467dfc293e05kp88kiBmY.roa
Signing time: Wed 29 Sep 2021 02:54:51 +0000
ROA not before: Wed 29 Sep 2021 02:54:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 49.159.104.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4782 (0x12ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A74045042E3AEDD7DCDBDDDED39929F3C9220666
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ac:06:97:a4:a0:9f:6c:ca:b6:c7:91:fe:64:
84:80:09:cf:63:33:90:b5:b1:b8:e0:0d:ff:b2:e2:
e3:24:cb:1e:d6:2b:e1:a1:b6:b7:22:4c:e5:93:b5:
aa:18:90:2a:a7:3d:59:55:c8:34:9c:aa:15:97:98:
e7:d9:5b:b1:48:19:9a:45:26:99:d2:7c:ee:6f:36:
1c:98:f5:2f:af:99:19:79:8e:56:81:2c:04:f9:c4:
3e:f3:eb:e3:3e:6c:a6:97:e1:cb:fd:79:19:61:fe:
7c:ad:2e:9d:e5:a0:3a:0b:65:c2:0e:ab:bd:8e:7b:
65:33:cc:ec:81:01:3e:36:7a:cb:23:03:05:14:4c:
64:17:1a:17:38:fb:c6:52:4e:06:3c:3d:1a:9d:99:
4b:58:f6:b1:fc:bd:bc:77:1d:de:94:37:d5:3c:14:
94:2e:d3:14:31:24:94:b3:9d:d0:73:3d:d1:0a:c6:
11:7f:a3:5b:89:4b:21:3e:05:56:76:2a:4e:1e:8d:
04:a1:02:fa:0e:5a:9c:00:0b:ac:13:26:2f:60:62:
71:94:5b:92:a6:cc:ea:00:59:2a:1d:56:b7:25:5c:
e1:03:08:3c:1b:87:36:ca:67:ee:f1:cd:b5:cb:4f:
31:e1:35:fd:b2:fb:e6:74:ad:7c:aa:94:c7:9c:a1:
b8:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:40:45:04:2E:3A:ED:D7:DC:DB:DD:DE:D3:99:29:F3:C9:22:06:66
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/p0BFBC467dfc293e05kp88kiBmY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.104.0/21
Signature Algorithm: sha256WithRSAEncryption
54:b4:a0:2b:42:74:37:9e:18:14:f7:48:60:86:87:1c:1f:46:
50:e4:0d:db:aa:90:9c:55:d7:8b:83:c6:d7:fe:b6:d9:a9:cc:
99:6b:dd:f2:71:db:59:8a:37:dd:17:7a:e9:34:4a:bf:dc:bb:
57:07:f2:6a:37:2c:39:9d:a9:c4:f2:fc:0b:04:b4:f6:bf:ed:
13:ea:e5:06:94:3e:77:70:2b:4b:5e:d4:5c:95:9d:76:97:ae:
15:f6:df:4e:c7:a7:1e:96:8f:8b:94:69:65:27:cb:0c:cc:c4:
40:12:23:80:ce:24:09:12:ca:76:0c:7e:92:01:82:8f:97:1e:
ae:53:1a:6f:b0:e2:d8:2c:6a:31:98:3f:64:44:d6:1a:35:a1:
a4:cc:c4:1d:0c:ee:55:4b:f5:07:75:70:e8:e1:b7:8c:f0:a6:
f6:a9:95:db:0a:99:a7:3e:89:da:3a:05:a4:85:49:15:d5:04:
c4:7d:dd:73:67:55:6c:fd:ab:ff:bc:d5:ee:77:6d:0f:da:ef:
dc:72:3b:c4:e0:2a:18:12:ed:cc:87:ec:10:d8:b1:7f:e5:bb:
a9:3a:52:c5:7f:b5:c6:05:61:66:5a:20:42:f7:bc:a9:64:1d:
cb:fd:40:4c:ed:6e:57:72:bb:10:78:12:77:6a:71:8d:e1:4b:
1f:55:08:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org