Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/u7NLkC8SZ2s-gWkZYUMLbfM_8Ss.roa
File: u7NLkC8SZ2s-gWkZYUMLbfM_8Ss.roa (raw, json)
Hash identifier: 6wtxPp3yP3hqP244dFb3WxhFCeykTYve8hCKFLw+02I=
Subject key identifier: BB:B3:4B:90:2F:12:67:6B:3E:81:69:19:61:43:0B:6D:F3:3F:F1:2B
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0B7D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/u7NLkC8SZ2s-gWkZYUMLbfM_8Ss.roa
Signing time: Tue 29 Sep 2020 10:08:29 +0000
ROA not before: Tue 29 Sep 2020 10:08:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24163
IP address blocks: 49.158.200.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2941 (0xb7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:08:29 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BBB34B902F12676B3E81691961430B6DF33FF12B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3c:f5:53:bf:17:18:d6:27:7e:49:dc:75:e8:
5a:fd:d5:e0:a5:59:4f:38:b8:c5:ab:f7:a2:7b:0f:
1f:2c:19:ad:0d:94:ee:d5:3c:5a:d9:df:e6:89:44:
c4:6d:91:cd:12:3b:85:83:f5:a5:05:4e:a2:f5:d1:
39:96:9c:83:14:84:a3:f9:a5:a5:14:ee:fb:92:cd:
ef:60:ee:b4:db:3c:99:58:52:14:1a:93:68:dd:c4:
40:05:c0:7b:6a:67:51:52:7d:d7:29:6b:2e:6d:c6:
31:9a:a0:87:54:63:7e:ea:2b:2c:50:4b:ff:83:1c:
f9:29:30:e1:52:ec:2e:ba:c5:1e:da:d1:01:e8:43:
00:34:fe:93:e4:8f:d0:39:bc:cd:4e:73:2c:a9:5d:
70:c9:51:d5:ba:22:f1:22:ec:2d:1c:f9:fc:e5:75:
50:d0:d9:d9:f0:0e:07:ea:fa:94:8c:d7:79:fa:35:
33:71:55:cc:24:50:52:d8:33:ac:3e:cc:5d:09:5d:
f7:66:41:21:f6:bb:6f:33:b4:57:35:36:93:4c:c8:
44:c0:7d:9f:bf:99:eb:15:ed:ac:e7:f9:2d:f9:b1:
fa:14:8d:3c:3d:4c:e4:8b:b9:a0:d6:04:1f:19:a5:
d3:d1:42:ed:a0:6a:8f:52:63:b2:3d:02:ab:1f:e5:
c4:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:B3:4B:90:2F:12:67:6B:3E:81:69:19:61:43:0B:6D:F3:3F:F1:2B
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/u7NLkC8SZ2s-gWkZYUMLbfM_8Ss.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.200.0/22
Signature Algorithm: sha256WithRSAEncryption
92:83:26:1f:ff:21:54:a4:e4:98:43:b2:84:2c:55:c2:ef:ff:
45:a8:0c:5f:ac:c8:4d:e3:a2:57:c6:0f:2a:52:aa:a4:8f:46:
a7:08:9b:c8:dc:6b:29:4c:63:0d:ae:12:d0:a2:dc:24:3a:5b:
e5:eb:2c:d5:7b:2a:13:de:65:fc:69:21:08:a4:62:99:92:91:
9f:ee:21:a6:cc:c8:b7:7c:ed:27:a8:a0:00:87:46:7c:eb:a4:
fd:e7:7a:a6:f2:63:cf:e0:ac:fe:39:94:f1:62:d7:96:40:b0:
92:30:6e:16:1d:d0:89:b3:5a:6c:75:68:95:7f:15:8c:2f:75:
6a:05:33:db:93:a4:ba:dd:0b:a4:5b:e6:de:4a:5e:01:72:b2:
ad:5b:d4:54:cf:f9:cf:99:ad:5b:d5:09:51:2a:1a:9a:b3:c4:
19:34:9f:64:2e:1d:4b:ba:40:83:cf:9e:1f:0e:d4:08:0c:b0:
ce:7d:c7:ae:4c:e0:d3:47:44:be:2d:b3:35:89:49:c4:49:a7:
de:58:4b:a9:c5:c1:3d:d8:8f:32:ae:1c:7d:4a:09:de:07:39:
7c:b9:bf:9b:d7:4d:12:b6:81:f8:7d:da:37:a2:89:b7:9e:b2:
0e:60:e9:aa:2e:dd:e0:17:aa:61:6d:d1:a2:23:55:9d:f1:02:
89:91:f6:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org