Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xBNCTgH5Fo7XFgGP4EQlvVEnXXo.roa
File: xBNCTgH5Fo7XFgGP4EQlvVEnXXo.roa (raw, json)
Hash identifier: 6kpfx1AaGQ98WqRNL2P1IN3UwuSD3Oaq4xuMWYdcT6M=
Subject key identifier: C4:13:42:4E:01:F9:16:8E:D7:16:01:8F:E0:44:25:BD:51:27:5D:7A
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1348
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xBNCTgH5Fo7XFgGP4EQlvVEnXXo.roa
Signing time: Wed 29 Sep 2021 02:55:35 +0000
ROA not before: Wed 29 Sep 2021 02:55:35 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 49.158.76.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4936 (0x1348)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:35 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C413424E01F9168ED716018FE04425BD51275D7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:db:4b:7f:9e:27:9c:ad:2d:ca:2e:63:da:62:
6d:87:19:4a:43:18:00:d7:c9:69:f3:e8:4e:ab:4c:
0f:08:af:16:f9:30:1c:7b:54:b8:fc:5c:c7:1f:f6:
67:b8:7e:1a:85:66:d4:ed:cd:26:95:2f:4f:1a:9c:
9c:e8:9e:d0:10:19:f4:f0:67:ec:5b:19:a1:db:be:
de:35:2a:7c:56:47:0e:c7:f0:50:80:18:d4:06:f1:
cd:68:fd:2c:60:2b:a4:ad:fa:ae:e2:44:5a:90:97:
dc:5e:84:70:26:61:80:ea:bf:49:d8:34:0b:01:e7:
6d:02:b6:61:13:3e:d9:fe:3e:e4:e8:8d:09:73:22:
aa:f6:b2:b1:21:f9:a0:6b:29:80:b6:3c:c6:4d:1e:
7d:c6:61:92:76:e6:2f:f7:51:00:d8:dd:38:49:b0:
3a:00:a4:91:e0:58:82:73:13:1e:45:d7:bc:3b:ca:
4c:d8:7f:29:e2:d3:d4:3e:e7:dd:ed:f5:84:c2:7e:
af:ca:34:34:11:35:15:7c:d3:78:c9:81:c4:22:3c:
22:ae:9b:14:22:63:7a:3d:fc:b6:61:49:a7:d5:2d:
dc:1a:a9:06:56:11:f6:ef:36:2e:6c:35:5d:8f:ea:
db:ef:88:df:29:0f:7e:35:e7:01:e7:46:30:af:2a:
73:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:13:42:4E:01:F9:16:8E:D7:16:01:8F:E0:44:25:BD:51:27:5D:7A
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xBNCTgH5Fo7XFgGP4EQlvVEnXXo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.76.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:ab:49:60:d7:76:fc:77:d1:0d:b1:bb:4e:16:d6:cf:64:0b:
13:7b:c4:c5:8f:31:46:1f:00:76:2f:a5:50:f1:36:53:d1:9e:
c2:b7:f7:5f:c5:14:38:74:92:19:f7:cf:f6:10:65:45:49:4f:
67:2f:72:9d:da:ab:2e:8e:93:6a:38:0a:08:aa:94:ac:10:fc:
f8:e8:bf:ab:cf:a2:c4:ae:da:7f:69:05:1a:6d:a9:b5:4f:9c:
88:4d:f6:7c:f2:40:f9:98:bf:46:d4:04:49:74:d9:51:a7:1d:
69:65:87:6a:27:03:0d:96:01:8a:7c:88:47:40:f4:12:ef:7c:
25:32:44:0a:73:c5:9c:d8:69:94:89:c7:3d:1b:bf:7e:3f:f0:
eb:ee:be:d1:5b:73:0e:3b:36:ea:c0:e8:5a:6d:67:c7:c4:de:
c6:5f:4f:8b:44:c0:cc:9b:2e:cd:22:e8:51:65:21:a2:33:14:
9f:1d:cc:8b:50:5e:8c:ee:21:b4:cd:a9:01:23:af:dc:f9:78:
8b:62:ec:0e:87:c2:d5:75:b9:fa:10:51:1b:9b:59:ac:fe:26:
56:ec:02:6b:40:be:78:9e:b1:75:3b:bf:ce:ea:56:cd:0c:87:
28:b3:9f:83:9b:8c:89:de:8b:81:33:dd:27:56:0e:e3:be:88:
3f:3f:d3:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org