Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-Rylugxxm7TULMSaIs2IXt8s68o.roa
File: -Rylugxxm7TULMSaIs2IXt8s68o.roa (raw, json)
Hash identifier: 9wI0nSi9G9w6LCL2THPEHj4PqhfRQvXxliSowuygTck=
Subject key identifier: F9:1C:A5:BA:0C:71:9B:B4:D4:2C:C4:9A:22:CD:88:5E:DF:2C:EB:CA
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 141D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-Rylugxxm7TULMSaIs2IXt8s68o.roa
Signing time: Fri 29 Apr 2022 10:27:37 +0000
ROA not before: Fri 29 Apr 2022 10:27:37 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 49.159.48.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5149 (0x141d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Apr 29 10:27:37 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F91CA5BA0C719BB4D42CC49A22CD885EDF2CEBCA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:2d:3d:17:6b:ac:e9:90:c5:05:e4:49:7a:cc:
0c:b5:88:97:c9:10:e9:83:ff:31:c6:e9:b1:74:c1:
a3:ea:87:41:42:48:60:c3:ac:54:08:82:5b:f0:34:
ba:59:57:9d:1d:1d:27:8d:a1:99:bc:74:b5:fd:35:
03:f8:61:4e:64:ba:dc:e3:f5:6a:8f:be:bc:77:fc:
07:c9:34:12:9a:99:90:d1:7e:5c:a2:8f:23:57:b6:
fb:eb:25:c7:e9:6b:a7:8b:af:e5:63:d4:05:87:e3:
6f:c3:1b:c7:82:c7:4f:5d:0d:54:8f:2b:b3:6f:47:
32:33:22:34:45:2f:d4:50:55:bf:87:08:f7:81:45:
32:07:22:0b:13:fe:77:9d:38:d9:fd:b3:7c:13:8c:
03:ef:c0:93:24:b8:95:e8:ab:f5:ad:78:02:4c:0a:
2b:67:05:20:16:4b:66:1f:e6:56:9c:09:0a:23:58:
45:cc:8a:be:a5:a9:4d:28:9d:10:83:e0:c8:61:15:
d4:06:bf:28:ee:b2:a3:e0:d9:c4:09:1d:3a:90:19:
1e:ce:23:ba:e2:5a:fb:f1:ab:10:66:12:7e:67:7f:
14:78:6f:17:11:4a:a1:91:54:ac:57:4d:e8:f1:7b:
18:68:cf:8d:47:38:14:32:80:71:bf:ed:f1:c2:37:
b5:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:1C:A5:BA:0C:71:9B:B4:D4:2C:C4:9A:22:CD:88:5E:DF:2C:EB:CA
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-Rylugxxm7TULMSaIs2IXt8s68o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.48.0/21
Signature Algorithm: sha256WithRSAEncryption
4c:cf:13:b3:4c:47:b0:7b:30:c8:a3:a2:99:90:3b:e4:14:e3:
8d:28:32:f2:89:b9:fd:6d:dd:6a:fa:c8:7d:e1:c2:f7:59:b0:
a9:4e:5a:bf:cd:61:ee:3d:2e:9f:af:09:78:63:c1:ea:2a:37:
ce:ec:df:81:9e:e8:8f:e3:fa:5d:ae:a8:fb:35:0d:28:40:23:
7d:dc:ed:2e:14:d8:65:42:96:15:d7:f9:2b:ce:d5:91:24:23:
6f:1f:25:a6:bf:89:4e:be:8b:e8:c2:57:b6:58:d1:9d:2b:34:
c5:04:8b:8f:58:39:1b:41:ab:64:9a:ac:92:d2:68:6c:0a:bb:
c8:20:f3:18:e9:5b:0c:3a:ab:06:52:00:98:15:a1:84:79:29:
c4:01:8b:dd:f7:4d:6f:66:14:32:18:e6:21:f1:7d:46:96:af:
3f:80:80:cc:42:10:b0:f6:66:09:a4:eb:46:c1:e3:a3:20:90:
2e:29:b9:dd:f4:11:a3:b9:60:c3:3f:c7:61:79:2d:89:89:28:
eb:00:0f:0e:71:02:13:fe:cf:11:85:c3:93:88:d5:f7:be:ae:
f6:2e:76:f2:98:1f:32:91:ad:f7:7b:1b:3a:94:59:89:94:66:
3c:f6:4b:00:68:78:c2:17:8a:78:6e:31:f8:f9:4f:13:ab:1e:
a4:da:31:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org