Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1RvmXoP-Iq3Y8SBK-iyiqSs6h_I.roa
File: 1RvmXoP-Iq3Y8SBK-iyiqSs6h_I.roa (raw, json)
Hash identifier: jwSu4S0DO/8zc2/4Yc+ySBn1tLgK55hbTW7Ol6ioOXk=
Subject key identifier: D5:1B:E6:5E:83:FE:22:AD:D8:F1:20:4A:FA:2C:A2:A9:2B:3A:87:F2
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1904
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1RvmXoP-Iq3Y8SBK-iyiqSs6h_I.roa
Signing time: Sat 22 Oct 2022 06:06:00 +0000
ROA not before: Sat 22 Oct 2022 06:06:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24165
IP address blocks: 49.158.220.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6404 (0x1904)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:06:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D51BE65E83FE22ADD8F1204AFA2CA2A92B3A87F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1e:ef:24:63:ff:97:37:ba:7e:93:55:27:46:
d6:60:25:a9:8b:45:97:2f:86:6a:60:1a:2f:1b:fc:
2e:ac:27:35:4e:64:43:0b:2e:4f:8c:ff:46:3f:3b:
30:45:08:cf:83:ba:1f:83:72:9a:0a:b2:6b:66:2d:
0c:e6:b5:82:ed:28:6c:93:f4:a3:09:b0:42:21:57:
66:93:13:b3:66:7d:0a:9e:0a:7c:96:85:a7:97:68:
6e:4f:e1:d1:46:9e:11:74:79:e4:9a:0d:7a:25:cc:
86:2d:99:38:31:9b:a1:6c:49:54:88:d2:29:1a:df:
81:5c:81:90:81:d4:cb:dc:bf:31:16:a1:81:87:52:
af:88:94:79:bb:0f:57:ad:e5:53:5f:3c:a5:f6:c2:
38:7a:c1:55:e5:48:cd:fa:78:0d:e8:e5:11:eb:0f:
32:eb:59:a9:e0:ef:10:4a:25:27:9c:dc:6f:5e:67:
95:29:cd:f0:45:34:ad:98:62:e4:2c:e5:4e:9d:11:
bd:6e:6c:13:75:68:21:04:c2:8b:62:b2:d2:ef:b5:
b6:da:5f:4b:5b:c4:bc:61:18:ad:fa:c9:d6:69:c2:
ce:97:29:04:da:04:0c:51:62:c0:99:7c:ca:c5:25:
24:76:07:5c:02:40:30:40:8f:86:5e:b6:f3:0e:13:
e8:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:1B:E6:5E:83:FE:22:AD:D8:F1:20:4A:FA:2C:A2:A9:2B:3A:87:F2
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1RvmXoP-Iq3Y8SBK-iyiqSs6h_I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.220.0/22
Signature Algorithm: sha256WithRSAEncryption
06:bd:2c:7a:d1:8a:05:35:14:6d:52:bd:33:9c:2a:70:18:c2:
f5:f6:27:ad:2b:50:a8:47:38:07:cf:7e:e6:5c:b4:6c:27:b4:
f9:1b:14:60:bd:60:a9:e9:05:5e:52:fc:b8:49:cc:06:e4:1d:
2d:f8:c2:81:fa:a2:96:8f:bb:53:90:1a:6b:11:e4:12:58:73:
f1:55:50:36:4e:b0:c0:20:0e:a8:a8:92:5b:ac:77:1a:48:06:
52:1b:8e:df:ab:b9:6d:f9:c6:82:b1:54:49:b4:c2:28:9e:00:
ec:3d:56:e5:92:63:a9:88:07:6e:83:a5:de:c8:f4:0a:ea:ae:
fb:0b:41:dd:84:79:99:3a:ca:eb:fb:a8:be:ba:b6:2f:a3:61:
da:64:ec:95:3a:89:a1:ab:0e:b7:5c:1a:49:2e:54:d9:85:1c:
47:49:a5:1f:28:9c:ff:18:01:c1:0d:1f:48:13:73:d5:4e:d1:
54:74:e2:51:43:3c:12:d8:b6:78:7a:a0:b5:47:ac:33:a9:5d:
49:f3:d8:5e:5a:29:99:4d:2b:f9:ac:20:60:83:45:5b:46:d1:
d2:ee:2f:83:fb:77:15:cb:80:cb:98:4a:28:0c:1b:28:7e:b0:
cc:81:e3:29:36:1b:e4:bf:6a:51:b4:dd:20:45:7e:23:fa:a7:
ff:db:a7:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org