Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1nIe4CAzLc2Ndl7dXMV2S8qVvp8.roa
File: 1nIe4CAzLc2Ndl7dXMV2S8qVvp8.roa (raw, json)
Hash identifier: rQjBFNuBeUUTWyzc+992FmC/ya48NfdgUmhJ9ia1UA4=
Subject key identifier: D6:72:1E:E0:20:33:2D:CD:8D:76:5E:DD:5C:C5:76:4B:CA:95:BE:9F
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1103
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1nIe4CAzLc2Ndl7dXMV2S8qVvp8.roa
Signing time: Sun 07 Feb 2021 13:03:00 +0000
ROA not before: Sun 07 Feb 2021 13:03:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 49.158.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4355 (0x1103)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 13:03:00 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D6721EE020332DCD8D765EDD5CC5764BCA95BE9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:cb:d0:58:a3:48:f9:6f:bd:7a:e6:21:6e:6b:
26:a3:7f:28:c5:d9:51:18:cf:7b:1f:59:ac:2c:43:
16:eb:16:d7:ba:e1:7a:80:c3:09:80:a1:2e:32:e8:
05:4d:35:89:e4:7e:12:b0:93:9d:7b:5b:78:1a:e1:
bd:e9:44:68:81:9a:9b:a4:18:74:38:e7:00:97:01:
86:4f:92:10:d5:97:28:85:59:fc:a9:43:00:4b:58:
5d:be:b2:77:df:27:bf:45:bb:47:ad:09:ce:52:81:
eb:fa:de:be:02:fa:be:66:2d:a9:1b:5c:e2:dd:60:
de:71:d8:ae:8b:0a:01:a9:d6:91:a9:b1:25:8f:60:
ad:b9:61:46:60:7d:24:b1:b1:5b:59:a2:36:be:ad:
9c:1c:a3:3d:02:17:3f:28:7c:f4:8c:fc:7a:c1:5d:
aa:a2:3b:4f:87:77:52:0e:fe:6f:95:a2:49:37:6e:
d3:3a:d2:68:fb:50:01:d1:54:07:0b:b8:db:80:78:
ab:1c:08:f9:29:b6:1a:c5:79:6e:d4:ea:b2:97:d6:
cd:8b:9b:ab:c2:27:16:21:ec:6b:21:b0:5b:c0:bb:
d6:90:8f:5e:d0:fe:ed:10:2f:6e:c6:e7:62:20:81:
16:af:67:f7:e5:1b:3f:a5:6a:b6:7d:0b:a3:bb:44:
63:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:72:1E:E0:20:33:2D:CD:8D:76:5E:DD:5C:C5:76:4B:CA:95:BE:9F
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1nIe4CAzLc2Ndl7dXMV2S8qVvp8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.234.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:db:5c:af:4d:9b:7a:b0:80:56:2b:e7:a6:5a:4e:33:e6:61:
2e:71:39:cf:4c:c0:cd:24:eb:89:40:fb:28:98:0f:68:46:10:
41:18:7f:d9:8d:e5:03:8f:d3:1f:20:b3:63:d7:f1:e8:54:93:
91:f0:b3:a6:80:d8:e0:b8:e3:49:ae:b5:cb:dd:ff:a1:34:c4:
fe:c5:35:d2:2b:30:0f:8f:1b:41:44:3d:e0:a6:0f:74:fb:c8:
cd:5f:86:0d:d7:78:56:92:90:10:22:69:59:f5:5a:22:38:61:
2a:5e:d2:eb:0c:58:00:0b:52:29:36:33:ea:d4:34:fc:f3:30:
07:ed:40:30:e6:53:7b:76:3b:3b:a5:bd:a0:39:7c:6d:91:42:
0c:5c:1f:10:be:f5:a8:d4:94:3f:2a:99:0b:c4:79:df:b9:a1:
f9:b9:e2:fe:8c:36:29:28:ca:6c:db:ed:1e:db:32:fb:8d:10:
e8:3f:d5:59:54:4d:a3:8b:a2:94:d9:e0:32:9b:3f:b1:46:98:
7c:f0:35:8d:ab:be:95:86:a6:5a:6a:3f:d6:b5:d3:b7:7e:f9:
aa:83:84:a0:b7:48:f4:23:69:37:35:a0:13:90:df:fe:22:eb:
09:33:4d:54:7c:c0:b9:db:14:b4:05:c8:cf:d1:60:c7:c1:f1:
62:45:af:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org