Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2ieGdsYErGnQf6hrucctaTGK6vQ.roa
File: 2ieGdsYErGnQf6hrucctaTGK6vQ.roa (raw, json)
Hash identifier: r9ctSjFNPiLH/xGcLTLn5AiH+IdesrKOz5Uc1THe9D8=
Subject key identifier: DA:27:86:76:C6:04:AC:69:D0:7F:A8:6B:B9:C7:2D:69:31:8A:EA:F4
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0FCD
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2ieGdsYErGnQf6hrucctaTGK6vQ.roa
Signing time: Sun 07 Feb 2021 12:36:07 +0000
ROA not before: Sun 07 Feb 2021 12:36:07 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24163
IP address blocks: 49.158.212.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4045 (0xfcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:36:07 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DA278676C604AC69D07FA86BB9C72D69318AEAF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:dd:4f:66:57:70:1e:83:e7:43:be:f8:71:2b:
86:6a:83:75:6f:f2:37:00:91:26:11:c2:f2:51:a4:
e1:d9:cc:65:1a:78:b4:db:41:13:ec:20:44:7b:12:
fa:9f:62:4d:69:77:26:bb:1a:8e:b0:4f:1d:ed:a7:
51:09:6b:28:5e:f5:f0:f2:81:87:58:eb:7e:51:15:
11:21:7f:43:3e:f2:fa:29:2e:fa:02:2c:0f:d0:52:
5d:4f:12:53:0b:ed:ed:9c:e0:69:9e:40:e3:84:e8:
ea:7e:50:eb:33:50:24:88:bc:d6:72:17:2b:a6:78:
31:63:86:29:39:8a:42:7b:aa:9e:ae:8b:34:b6:98:
c8:ca:9a:29:da:cf:91:2f:d3:a6:ab:e5:ec:b1:4e:
75:7d:e7:61:c1:a3:3e:45:5e:4c:92:ca:7b:c5:f7:
43:c7:12:32:94:c1:12:a5:35:50:64:cc:a8:18:25:
04:ea:63:56:7d:9c:d1:42:ff:a1:50:29:f4:a1:48:
92:c4:b7:93:cf:46:ce:f9:a0:2f:70:2c:48:d9:c5:
a9:c7:1c:53:9d:7b:7d:05:99:b5:fc:31:7b:02:41:
72:4e:c0:49:b5:0e:cf:f4:29:5b:50:a6:12:cc:69:
3e:26:63:83:9c:13:8c:14:82:8e:f2:39:d6:5f:10:
e3:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:27:86:76:C6:04:AC:69:D0:7F:A8:6B:B9:C7:2D:69:31:8A:EA:F4
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2ieGdsYErGnQf6hrucctaTGK6vQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.212.0/22
Signature Algorithm: sha256WithRSAEncryption
48:27:bb:44:07:b4:c5:41:cb:8d:c1:5d:d3:0e:aa:01:eb:e2:
c7:3a:a0:9b:8b:4d:b2:07:b5:53:6d:4c:b4:a8:cc:ca:a5:c7:
88:48:4e:77:c6:6c:c7:66:de:75:51:0c:ca:2d:d0:44:99:ad:
d3:5b:75:70:a6:f7:d7:bb:ce:55:ea:79:ff:18:b3:ae:7a:9f:
d5:78:14:0b:7d:24:bd:e1:1c:fd:fe:96:ec:be:ae:04:9f:85:
cd:f5:4e:3c:b3:aa:c7:5a:b5:cd:c1:e3:e9:eb:70:95:ef:24:
e8:b9:cf:65:de:ea:d2:0c:55:35:a1:34:1d:fd:f9:e0:13:b8:
ed:79:11:30:68:e5:30:45:f9:d2:a8:e0:f8:a4:0f:16:c2:11:
97:79:fb:1a:59:9f:ff:6d:ab:22:e0:d9:3a:ef:be:e5:82:bf:
2c:74:4b:e1:85:b9:99:4f:0b:d9:83:1d:2e:12:2a:ec:aa:3c:
e0:ad:54:62:50:60:70:9b:35:34:e1:76:12:a9:9d:e5:fa:f2:
5d:ef:52:ea:aa:89:21:d2:4e:5a:9b:d8:b5:24:81:d8:68:3e:
db:4f:7f:c9:37:7f:e8:48:cd:fd:a9:55:b6:ad:5f:91:a5:3c:
0d:87:f9:cc:1a:ef:d8:b0:2a:bb:bd:43:83:b6:92:e6:2f:9e:
14:21:d9:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:45 2023 by rpki-client on console-fra.rpki-client.org