Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3YPLW23FJlJ7AePsJFcxVBQuouM.roa
File: 3YPLW23FJlJ7AePsJFcxVBQuouM.roa (raw, json)
Hash identifier: 89NyLaSFwYeWxdDq+FDtyP+DAaPJvxVoJzASsHvezSg=
Subject key identifier: DD:83:CB:5B:6D:C5:26:52:7B:01:E3:EC:24:57:31:54:14:2E:A2:E3
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1405
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3YPLW23FJlJ7AePsJFcxVBQuouM.roa
Signing time: Fri 29 Apr 2022 03:40:54 +0000
ROA not before: Fri 29 Apr 2022 03:40:54 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 49.159.144.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5125 (0x1405)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Apr 29 03:40:54 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DD83CB5B6DC526527B01E3EC24573154142EA2E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2b:c3:09:01:28:88:66:89:bb:7c:f3:d7:b1:
74:f1:ff:a0:89:07:97:7a:e4:82:c9:dc:35:e7:74:
43:d3:7f:a8:99:c1:47:65:7d:34:82:d3:2d:e5:45:
52:ac:c7:f6:42:5d:b4:80:5c:f0:89:4c:2f:63:ba:
f0:9d:7e:a8:fb:01:e9:fe:f9:45:72:97:7e:5b:69:
d5:9c:6f:b0:2f:df:78:e8:9f:b2:62:f9:33:d5:c9:
e6:95:74:db:09:d2:a2:80:af:b4:e9:4a:d8:a7:cc:
89:a5:93:ae:d5:8d:1d:8a:6c:69:d3:23:d8:cf:97:
2a:90:a1:dd:5c:fb:2c:d2:37:8b:45:16:ac:b0:5c:
dd:19:77:ff:ed:e3:6c:b3:e6:da:8b:0b:19:6b:34:
9b:bc:b6:6b:4b:e9:32:3d:43:72:e3:2a:18:66:98:
5e:aa:3d:58:86:d5:07:18:a0:1a:fe:3c:47:d5:e9:
22:be:ce:b0:57:50:bc:6c:31:5a:f6:01:d8:72:31:
09:ff:7b:26:5f:07:51:ac:a6:45:bf:74:13:f8:e5:
db:bb:1f:35:d0:cd:bc:72:60:40:70:4e:e4:f4:81:
6e:ed:87:b0:0d:05:43:fc:20:d0:c4:2c:0c:ef:a3:
96:4d:43:f1:24:4f:81:6d:cc:34:ec:d1:ff:2f:96:
cf:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:83:CB:5B:6D:C5:26:52:7B:01:E3:EC:24:57:31:54:14:2E:A2:E3
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3YPLW23FJlJ7AePsJFcxVBQuouM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.144.0/22
Signature Algorithm: sha256WithRSAEncryption
28:2e:fa:0e:57:82:3d:db:2f:88:f6:79:fc:bb:87:8c:44:a2:
20:66:44:54:71:d2:a7:0f:15:ab:67:fa:a8:51:05:6b:2f:5f:
a4:19:f0:1a:9a:0c:86:ef:b2:09:7d:bb:68:e8:86:64:30:6a:
59:7d:aa:65:42:27:fd:47:70:44:1d:42:01:81:a0:41:d7:67:
1d:2a:f7:8f:5c:bd:e5:a4:66:b2:dc:7a:28:e1:ae:ab:d2:60:
e6:e5:cd:93:79:5b:7a:e0:1a:2e:82:29:0f:68:20:70:3f:a4:
26:00:7f:1f:fa:24:44:15:7d:e2:61:c5:e0:3c:63:34:48:56:
d2:03:58:3e:d6:81:30:ad:69:68:d7:e3:05:79:41:d6:2b:ea:
3d:81:bc:0c:6f:bc:e1:61:cf:d0:d1:ca:40:44:86:9a:1b:b1:
b9:53:90:b4:25:a1:c6:91:91:ce:a4:3b:f1:00:27:54:bd:3f:
6e:0d:e0:7e:27:45:a6:b6:61:4e:03:33:a4:9b:08:01:a8:35:
f4:a7:46:44:2a:7d:37:87:b9:2f:e6:96:e4:ba:f9:4f:5e:5e:
55:33:e6:19:b2:29:94:e3:bf:2e:d3:ee:ef:97:c6:1c:30:d1:
2e:2f:e2:91:2c:04:5d:35:dc:f9:9a:19:1d:38:bb:59:c1:13:
9d:85:cf:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:45 2023 by rpki-client on console-fra.rpki-client.org