Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3bUeAgHcbsarCx0XKLo8U9vayjA.roa
File: 3bUeAgHcbsarCx0XKLo8U9vayjA.roa (raw, json)
Hash identifier: 6E30dseB6lQjeQxjtxvXMYfi+ZJstiumw7hwrIQP3eo=
Subject key identifier: DD:B5:1E:02:01:DC:6E:C6:AB:0B:1D:17:28:BA:3C:53:DB:DA:CA:30
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 18EF
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3bUeAgHcbsarCx0XKLo8U9vayjA.roa
Signing time: Sat 22 Oct 2022 06:05:54 +0000
ROA not before: Sat 22 Oct 2022 06:05:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.159.120.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6383 (0x18ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:05:54 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DDB51E0201DC6EC6AB0B1D1728BA3C53DBDACA30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b5:e2:3b:45:ae:8b:46:72:67:e7:19:53:39:
7e:fa:f4:14:98:84:a5:8d:1b:be:6f:b1:12:6f:22:
76:63:fe:7f:22:c3:9d:23:66:24:34:ba:ae:a6:76:
58:98:4e:46:3a:09:1c:3e:34:19:72:e5:15:1b:92:
2e:fd:7f:b8:1a:78:36:97:51:54:f9:42:fc:3b:11:
24:12:02:1f:69:aa:c0:87:d7:a4:a4:8d:81:3a:e9:
2f:0d:41:0d:e2:8c:d9:b8:4c:27:67:6a:44:91:90:
d5:81:f4:4a:3b:1b:b6:c9:32:5a:a3:a7:80:f1:49:
cb:78:99:86:bd:5b:ed:a8:02:79:db:36:44:5b:3b:
dc:95:25:a3:15:ca:b4:46:5f:1b:93:d8:bf:65:f1:
db:79:ec:15:e9:80:07:dc:b7:e1:84:84:ac:cd:7a:
24:8e:4e:df:d1:ac:56:60:63:33:5d:58:08:b4:9b:
1b:65:78:94:e1:c2:b8:cc:81:bc:01:75:71:77:fc:
bd:8d:8a:21:68:a8:66:3a:f1:4d:87:9b:27:be:01:
9a:6f:28:8e:e3:c6:30:bc:b9:90:58:09:be:0c:bc:
5c:a5:a0:c8:6b:34:6c:06:48:d2:65:db:b8:74:80:
65:10:eb:c4:bd:37:fd:c6:1e:f0:9c:ed:04:d1:45:
42:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:B5:1E:02:01:DC:6E:C6:AB:0B:1D:17:28:BA:3C:53:DB:DA:CA:30
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3bUeAgHcbsarCx0XKLo8U9vayjA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.120.0/21
Signature Algorithm: sha256WithRSAEncryption
02:89:7e:bd:6d:ff:14:50:0d:76:05:8c:97:eb:eb:04:eb:f0:
11:75:97:6d:f9:ac:02:c2:8e:d8:37:43:c9:bb:97:26:1e:97:
eb:2e:4a:a7:01:8d:17:a6:63:32:f0:9a:c3:d5:5c:93:3a:b4:
40:97:1a:c3:1f:49:c0:d5:0f:70:ae:28:61:68:a7:02:3a:74:
e8:76:95:b7:3b:ec:0b:60:20:5d:23:90:ce:0a:a3:49:a4:f8:
e3:c5:65:dd:a1:b8:4b:66:05:e8:0a:b2:bb:bb:a9:f8:77:e1:
84:96:cb:de:ea:23:f0:34:8f:31:ea:f8:94:9b:57:5b:5d:76:
f5:d8:b9:02:24:c3:40:9d:7b:b1:43:4e:e9:b2:cb:4a:9d:24:
3b:64:94:fe:a1:47:24:7b:b6:44:e0:fb:1d:96:58:9e:c1:96:
39:cd:07:7a:7d:99:73:23:81:08:f1:fc:ac:db:1c:35:e6:54:
d2:74:ee:c8:65:39:ab:35:6e:47:fa:65:f3:99:83:b8:8d:6f:
9a:eb:47:a5:db:5a:5c:ea:cb:fc:57:0d:62:21:10:e2:f2:79:
65:75:18:80:d9:d4:b5:47:ee:ff:40:cb:83:0e:01:66:ab:9a:
38:5f:41:98:eb:dc:7b:c0:ed:6a:1b:83:f4:18:a5:5a:47:a2:
bc:7b:71:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org