Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/4MQu1x5ad15caBbyvy9-BSrDo30.roa
File: 4MQu1x5ad15caBbyvy9-BSrDo30.roa (raw, json)
Hash identifier: OnR+Fy1WkroKPyDj9Sb0VPf1mIEVkpSMqtuaDBnpUFI=
Subject key identifier: E0:C4:2E:D7:1E:5A:77:5E:5C:68:16:F2:BF:2F:7E:05:2A:C3:A3:7D
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12DB
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/4MQu1x5ad15caBbyvy9-BSrDo30.roa
Signing time: Wed 29 Sep 2021 02:55:04 +0000
ROA not before: Wed 29 Sep 2021 02:55:04 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24163
IP address blocks: 49.159.184.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4827 (0x12db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:04 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E0C42ED71E5A775E5C6816F2BF2F7E052AC3A37D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:5b:84:71:68:5e:db:04:e3:d9:d3:76:f4:c0:
71:70:71:56:93:bd:1c:7f:11:84:48:0e:22:89:e6:
69:f7:a7:1c:21:3f:e7:4e:c0:40:88:38:64:40:da:
88:eb:7a:64:2c:48:38:3e:2e:78:2b:89:6a:fa:0c:
42:64:51:b8:88:0d:d9:16:1b:0e:dc:b9:30:ca:4e:
97:b3:27:7d:d6:d2:ce:99:ea:09:c9:ff:b6:3a:01:
ac:64:51:0a:7e:25:8a:09:24:d7:65:4b:4e:46:b9:
1d:f6:c5:e3:1d:55:fb:1f:a5:04:62:01:7c:20:aa:
4a:e9:35:21:de:5e:0f:62:5b:82:d3:83:a6:8b:0e:
3d:2f:bb:52:90:56:d1:d6:df:65:db:1f:c7:e0:ba:
3c:ea:1a:12:d2:63:74:5a:c9:7f:34:24:70:e6:f8:
e8:81:7b:e4:0d:1b:46:6f:31:45:49:0a:99:89:42:
b3:20:02:dd:b4:c4:d2:20:6b:26:8e:12:fe:24:10:
46:ba:86:d5:fd:7d:78:26:f2:c0:9d:b3:fa:0b:17:
79:87:59:bf:51:13:5b:61:14:d9:5b:a9:4c:30:e0:
ee:0d:2f:f8:1b:03:66:2c:c5:cf:d2:a9:5d:27:d2:
e5:ea:bb:9f:7f:54:66:29:d8:fa:a9:7a:5c:19:42:
fe:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:C4:2E:D7:1E:5A:77:5E:5C:68:16:F2:BF:2F:7E:05:2A:C3:A3:7D
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/4MQu1x5ad15caBbyvy9-BSrDo30.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.184.0/21
Signature Algorithm: sha256WithRSAEncryption
3b:be:cf:95:18:e6:bc:ac:06:b8:36:77:11:12:9a:e9:1f:af:
e1:96:a2:39:09:26:32:e9:f1:27:81:39:12:00:cd:f3:9f:fa:
bd:db:f4:25:f7:af:3e:ea:4c:fe:80:ff:21:59:eb:be:57:37:
ab:e8:8d:6d:c0:bb:28:97:f8:b6:ad:1f:a5:b0:44:7b:c5:46:
18:cf:a9:ab:a5:ce:40:c5:74:a9:8e:83:2b:90:e4:7f:e5:ae:
2b:76:02:36:b8:27:9c:71:12:2b:b2:2b:74:1f:92:a6:04:63:
fe:19:e0:e9:a1:5b:0d:a6:5c:a0:97:08:44:36:5e:4b:38:2f:
91:62:a3:5c:b2:0a:b1:e2:5c:89:c0:41:61:00:15:e3:24:8d:
3a:d4:db:52:a8:3b:9c:d0:dd:dc:e6:ad:39:6a:78:2d:bd:e5:
8c:fe:3a:86:6d:6c:72:e3:3b:dd:5f:d2:c1:82:14:d3:c6:e2:
61:56:1b:ca:c0:75:5b:1c:86:96:be:fa:38:da:67:f1:7e:91:
41:4a:44:41:86:df:bb:b3:16:9c:15:04:31:0e:f0:f7:c7:15:
89:53:a2:68:78:c2:1f:07:cf:0d:8d:eb:39:fc:c3:50:d6:75:
86:77:43:41:73:01:8a:99:7e:d4:82:64:77:82:5e:da:41:28:
48:1d:d1:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org