Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/4dkmzfylazsd_pNNL-0TplknwnQ.roa
File: 4dkmzfylazsd_pNNL-0TplknwnQ.roa (raw, json)
Hash identifier: 0t0doB0N07tWClLSJ4p23YjVFa7oT9GHKNeehdmiUso=
Subject key identifier: E1:D9:26:CD:FC:A5:6B:3B:1D:FE:93:4D:2F:ED:13:A6:59:27:C2:74
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0ACE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/4dkmzfylazsd_pNNL-0TplknwnQ.roa
Signing time: Tue 29 Sep 2020 10:07:39 +0000
ROA not before: Tue 29 Sep 2020 10:07:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 49.158.80.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2766 (0xace)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:07:39 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E1D926CDFCA56B3B1DFE934D2FED13A65927C274
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:60:3e:02:b5:a0:02:4d:c1:6e:a8:02:f4:35:
35:f1:7f:d7:13:30:74:8b:c7:4c:a9:49:5e:7e:e7:
e4:9c:94:ea:48:ea:b6:e0:76:f2:3e:69:fe:09:9d:
6d:7c:78:69:c3:84:a7:de:f7:37:90:96:5a:df:3e:
7f:91:81:20:7d:e1:4d:cc:f5:8a:8f:3c:cf:d2:b3:
3e:5e:77:8b:4e:c5:18:77:59:2b:35:be:54:20:a1:
e9:81:f8:7a:11:52:8f:e5:d4:ba:ae:59:ff:3f:82:
f6:63:1e:3a:2b:d6:88:3f:b0:36:d3:24:1a:53:9c:
82:55:ba:be:92:13:e8:44:aa:57:51:7e:96:63:84:
e3:5b:38:09:08:70:a5:3e:f5:54:2b:2d:c5:a5:65:
b0:e6:8f:61:6e:c4:0a:f6:3f:ca:6d:ca:f8:7b:03:
00:a2:20:04:72:d0:83:1c:94:02:cc:10:51:72:29:
00:96:68:83:af:5f:d7:93:f0:8d:44:ed:32:f2:54:
8d:38:d4:fa:3b:9f:5c:a6:f9:a2:63:cf:d6:76:f4:
15:23:d2:34:6d:78:2a:b0:cb:c1:3a:05:8d:ea:90:
e9:26:92:16:b7:ae:40:cf:73:ec:94:eb:b8:0e:9f:
4c:6b:a4:b3:c4:6a:60:e2:b4:3a:10:f2:3a:cd:ca:
f9:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:D9:26:CD:FC:A5:6B:3B:1D:FE:93:4D:2F:ED:13:A6:59:27:C2:74
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/4dkmzfylazsd_pNNL-0TplknwnQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.80.0/21
Signature Algorithm: sha256WithRSAEncryption
9d:c7:8e:48:c1:e9:c3:0f:44:89:9d:88:65:58:0c:8c:ed:93:
8f:5d:d0:15:99:85:f9:fb:29:82:27:a8:d8:bc:00:0a:b1:9f:
75:51:f6:9e:ea:7c:0d:19:d9:64:7a:22:c0:b5:03:8a:9f:84:
41:97:70:b5:62:cd:78:e0:6c:ff:bf:fa:5f:72:9b:7e:76:26:
d0:29:a0:0c:13:8b:9a:cf:dc:95:51:d5:b9:06:a9:4e:6a:b9:
43:02:7a:f6:db:c8:21:da:7f:c4:dd:46:ea:68:4a:d0:c4:03:
2f:1f:27:ef:a4:db:b4:92:6c:87:1d:a2:52:bc:81:1e:a7:d0:
af:03:8a:d6:dc:cf:3d:c3:3c:49:65:b4:38:12:de:67:a1:21:
7f:ad:f0:75:1d:0e:98:d8:bd:34:05:23:fa:80:78:b4:a0:7d:
a2:1c:e9:60:60:6b:e0:11:c8:02:c4:d4:5c:76:32:03:af:cb:
ec:f6:55:f1:9e:67:e8:f4:28:e8:f7:f8:a9:bc:81:f3:54:15:
42:6e:e6:63:8a:86:3c:e2:8a:b9:eb:3c:91:61:f3:9d:76:3d:
09:ee:67:19:e0:a2:28:35:99:ec:71:e7:2b:88:f5:73:78:1a:
6c:31:73:84:de:dd:38:2e:25:41:6b:d0:c8:3f:bd:19:35:d5:
cb:c7:8d:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org