Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/87mekOHEit_z53BFchSPTju9paw.roa
File: 87mekOHEit_z53BFchSPTju9paw.roa (raw, json)
Hash identifier: +kYKKZKBs8XRzF4FX8cUihAOShIqC3NzUiIIBPA/ZMs=
Subject key identifier: F3:B9:9E:90:E1:C4:8A:DF:F3:E7:70:45:72:14:8F:4E:3B:BD:A5:AC
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0B43
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/87mekOHEit_z53BFchSPTju9paw.roa
Signing time: Tue 29 Sep 2020 10:08:12 +0000
ROA not before: Tue 29 Sep 2020 10:08:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 49.159.96.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2883 (0xb43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:08:12 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F3B99E90E1C48ADFF3E7704572148F4E3BBDA5AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0e:74:1b:0a:62:ed:8a:9e:98:18:82:e7:b5:
de:d2:36:71:6a:72:06:99:43:1b:72:03:cc:53:72:
22:8c:d3:61:88:91:a2:20:a6:f3:b8:d2:3a:46:fe:
a9:d0:67:b1:01:a6:45:44:29:4b:f5:b6:e7:7f:b7:
bc:73:75:d3:c9:d1:f3:05:2e:e5:fc:d2:6f:09:60:
e9:f8:49:a7:31:63:2e:32:00:cb:6e:d2:88:a1:b9:
5b:3b:fb:2b:0c:8e:3c:8c:82:3b:6a:1f:ea:5b:42:
a5:83:c4:1a:da:cb:02:88:93:68:5e:4b:01:f6:86:
c5:77:df:d7:49:2b:bd:e9:c5:06:c9:03:a1:c1:a9:
ad:c7:14:aa:f3:b7:31:64:2c:17:78:ee:44:34:5b:
36:f3:ac:b5:13:07:ba:69:95:15:19:fc:77:81:e1:
0a:eb:c1:24:f7:3b:cb:0c:6d:a2:d1:a7:81:1b:c8:
ee:41:8e:e0:9d:d7:b0:8b:96:f0:ef:9b:ac:4e:cd:
80:c5:b0:ee:29:c9:d0:01:11:04:5c:3d:4f:b3:d5:
57:78:80:de:c2:3b:29:c6:80:d9:4b:a5:24:88:e2:
ac:8f:e9:66:f3:2d:f6:64:bb:76:c7:e0:7c:45:53:
22:52:85:82:b2:33:44:6a:ce:30:91:c8:88:16:8d:
36:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:B9:9E:90:E1:C4:8A:DF:F3:E7:70:45:72:14:8F:4E:3B:BD:A5:AC
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/87mekOHEit_z53BFchSPTju9paw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.96.0/21
Signature Algorithm: sha256WithRSAEncryption
87:fa:01:e7:72:82:d7:83:ac:e1:93:08:ea:b1:3d:e1:62:e9:
b9:a9:ea:20:82:87:b8:ea:f4:8a:bc:39:9f:66:e8:d6:8f:09:
59:e5:e2:97:01:d9:30:1f:c6:31:f2:67:9a:48:01:4c:1c:0c:
52:2e:9c:5c:01:d4:42:d8:03:08:07:10:6d:48:ae:e3:02:50:
c1:8b:59:98:3c:1c:c7:9a:ea:5f:5e:37:2a:33:0c:98:8d:e6:
ed:50:87:a3:5c:12:6f:20:ee:40:fa:d8:a6:70:06:5d:28:06:
e8:36:54:f9:a4:2a:6b:36:88:16:ab:06:a3:3e:6a:c0:e5:70:
65:6e:71:e5:f1:f2:61:a6:a6:ec:1f:74:86:61:e3:a0:85:7a:
b6:61:06:a1:40:84:4f:0c:3d:7d:3e:30:d5:b0:82:33:54:c7:
07:a6:59:ac:fd:96:c2:fe:26:fc:34:f3:52:08:0e:61:4c:1a:
d1:d1:c1:9f:5e:53:f2:8b:66:95:b1:1c:3e:c3:7d:b3:4f:e8:
7a:6f:2a:72:29:e0:28:8f:92:97:d2:96:ab:94:36:67:be:51:
93:83:30:9a:0c:17:2a:65:8d:5a:fc:6d:2e:f0:d5:11:56:2d:
71:5d:c2:00:b9:50:af:4f:2c:7c:4b:e3:e9:b7:8b:6e:03:b4:
57:df:71:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:45 2023 by rpki-client on console-fra.rpki-client.org