Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8r12u2RBrH7GRDk2a62wfnyK47g.roa
File: 8r12u2RBrH7GRDk2a62wfnyK47g.roa (raw, json)
Hash identifier: 7vZJrGCj7mQ43XFJm2UvBZP9of33ehOU+/OcexiKN6k=
Subject key identifier: F2:BD:76:BB:64:41:AC:7E:C6:44:39:36:6B:AD:B0:7E:7C:8A:E3:B8
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0D50
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8r12u2RBrH7GRDk2a62wfnyK47g.roa
Signing time: Thu 14 Jan 2021 07:35:29 +0000
ROA not before: Thu 14 Jan 2021 07:35:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 49.158.128.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3408 (0xd50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Jan 14 07:35:29 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F2BD76BB6441AC7EC64439366BADB07E7C8AE3B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:0a:42:ed:8f:89:bc:10:64:1f:ca:d3:d3:fa:
d6:e0:e8:89:6f:3b:ab:66:ad:2a:64:ee:2c:89:c9:
fd:cd:58:dc:81:0c:43:9d:1e:80:b9:2d:30:85:12:
a7:6e:5e:57:fd:5b:a8:51:61:05:ee:c6:77:7d:b8:
e9:3c:db:f0:c3:6e:7f:da:37:72:9a:d1:58:52:a2:
80:8b:20:6c:1e:7d:f1:ec:c6:63:a9:29:ce:62:cd:
46:7d:02:08:9a:7a:af:fa:01:92:a1:d8:57:f6:e5:
72:c7:55:fd:29:c0:5b:d5:4b:da:a2:a9:5a:ca:6d:
5c:2a:f6:d6:b9:b0:a1:b7:c2:09:ff:33:43:32:1d:
cc:29:1f:a1:bb:ad:40:d7:15:ba:92:1a:05:53:01:
0a:b1:59:7d:df:1d:be:0f:09:79:8f:98:f8:b8:7d:
d0:d5:08:86:0d:0d:39:86:71:aa:da:09:34:18:f0:
df:12:3a:60:32:b3:f1:4f:2d:86:fd:12:78:d6:16:
a7:bf:1b:ec:95:aa:90:f9:0e:ef:90:1a:c0:3b:39:
65:61:67:65:ee:e6:a4:4a:53:d3:10:f4:be:e0:eb:
81:5a:31:3b:a3:73:78:85:14:8d:5b:4d:a3:21:38:
a8:7a:8e:8d:c6:1d:4b:67:e1:b5:45:6f:df:44:d8:
20:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:BD:76:BB:64:41:AC:7E:C6:44:39:36:6B:AD:B0:7E:7C:8A:E3:B8
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8r12u2RBrH7GRDk2a62wfnyK47g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.128.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:34:80:31:fa:7f:36:b8:da:9e:bd:aa:4e:eb:25:58:aa:aa:
b8:5a:84:07:3a:78:29:57:f1:ed:73:40:9f:bd:3d:da:4a:f4:
94:ee:49:a7:7f:0b:cc:b9:1b:57:5e:ee:2b:60:3e:67:1d:7a:
f8:8a:04:a2:cf:bd:09:33:41:36:e1:54:7a:52:0b:00:b7:ab:
7e:63:a2:2e:6b:02:3b:e9:aa:9d:70:64:79:14:20:75:e4:47:
57:60:62:51:9d:32:62:9d:d5:28:64:2f:d5:ce:47:73:a7:9c:
47:03:3e:76:7e:3e:46:0d:fb:25:f2:e4:79:74:7c:38:8d:11:
4b:dd:37:79:47:38:aa:47:27:50:75:b7:fc:37:5a:4a:d1:17:
dc:40:05:06:38:7e:1f:f4:fe:6b:41:c1:3b:df:7b:d7:f5:d6:
21:e1:84:a5:08:d2:1c:08:20:cb:2f:9d:ad:5a:48:03:c3:3a:
d4:f5:d1:88:57:ad:36:63:02:bc:60:63:83:d0:aa:b0:e1:97:
76:ac:5f:ce:62:4f:1b:69:53:49:a3:cc:73:dd:35:e1:10:48:
23:4a:db:9d:9c:90:fe:67:2a:ba:42:b6:5c:66:54:ed:d4:2a:
61:64:06:fc:b6:8e:2f:58:e4:b6:0c:a4:28:a4:9e:ef:f6:cc:
e6:a2:b5:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:34 2023 by rpki-client on console-ams.rpki-client.org