Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/90SEAisFr2VZigLckNLhMlKjRPA.roa
File: 90SEAisFr2VZigLckNLhMlKjRPA.roa (raw, json)
Hash identifier: 28MSUSeQp518oGsfxSUYzz0BEkJocj6Kc6DI5eXY70A=
Subject key identifier: F7:44:84:02:2B:05:AF:65:59:8A:02:DC:90:D2:E1:32:52:A3:44:F0
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0FA7
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/90SEAisFr2VZigLckNLhMlKjRPA.roa
Signing time: Sun 07 Feb 2021 12:35:24 +0000
ROA not before: Sun 07 Feb 2021 12:35:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 49.158.128.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4007 (0xfa7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:35:24 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F74484022B05AF65598A02DC90D2E13252A344F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:3a:de:2c:3c:97:2c:97:44:c1:87:52:60:10:
a2:34:58:43:79:e6:70:ed:cd:37:1a:51:5c:9b:ab:
d6:55:7e:4b:08:14:91:16:b1:4a:00:06:9f:0b:c1:
dc:fb:57:e1:ad:b2:ea:2d:d7:f9:93:f4:60:7e:ce:
5b:07:38:a2:d4:9f:ad:06:c8:36:aa:8d:2c:62:32:
5e:9f:05:bc:16:81:b8:87:77:50:22:fc:3e:74:2b:
ba:5c:c9:e3:7b:96:66:10:c9:3d:63:7e:d7:22:e8:
38:06:d6:4d:06:84:de:c2:29:50:7f:a0:af:7e:fb:
75:b8:b3:04:1e:a7:7d:bb:64:02:08:41:e6:98:c2:
ef:07:e0:b9:e9:9a:35:64:9b:e7:f6:75:05:78:a9:
28:f9:32:16:81:1c:d2:36:d7:48:2d:7b:1c:9d:c6:
3e:fc:41:66:83:5e:a8:be:67:02:d6:47:44:cf:96:
9e:de:d7:b4:80:37:5f:a5:3e:1e:01:d2:f8:a1:c8:
d2:9e:e6:37:11:32:e0:b3:ce:ee:7b:55:35:fd:09:
cf:ff:87:e9:b9:59:30:2b:6b:64:92:fc:e7:6b:8d:
a3:95:ed:0f:4f:66:49:11:09:7a:fb:64:fd:44:8e:
52:6b:05:17:bf:ed:7c:07:dc:dd:93:cc:12:c5:64:
c5:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:44:84:02:2B:05:AF:65:59:8A:02:DC:90:D2:E1:32:52:A3:44:F0
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/90SEAisFr2VZigLckNLhMlKjRPA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.128.0/22
Signature Algorithm: sha256WithRSAEncryption
11:c9:83:b5:d9:65:12:d8:af:e8:45:f6:2f:27:c6:da:ad:c2:
d9:7c:31:d4:07:83:44:c7:78:5b:0a:90:de:b0:7e:0c:b6:e2:
9c:10:c3:ef:5c:97:f4:97:56:f4:6d:45:9f:54:a2:e3:3f:50:
8f:45:6b:5c:4d:94:6a:01:6d:7e:e6:0b:58:3d:a6:6e:17:97:
dc:f3:63:fa:f4:57:1e:1c:f8:9e:a9:ec:de:bf:aa:a7:89:3d:
e2:49:14:9c:6d:ec:29:86:45:0d:c1:91:1e:3e:b0:21:cc:4c:
f2:d1:2a:45:dc:f3:ef:0c:e5:f6:f4:98:64:d0:e7:eb:6a:79:
8b:cf:32:91:19:b7:5f:d1:56:2f:2e:95:90:ae:29:df:25:8f:
62:1f:d1:98:85:54:1c:b8:8c:d6:4e:e0:92:0d:ac:30:a7:c0:
f9:9d:cd:63:31:0d:66:48:d3:05:e6:6d:d3:97:e3:6f:15:e4:
4a:63:c0:88:a2:83:e4:a3:27:85:5c:77:65:0c:20:8d:4f:87:
8c:69:61:54:8f:db:65:9c:77:08:96:31:00:6e:73:a3:d2:8c:
18:db:23:ce:12:02:55:b7:16:f5:14:fd:d1:49:c1:07:97:3b:
62:30:9c:22:3a:6f:99:a0:d5:ab:76:b5:3f:bd:30:e5:5a:26:
75:d8:fe:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org