Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/9aXlURulqB-kR0-fpU1Pdvjy6q8.roa
File: 9aXlURulqB-kR0-fpU1Pdvjy6q8.roa (raw, json)
Hash identifier: Rev+ipxGa45pkaU/eOSf5oSxmrcA1MkajyPwdtctQWM=
Subject key identifier: F5:A5:E5:51:1B:A5:A8:1F:A4:47:4F:9F:A5:4D:4F:76:F8:F2:EA:AF
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0FA3
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/9aXlURulqB-kR0-fpU1Pdvjy6q8.roa
Signing time: Sun 07 Feb 2021 12:35:19 +0000
ROA not before: Sun 07 Feb 2021 12:35:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 49.158.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4003 (0xfa3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:35:19 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F5A5E5511BA5A81FA4474F9FA54D4F76F8F2EAAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:99:04:3c:60:ac:96:e1:2e:e2:92:d8:fe:04:
eb:17:6c:56:42:15:94:ef:d6:34:a7:90:2f:a9:d2:
3b:6f:57:3d:58:a1:76:0f:82:19:27:de:e4:c1:13:
ff:0f:2c:86:50:5f:72:f0:09:fb:0f:2e:a9:cc:4b:
62:99:bd:3a:20:59:4a:69:a9:f7:25:01:c0:ec:f7:
2a:f7:b4:cc:da:0c:04:81:dd:fb:b2:1e:48:92:62:
68:fe:56:be:e5:ac:cf:a4:6e:01:90:b6:4e:53:03:
9c:e1:56:85:46:8c:36:b8:6a:2b:e2:87:1f:11:ff:
d2:3e:5c:8a:d9:f9:62:e0:bc:28:5d:f8:b5:4c:56:
fb:72:22:83:54:a2:59:b0:ea:e8:d3:95:05:80:d4:
c7:dc:5b:1b:3e:0b:11:7a:20:01:10:08:15:14:ec:
63:9e:e4:34:66:40:ba:ec:58:e5:9e:a4:da:05:b0:
63:6a:58:3a:3c:d3:92:ce:c1:44:e7:3f:5b:8c:87:
73:ab:70:b7:05:ab:6f:39:36:90:99:32:81:82:f0:
90:fd:3f:70:e2:f4:5f:52:61:3b:c1:ec:c7:64:50:
b0:8d:0b:c3:ba:62:a4:dd:2d:50:3a:fd:29:4f:57:
ff:64:7b:94:4c:41:0a:d4:64:cb:88:ff:69:05:99:
5a:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:A5:E5:51:1B:A5:A8:1F:A4:47:4F:9F:A5:4D:4F:76:F8:F2:EA:AF
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/9aXlURulqB-kR0-fpU1Pdvjy6q8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.120.0/22
Signature Algorithm: sha256WithRSAEncryption
68:ff:d3:23:bb:49:ed:2b:74:1e:3f:6f:89:4b:b0:93:d5:49:
0a:24:b4:b3:82:60:80:97:f4:9d:c6:e4:c7:9f:51:52:cf:65:
ce:b1:00:ef:67:bc:44:9c:5d:4e:f7:33:a8:41:99:75:2e:5a:
da:20:e2:85:05:55:2a:a0:17:47:0e:f1:8d:05:b4:55:db:a3:
4a:45:d0:92:40:cd:1a:98:d8:65:fc:dc:5b:2a:a4:17:e4:2d:
c8:49:67:ee:9f:b4:48:f6:34:dc:38:09:7c:56:6d:54:a7:0b:
2a:80:05:bd:3c:dd:07:32:fa:c5:ea:07:7f:95:bf:18:d0:42:
ff:cc:4f:8d:e2:e8:91:8b:72:ca:f0:e0:46:73:71:15:01:52:
4b:3f:dd:ec:a1:6c:11:83:9a:91:ec:5f:ad:a0:48:48:a0:71:
33:27:36:e2:e6:fe:b5:3f:32:be:5b:bf:5a:b8:00:52:3a:39:
cb:71:de:54:ca:f1:e3:a2:9b:d5:0d:15:51:78:dc:59:69:3d:
7d:6a:7d:83:8a:32:c1:bb:0e:e9:d4:f1:65:9f:07:f1:58:f1:
5c:c0:c3:c0:19:1a:4f:b9:7a:d7:15:32:06:01:59:53:fd:00:
85:e0:5a:11:f2:f6:00:be:2a:3b:f0:60:86:9b:e0:0c:a8:49:
9b:d9:8e:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:45 2024 by rpki-client on console-ams.rpki-client.org