Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BPt0sJyrOkWRYaBNbxLnjX3jUog.roa
File: BPt0sJyrOkWRYaBNbxLnjX3jUog.roa (raw, json)
Hash identifier: /HB7Rjd+KAykUUnTR8BHW+8T+RWKyxWZKupgi8rNMBE=
Subject key identifier: 04:FB:74:B0:9C:AB:3A:45:91:61:A0:4D:6F:12:E7:8D:7D:E3:52:88
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 129A
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BPt0sJyrOkWRYaBNbxLnjX3jUog.roa
Signing time: Wed 29 Sep 2021 02:54:46 +0000
ROA not before: Wed 29 Sep 2021 02:54:46 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 49.158.168.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4762 (0x129a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:46 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=04FB74B09CAB3A459161A04D6F12E78D7DE35288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:66:91:b3:2e:e3:18:37:07:bd:98:aa:ca:1b:
8b:7c:b8:5d:5b:84:4e:65:14:a4:9c:7e:90:8c:86:
81:e7:06:90:61:2f:14:0f:07:d0:fb:ad:86:9c:da:
b3:f6:a1:5d:9b:7c:22:39:18:44:af:1b:da:34:8b:
19:48:55:68:cc:0f:f7:55:64:66:d0:60:d3:b4:1c:
3f:46:97:a9:20:00:b5:a2:40:57:fe:3c:75:14:73:
4a:41:77:20:af:da:84:aa:46:38:19:3b:a4:93:5c:
b5:bd:88:ca:53:b1:6b:57:7f:ce:1f:cb:ba:7b:36:
42:59:b1:d2:5d:30:c4:7c:d7:b0:43:88:9a:c5:a9:
8e:02:c7:e8:02:19:b5:e4:b9:23:1e:0c:e1:4c:7e:
0a:f9:47:3c:48:b8:9f:53:03:f7:a3:9e:ae:2b:40:
20:b5:26:8a:fd:1d:68:42:75:a5:50:88:99:dc:eb:
51:4b:40:90:36:27:c6:25:59:dd:81:63:f4:f7:40:
57:84:83:45:d2:c2:99:21:8e:f4:7d:5c:dc:dd:e9:
f4:8b:2c:d8:04:58:15:3d:de:1a:bc:73:d7:5a:ca:
43:fa:d5:32:86:50:c9:c3:82:79:5b:a5:c8:1f:cc:
27:44:6f:01:5e:db:1c:4c:ff:5f:4f:92:7c:0e:69:
15:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:FB:74:B0:9C:AB:3A:45:91:61:A0:4D:6F:12:E7:8D:7D:E3:52:88
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BPt0sJyrOkWRYaBNbxLnjX3jUog.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.168.0/21
Signature Algorithm: sha256WithRSAEncryption
76:48:9a:68:f7:0c:03:c9:46:fa:25:22:c9:3b:1b:50:c2:5e:
27:64:32:c7:a5:ee:5c:70:48:b7:0d:7e:ae:00:bc:b7:ac:5a:
4a:00:2a:cf:ec:c6:58:ff:61:39:13:61:6c:96:57:40:ab:eb:
2e:6d:4f:43:1e:de:87:75:7c:12:66:11:c5:3c:39:70:18:17:
9e:e3:ed:2f:7d:b3:66:e7:cc:48:3d:20:3c:a1:d2:02:9c:04:
0d:3d:0d:39:a2:0c:fc:3a:4a:41:a3:1e:b9:19:71:fd:1d:a1:
26:9a:10:44:73:31:dc:04:9a:37:8a:b3:1c:54:39:2a:98:7b:
ed:7e:eb:a5:c9:b3:4e:f0:67:be:fa:81:44:6d:19:61:3a:f3:
ce:eb:3c:91:66:86:fa:6f:30:e8:f1:b3:90:31:63:91:7d:ab:
d7:81:79:53:78:fa:eb:22:30:b7:8c:a0:c9:f2:da:b9:80:8f:
8c:a1:d1:f9:40:f8:43:a2:ec:98:d9:d0:d1:d0:b5:fb:a9:61:
e0:8b:9d:e6:92:ac:e0:4f:59:35:a3:29:e1:9a:61:87:81:72:
e4:f9:93:2e:d4:f5:96:6d:b2:ce:1f:46:54:73:76:d6:b0:70:
8a:d1:54:a7:ab:de:e0:d3:13:5b:1a:2f:c0:f2:7a:da:7f:48:
dd:06:47:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org