Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HSnfWQkJbvSLb_R-GBxlSEWZ27A.roa
File: HSnfWQkJbvSLb_R-GBxlSEWZ27A.roa (raw, json)
Hash identifier: tV/jJS+2WdDLEp4JsbH68MdAVCypmn3BCwiQ2j/0hQs=
Subject key identifier: 1D:29:DF:59:09:09:6E:F4:8B:6F:F4:7E:18:1C:65:48:45:99:DB:B0
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HSnfWQkJbvSLb_R-GBxlSEWZ27A.roa
Signing time: Thu 15 Sep 2022 02:36:10 +0000
ROA not before: Thu 15 Sep 2022 02:36:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.159.136.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:10 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1D29DF5909096EF48B6FF47E181C65484599DBB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b9:73:61:ee:6a:be:32:2a:c5:d5:98:fb:35:
8c:ae:b1:dd:23:7a:0e:fd:13:ac:b0:95:3d:7f:f2:
77:5b:cf:af:39:36:da:1b:d5:f5:f9:8c:f0:8e:65:
06:f5:19:6d:bf:83:ec:b2:7d:c6:dd:0f:34:9f:c3:
ab:c7:62:bb:ba:be:66:0e:5a:70:8e:55:c9:0e:a4:
65:1a:b6:44:fc:b4:bb:88:40:dc:6e:56:3d:87:16:
d7:2a:95:01:44:ab:3e:09:0c:17:c8:a8:78:98:b8:
bd:4e:8d:13:d5:6e:6e:8c:d1:ef:6e:f9:e2:4c:c7:
e8:38:bb:bb:6c:c3:b2:c5:bb:86:ff:49:32:fc:cd:
13:84:9f:70:b0:fe:ed:39:d7:d6:59:ab:93:a9:f7:
e5:7f:68:92:39:f7:a3:0e:bb:2c:ab:b4:bd:cd:e7:
47:0c:c1:6d:89:51:94:3e:d7:fe:f6:47:19:6a:c8:
05:c3:b9:d8:3d:28:1a:68:9d:b5:f4:38:63:55:ac:
db:13:a4:16:35:5b:f6:d8:44:75:da:88:8e:ed:94:
ac:6b:c7:19:31:63:14:18:4a:fb:04:19:db:18:36:
14:e1:27:28:3a:f6:d9:16:fd:ae:ef:cc:d4:a5:9a:
c5:45:db:6f:83:12:9f:2a:86:62:7a:96:78:f7:a4:
d0:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:29:DF:59:09:09:6E:F4:8B:6F:F4:7E:18:1C:65:48:45:99:DB:B0
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HSnfWQkJbvSLb_R-GBxlSEWZ27A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.136.0/21
Signature Algorithm: sha256WithRSAEncryption
26:8c:62:76:5d:95:f0:02:99:18:d0:00:80:5d:12:6f:cc:52:
91:76:79:05:3c:11:76:9b:6a:2a:5a:1c:16:bc:f2:14:db:64:
3f:22:43:c5:73:c4:1e:23:f2:74:cb:49:a1:eb:e3:89:09:0d:
78:5d:f2:be:8b:16:b4:6e:9a:a1:b2:5d:d7:3a:d3:a6:5c:13:
e7:8a:78:08:73:6e:0d:d8:16:59:6e:8d:26:dc:02:65:b6:7e:
9a:12:d7:a8:d9:d3:5f:3f:52:34:5e:cb:60:99:df:30:6b:09:
7f:d9:df:ad:2a:d4:98:ce:05:e3:c4:4d:c5:cc:0f:52:37:c9:
8d:9c:e6:9f:e1:da:bd:f2:99:99:d6:7e:fc:f3:e2:d4:12:95:
35:a1:9e:85:b3:cd:ef:35:d6:dd:77:34:6a:1f:76:67:e7:a5:
20:6e:d9:04:76:41:12:a1:3f:f4:3b:49:9e:b4:62:d3:2b:ef:
7a:4f:48:fc:75:30:b9:f6:84:f9:6a:26:71:f9:40:8f:a3:a3:
a0:0e:7e:02:9c:a4:88:37:3e:9f:bc:f9:f2:ca:cf:5b:5b:86:
db:33:13:10:5b:f8:3d:61:e1:f2:19:75:52:eb:87:c9:85:e5:
97:84:3f:a4:46:69:83:0d:87:a2:21:7a:cc:f9:2f:51:c3:7f:
14:9b:46:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org