Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JBtimlcnZSgfxeLPYgzWhX23S78.roa
File: JBtimlcnZSgfxeLPYgzWhX23S78.roa (raw, json)
Hash identifier: pOs9ESSuAdh42pm0afh9rLOVy7nTqElHdBPyGQbWsgc=
Subject key identifier: 24:1B:62:9A:57:27:65:28:1F:C5:E2:CF:62:0C:D6:85:7D:B7:4B:BF
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 195B
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JBtimlcnZSgfxeLPYgzWhX23S78.roa
Signing time: Sat 22 Oct 2022 06:06:25 +0000
ROA not before: Sat 22 Oct 2022 06:06:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.158.240.0/21 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6491 (0x195b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:06:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=241B629A572765281FC5E2CF620CD6857DB74BBF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:9a:dd:45:fd:fe:6f:b7:e7:db:86:75:59:ec:
05:f2:50:bf:fa:c6:2c:c4:9f:bd:48:13:dc:a3:80:
14:de:a0:90:6c:e4:70:ae:1c:b0:90:f8:eb:f3:2a:
68:c7:50:ad:dd:61:59:53:93:32:4d:25:d3:d9:98:
d6:57:6a:f6:a3:a4:cc:a2:d0:f5:62:dd:43:d2:6f:
06:e1:49:08:d3:85:29:74:9d:2b:b2:45:f0:df:f6:
bb:f1:1d:c2:1d:44:ca:72:50:2e:9e:4c:3a:47:1d:
5f:4e:f6:b9:4e:e5:de:fd:0a:4b:26:5e:94:34:1b:
77:c1:ae:2a:85:78:e5:48:94:39:48:d5:26:a6:d8:
68:40:94:0b:51:53:50:3a:cf:07:c7:e3:8b:a3:a8:
ee:8a:9b:86:96:9b:72:7a:85:58:35:0c:ec:35:ea:
d0:71:0b:c4:42:f5:8f:a0:37:55:50:12:48:2b:97:
3a:d6:f6:c2:63:ce:f1:59:0b:f8:1d:5f:07:9e:1f:
ae:59:b5:18:53:ae:83:cd:76:90:27:fd:11:b9:c2:
3d:35:48:f6:e4:89:ff:7b:f6:4f:7f:70:14:e1:9f:
08:df:7d:4c:81:c7:6a:7c:01:c7:c8:d3:53:be:8b:
73:b6:59:4d:b9:d9:5d:1d:6b:7e:a0:44:e5:f6:f3:
12:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:1B:62:9A:57:27:65:28:1F:C5:E2:CF:62:0C:D6:85:7D:B7:4B:BF
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JBtimlcnZSgfxeLPYgzWhX23S78.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.240.0/21
Signature Algorithm: sha256WithRSAEncryption
49:f1:44:31:60:ee:6b:96:e8:80:8b:27:55:a3:b5:49:07:bb:
e8:b6:49:17:83:1c:ed:88:34:f4:7e:9d:89:ed:e8:b9:16:55:
38:e5:13:13:40:ba:17:40:36:d2:ba:2b:98:4b:eb:c9:c7:9a:
56:50:db:b9:53:49:42:ce:85:67:8c:55:60:c7:65:39:68:ef:
a7:1a:52:0b:36:86:7e:2f:87:c9:6a:32:ad:28:1a:1f:d1:26:
22:cc:7b:8e:b2:9a:ba:a5:e7:4a:42:c8:18:81:c9:1d:0e:80:
62:a9:f5:df:4b:33:c3:bc:14:8f:54:9e:4b:96:49:8b:31:2f:
2f:cc:82:93:98:3e:43:d0:1b:4b:66:a7:fc:3e:4e:96:90:7e:
97:a6:84:04:6c:7e:4e:5d:57:dc:91:30:7e:90:66:a4:b8:fb:
74:42:4a:42:a3:00:05:9a:eb:d1:db:09:2e:d9:63:1a:5f:c2:
0e:72:a1:c0:11:ef:95:39:50:8e:45:00:dd:bf:33:22:f5:3b:
1a:00:7a:44:4b:f2:6e:e0:b8:10:c9:60:b6:40:84:59:85:8b:
1e:71:77:9c:c4:59:8e:67:5d:e0:4d:48:68:ab:86:7e:ff:10:
8a:b3:29:07:c8:4c:9b:29:85:3c:0e:b7:1a:24:72:e5:c4:b6:
f6:8d:6f:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org