Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LHBGpi5a-RFkyl_WVfY_AV3U3GQ.roa
File: LHBGpi5a-RFkyl_WVfY_AV3U3GQ.roa (raw, json)
Hash identifier: J96Py0hHyyORHqfofnRCrAtR/wNb1HWAQ838h5ERVm8=
Subject key identifier: 2C:70:46:A6:2E:5A:F9:11:64:CA:5F:D6:55:F6:3F:01:5D:D4:DC:64
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LHBGpi5a-RFkyl_WVfY_AV3U3GQ.roa
Signing time: Thu 15 Sep 2022 02:36:13 +0000
ROA not before: Thu 15 Sep 2022 02:36:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24165
IP address blocks: 49.158.132.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2C7046A62E5AF91164CA5FD655F63F015DD4DC64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:64:75:47:1d:9f:ea:68:30:0c:a7:fe:cf:f6:
84:db:e3:76:df:0e:ad:60:fe:b8:af:09:75:53:29:
fc:6e:7b:66:6b:f2:cd:79:fc:19:73:cf:c5:4f:75:
1f:a3:e2:cf:fa:a7:84:49:5b:34:7d:2b:d3:83:95:
5f:ed:6f:e6:39:3f:eb:66:9f:ed:1c:50:8c:f6:65:
49:22:69:e2:2f:89:ec:fd:c9:ff:30:ee:b3:63:88:
2a:7a:3a:ca:4c:87:df:5d:03:33:8d:f1:25:32:d8:
a1:05:ce:7e:79:40:7e:00:bb:5a:71:a8:f3:6a:9e:
17:f5:6f:3c:0c:08:13:99:76:d8:4b:eb:00:63:e7:
00:67:b7:5e:69:a9:5d:fb:0d:5e:83:9a:57:0c:44:
3f:66:eb:c3:26:9d:86:71:f5:7e:5e:83:b0:8b:a1:
d3:5f:42:13:5c:5f:91:1f:6b:1a:f6:30:68:ff:33:
ab:7b:80:80:c3:51:e4:a9:ac:6d:fd:7d:cf:90:91:
f5:d5:67:b9:e9:4c:11:52:a1:44:94:84:61:8d:58:
99:29:5a:54:c5:82:af:7d:4e:63:93:34:38:be:80:
3f:7b:77:2a:b9:19:50:98:64:cc:a3:41:c3:ba:cf:
a8:4d:e1:19:48:9c:13:c9:95:1a:a9:ce:3d:f9:12:
ec:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:70:46:A6:2E:5A:F9:11:64:CA:5F:D6:55:F6:3F:01:5D:D4:DC:64
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LHBGpi5a-RFkyl_WVfY_AV3U3GQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.132.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:dd:d1:69:81:01:39:61:c5:30:0d:ec:53:41:f0:cf:25:a3:
e6:57:8b:c4:3e:54:dc:c5:17:b2:d5:b5:f8:e5:04:13:69:58:
f2:48:4a:94:d6:f7:45:7d:9e:23:b4:63:a8:14:b5:4c:f7:cd:
82:20:52:2a:b8:04:37:8b:c4:74:45:2d:99:a4:dd:0f:ed:a0:
b0:98:b3:4c:76:fc:4d:2d:30:4a:60:77:64:a2:20:ec:b7:cf:
83:fe:77:20:4d:ee:62:ec:6d:d2:f7:5b:2a:bc:6c:70:b6:31:
77:19:73:f1:fd:e5:29:9b:6e:c1:5d:b4:66:ca:29:96:cf:cf:
55:3e:8e:37:03:d7:ff:9e:f7:31:07:59:26:6e:8a:9d:b0:52:
7d:6a:95:6d:a2:47:81:bd:72:3c:a4:8c:9e:71:fb:97:ec:e6:
4c:a1:db:4d:a5:8a:14:c7:8a:97:05:bd:59:35:85:80:e8:dd:
09:34:45:e9:8b:a1:2b:8b:d2:78:db:9f:e0:b6:81:7f:ec:d8:
ab:46:60:3d:05:0e:d7:ca:d2:19:5f:ea:98:09:59:e8:b6:94:
0c:06:a8:7a:63:30:ea:fc:93:24:99:34:bf:da:d6:e3:37:f5:
fd:82:0a:e4:f1:be:0b:c0:3b:44:2e:4c:78:ea:fd:d3:87:ed:
93:14:6a:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:46 2024 by rpki-client on console-ams.rpki-client.org