Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MDRUqYDhwlJW2h2Dinix8k-Nmjs.roa
File: MDRUqYDhwlJW2h2Dinix8k-Nmjs.roa (raw, json)
Hash identifier: Vx7v146J0CCD4Q2IPFzyavaOhlm+4yIs0/8Aou7qgWo=
Subject key identifier: 30:34:54:A9:80:E1:C2:52:56:DA:1D:83:8A:78:B1:F2:4F:8D:9A:3B
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MDRUqYDhwlJW2h2Dinix8k-Nmjs.roa
Signing time: Thu 15 Sep 2022 02:36:01 +0000
ROA not before: Thu 15 Sep 2022 02:36:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.158.208.0/21 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=303454A980E1C25256DA1D838A78B1F24F8D9A3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:45:3e:1b:a7:70:60:6a:13:3b:75:e4:ee:da:
65:bf:c1:f5:f4:89:ab:12:e4:81:72:2d:7b:0f:8a:
6e:c2:64:4c:b1:96:d5:df:ad:82:a3:d7:ac:d8:f5:
19:1a:a7:40:48:fa:f2:55:e5:89:aa:15:a3:e2:b1:
1f:99:42:0e:85:34:19:05:2d:b5:6c:b6:e7:c6:ef:
53:f9:04:4f:7b:49:8e:45:0a:12:70:05:a6:f6:0b:
0c:9c:7f:54:20:75:eb:99:00:49:b8:47:7b:1a:83:
b5:e5:90:d2:6e:63:8b:34:0c:f1:ea:06:47:08:14:
aa:ac:1c:7f:a7:94:94:de:5b:b8:1a:85:e8:18:cd:
b3:0d:e2:75:e5:35:6e:3e:3e:3d:03:34:64:91:44:
60:01:72:9c:1e:d5:5c:11:03:3b:20:59:7c:80:cb:
ad:53:2d:7a:a5:0f:0c:27:f6:85:04:7d:6b:99:9f:
33:ee:c1:6a:bc:90:67:e2:d0:4e:37:3b:8b:ad:2a:
37:19:44:58:5f:9c:f8:cf:83:f9:49:bd:ba:60:75:
40:0d:99:77:f4:53:dd:aa:4b:01:cf:3b:df:29:ac:
6a:74:ca:a4:44:5c:45:3e:25:c2:78:fe:bf:04:c4:
33:e8:0c:20:1b:51:97:de:e5:97:b7:6b:6b:5b:f8:
05:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:34:54:A9:80:E1:C2:52:56:DA:1D:83:8A:78:B1:F2:4F:8D:9A:3B
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MDRUqYDhwlJW2h2Dinix8k-Nmjs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.208.0/21
Signature Algorithm: sha256WithRSAEncryption
1f:73:16:d5:a1:a2:ef:02:89:4f:2d:ee:97:07:54:f8:a9:62:
44:2d:6a:05:d1:f4:96:bd:b8:dd:6b:8e:c3:1c:9a:f5:0d:97:
ef:ff:67:3e:85:0f:ed:f1:85:6c:cd:04:d3:8b:20:f5:fe:a0:
94:ca:e6:05:a7:74:11:13:a3:f6:d9:e3:20:e4:1f:d8:f8:dc:
03:d0:f5:8f:11:bf:88:d2:ec:d8:51:6d:69:b7:c9:f3:fc:a1:
ff:e4:fd:d4:d0:47:63:6e:7e:60:31:17:ca:48:92:72:50:a8:
5d:0c:d6:2a:71:4f:85:a3:63:99:ee:4f:4c:49:78:48:ae:1a:
19:90:fa:66:95:b6:76:5a:bb:75:0c:27:b7:01:f3:f6:08:70:
1a:15:ca:af:f0:f4:7c:2c:07:5b:e9:cd:e7:fb:30:86:d9:d4:
0d:d1:d2:1f:e9:8c:bc:cf:b2:d0:b2:ef:fa:76:d1:4f:4d:a7:
74:2d:2a:5d:b6:f1:f1:d0:e6:30:44:74:9c:62:22:d9:fd:9d:
75:67:3d:a6:11:55:62:dd:ed:5a:4b:d0:d6:28:85:e3:e5:f5:
3c:53:85:b3:54:b5:5f:1f:f9:2f:50:6c:6a:b2:df:1a:b6:ba:
d2:de:b3:fc:1f:ef:6c:00:12:13:ff:df:f2:e5:2b:b8:e1:17:
7b:81:9e:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org