Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MeLAXQmtI1vVpGmZU518pimhifc.roa
File: MeLAXQmtI1vVpGmZU518pimhifc.roa (raw, json)
Hash identifier: /sM59UJjDLfd+BhBWMAclAJEaclOYrhwWB9aW6Pow5c=
Subject key identifier: 31:E2:C0:5D:09:AD:23:5B:D5:A4:69:99:53:9D:7C:A6:29:A1:89:F7
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0F01
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MeLAXQmtI1vVpGmZU518pimhifc.roa
Signing time: Sun 07 Feb 2021 12:32:32 +0000
ROA not before: Sun 07 Feb 2021 12:32:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 49.158.64.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3841 (0xf01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:32:32 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=31E2C05D09AD235BD5A46999539D7CA629A189F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d8:8d:ea:90:c4:3f:32:b8:6b:10:c5:35:3c:
83:2b:92:20:87:c2:17:57:d5:37:af:4f:3b:8a:0d:
d5:c5:65:be:57:5c:83:7f:f0:85:0b:ae:f9:1d:fa:
98:0a:d1:56:7e:51:45:d2:ef:a9:f1:20:ac:1e:d3:
1d:05:c5:82:04:29:33:6b:37:9b:5f:02:0c:98:27:
d0:e2:d2:0e:a9:e9:c5:11:6d:cc:e1:b8:64:cf:64:
e2:df:7a:5b:4f:94:91:18:d2:eb:d5:2d:62:13:c7:
ab:44:85:ea:b4:24:2d:b2:7e:70:ff:e4:cb:d9:f3:
4b:ac:44:b5:22:14:7e:aa:96:ef:ac:95:78:cc:87:
5a:09:09:22:bc:78:df:dc:e1:32:9d:5c:7d:ae:cc:
ea:0b:4c:15:66:33:6d:1f:15:27:70:06:dc:26:12:
ce:a8:b5:a3:aa:70:54:29:de:69:b3:af:b5:08:08:
c1:1e:3c:4a:f1:df:a6:5a:c3:5e:b9:d6:c4:8e:06:
c4:d0:e8:69:0f:c8:8c:ce:0b:e2:89:35:19:d4:88:
d9:14:ea:19:1e:08:6e:9c:e9:9f:06:13:63:f0:af:
6e:c6:39:a9:5a:df:31:7d:3b:ac:50:8d:6f:b2:1a:
d7:75:d9:66:1d:41:64:bf:65:ec:ff:a7:fd:0d:77:
5b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:E2:C0:5D:09:AD:23:5B:D5:A4:69:99:53:9D:7C:A6:29:A1:89:F7
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MeLAXQmtI1vVpGmZU518pimhifc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.64.0/20
Signature Algorithm: sha256WithRSAEncryption
2e:fb:93:86:d2:2a:96:84:ea:42:f6:5c:3b:a5:e8:62:7f:3d:
22:78:8b:16:e0:db:5a:26:92:b7:53:a3:b0:61:24:e7:ce:cd:
f8:19:18:d3:cf:bb:c9:1a:c5:88:7b:26:3b:34:ab:6c:1e:fd:
49:2a:3a:bb:f0:65:9e:45:95:67:62:58:df:a4:54:3c:65:16:
8a:1e:a0:e8:69:dd:82:7b:18:df:64:7b:fa:d6:d0:3b:3b:49:
4f:0a:45:10:6e:24:94:6c:3b:01:43:e2:13:05:6c:b4:00:88:
42:bd:18:85:96:70:8d:e5:fc:a0:e3:11:eb:a1:4a:1c:6a:7a:
f0:e1:a7:db:54:db:14:7b:36:65:65:e1:89:3a:97:fe:35:db:
39:08:74:1f:3d:76:8b:f8:1c:10:1c:cc:d8:d6:b9:df:1c:b9:
bc:c8:db:f3:13:a3:39:c0:c5:f0:03:53:a1:e6:42:43:e6:b1:
46:aa:a4:ab:28:44:e0:ed:88:5e:bf:da:7c:1f:b0:21:84:6a:
3c:5a:13:7b:ac:b7:1d:87:f4:cc:c0:40:53:b0:45:79:f6:74:
73:49:b9:a6:54:6f:55:49:a5:50:1f:d6:c3:f8:cd:6a:b1:93:
fa:01:71:d1:3e:52:29:8a:ce:db:b4:e7:ca:e2:4f:14:1b:9a:
c1:3a:91:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:48 2023 by rpki-client on console-fra.rpki-client.org