Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/P-1Oks8r35rYX2xgvjGpyvB2o24.roa
File: P-1Oks8r35rYX2xgvjGpyvB2o24.roa (raw, json)
Hash identifier: NqPdECbpG5/0um+2c2ZLz3nUHSVlNxdikBKedBD/sEk=
Subject key identifier: 3F:ED:4E:92:CF:2B:DF:9A:D8:5F:6C:60:BE:31:A9:CA:F0:76:A3:6E
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0F0B
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/P-1Oks8r35rYX2xgvjGpyvB2o24.roa
Signing time: Sun 07 Feb 2021 12:32:40 +0000
ROA not before: Sun 07 Feb 2021 12:32:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 49.159.8.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3851 (0xf0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:32:40 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3FED4E92CF2BDF9AD85F6C60BE31A9CAF076A36E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:45:18:20:3e:71:2d:b1:14:0c:55:2e:8c:70:
a5:f8:ce:12:22:f0:ef:31:d8:14:fe:13:63:b3:32:
7d:1b:80:6b:16:75:70:9c:1b:d3:e2:3c:7a:bf:ee:
76:1d:5c:c1:e5:a5:58:a6:bf:48:9a:b5:eb:94:f8:
f2:29:67:3d:c0:19:3b:d0:a0:98:47:1b:d8:3e:48:
57:45:61:20:08:32:b2:78:a9:53:25:6d:34:7f:f8:
a5:8e:88:19:ef:18:29:9c:e2:d7:da:e4:05:c5:42:
24:99:4b:01:f2:b4:e8:56:1e:b7:50:7e:71:a4:39:
1e:d3:3f:1a:b9:b8:23:f6:05:c2:e9:d4:3e:f0:2b:
6a:90:59:04:42:aa:1e:52:8f:9a:8f:bc:83:96:74:
f8:44:5b:39:48:56:4f:6f:7c:66:c5:07:33:51:c5:
09:08:5a:ee:02:24:4d:65:55:a6:65:12:5c:10:cb:
7e:80:8a:2d:3a:db:70:df:74:eb:f6:90:d0:e7:b8:
6a:30:25:3e:74:be:5e:9b:36:06:d8:62:35:23:b6:
22:22:77:c9:06:4f:ce:3c:63:87:32:f3:0c:ed:0c:
ba:c5:d5:0b:8e:bc:e5:d1:57:88:4e:b7:05:0b:b1:
98:25:bd:3b:eb:0b:df:b7:2e:91:d5:ed:8f:b5:e3:
c5:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:ED:4E:92:CF:2B:DF:9A:D8:5F:6C:60:BE:31:A9:CA:F0:76:A3:6E
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/P-1Oks8r35rYX2xgvjGpyvB2o24.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.8.0/21
Signature Algorithm: sha256WithRSAEncryption
3e:88:c5:61:91:97:f7:39:06:17:1e:a6:ac:6e:0c:a0:6f:df:
44:3e:98:63:35:4c:ca:9f:86:74:29:66:3d:bc:c9:44:a5:37:
35:4d:e0:ff:0a:c5:5c:44:76:3f:b0:68:38:f8:76:93:b6:73:
e2:80:1e:bf:df:5d:6e:2a:c7:2d:a7:07:ec:69:c3:e9:54:97:
be:bd:d9:10:89:e2:11:d9:e6:b3:de:5b:0d:04:86:a9:08:86:
e3:47:1f:bc:b6:a7:8e:cc:f9:d3:5c:38:78:68:ab:ec:7c:9f:
ca:d1:9d:52:c7:89:7a:de:47:98:83:a4:26:15:14:09:b8:a8:
58:1b:76:91:0a:08:b5:d3:29:7f:99:cf:70:5d:c1:65:28:60:
8e:2b:8e:05:e8:a3:89:02:85:0e:5a:17:8b:d1:49:1f:cf:bf:
62:68:14:b8:e6:b3:69:40:47:ad:c6:d3:a2:05:81:ca:ce:37:
01:1c:c1:ea:7d:bb:05:e3:fe:94:c3:e3:80:f1:5d:51:43:9b:
86:6b:7b:22:5d:9a:f2:d1:9d:19:c3:98:06:83:fe:63:87:d3:
99:6a:4e:61:cd:cb:1f:75:2e:a3:04:f7:17:ce:b6:ae:9f:87:
85:79:8e:2f:fa:21:9a:fc:ad:e9:4f:02:a2:88:ef:d5:d9:c3:
29:d4:21:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:47 2024 by rpki-client on console-ams.rpki-client.org