Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/QO1BPEb7Rx6HrIwcaRtcEFtD_qQ.roa
File: QO1BPEb7Rx6HrIwcaRtcEFtD_qQ.roa (raw, json)
Hash identifier: Mo0IN71PFm/UcgBAABxzT6JDyQ7LqpbeQ5I+9i9f9dM=
Subject key identifier: 40:ED:41:3C:46:FB:47:1E:87:AC:8C:1C:69:1B:5C:10:5B:43:FE:A4
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/QO1BPEb7Rx6HrIwcaRtcEFtD_qQ.roa
Signing time: Thu 15 Sep 2022 02:36:30 +0000
ROA not before: Thu 15 Sep 2022 02:36:30 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.159.240.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:30 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=40ED413C46FB471E87AC8C1C691B5C105B43FEA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:b7:25:e3:74:c8:29:99:17:f9:1f:6b:81:4b:
35:ef:20:64:45:a4:07:c1:44:18:d3:03:44:50:20:
09:a3:e7:81:9c:68:ed:e0:ed:3b:b9:61:26:13:4a:
cc:d7:99:ea:76:79:4b:54:99:2d:33:25:3d:f4:b2:
5c:fe:91:31:84:88:82:be:e7:a9:cb:77:2d:82:7e:
2b:57:a4:fa:fc:bb:56:9c:1f:02:79:03:3c:6a:0e:
d4:64:9b:7b:9e:27:54:02:3f:ab:d7:1c:51:18:65:
c5:2b:8c:fd:8d:c6:10:b7:06:fd:3d:c8:60:82:23:
12:08:f8:88:d6:1e:46:02:7c:00:1f:87:ad:bf:14:
e2:2a:b7:5b:c2:5a:44:52:76:b7:b6:51:e5:a4:6c:
09:5f:80:5f:b1:78:69:8f:ac:5d:2e:eb:74:cb:b7:
a2:be:e6:7f:51:4b:72:44:ca:f2:b0:e6:4d:b1:7b:
16:61:fc:af:d4:72:42:ea:c6:cb:8f:60:b1:be:5a:
83:48:02:fd:30:a6:60:6b:ab:e0:91:f6:6b:b3:6f:
7f:b0:95:94:62:7c:13:f1:06:67:ab:8d:6d:b8:07:
8f:50:e7:22:f9:f0:11:22:c4:fe:84:67:45:f9:c2:
0e:70:c3:69:88:17:8e:02:28:3f:61:82:53:05:66:
21:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:ED:41:3C:46:FB:47:1E:87:AC:8C:1C:69:1B:5C:10:5B:43:FE:A4
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/QO1BPEb7Rx6HrIwcaRtcEFtD_qQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.240.0/21
Signature Algorithm: sha256WithRSAEncryption
3d:c3:d2:39:69:1e:f7:e8:a7:01:41:3b:f1:72:74:24:0f:35:
a0:7e:7a:ae:e7:86:47:71:8b:d6:d1:71:74:a9:1d:d6:55:20:
ce:ba:fd:35:77:ca:90:4d:f2:23:49:f7:36:76:24:ad:4a:3e:
a2:8e:52:1b:46:a3:65:10:23:2d:15:25:a7:dc:8a:b4:8e:96:
0d:08:82:c9:26:f4:ba:81:2c:fa:04:86:73:af:f3:50:0c:c0:
c0:ec:cf:79:00:8e:1e:45:b5:b6:ad:d0:87:2c:8d:16:55:1e:
c8:ab:52:b8:07:ef:d1:1e:b2:3c:ca:89:2b:2e:6e:4e:78:cd:
f0:3e:d5:f4:cf:00:c8:fe:45:42:21:62:80:d5:23:e7:3a:de:
cd:0e:cb:f6:ac:60:f3:6a:df:4c:00:0a:d1:23:e5:05:08:af:
39:48:63:25:8e:66:73:1a:e0:d2:36:19:2f:09:47:0d:1d:d5:
83:b8:21:12:b3:8a:7a:58:8e:ab:dc:bc:c6:61:b7:7b:3c:65:
a6:a8:17:56:79:91:b5:c0:71:7f:c4:0e:4d:2b:0d:50:f6:a8:
4e:1a:6f:1e:dc:c9:31:4e:9d:41:53:86:b5:d9:28:41:5d:f5:
1e:71:e5:c5:ae:af:c0:af:2b:ce:0c:81:00:04:8c:0b:79:99:
32:90:56:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org