Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/QvySQLJRTw_ZAR0KSc9n2tpy3H0.roa
File: QvySQLJRTw_ZAR0KSc9n2tpy3H0.roa (raw, json)
Hash identifier: YZ8hXrhzL9k09Tt5tpqozYcjbtAk02GDUwtLI+5UlSg=
Subject key identifier: 42:FC:92:40:B2:51:4F:0F:D9:01:1D:0A:49:CF:67:DA:DA:72:DC:7D
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0ABF
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/QvySQLJRTw_ZAR0KSc9n2tpy3H0.roa
Signing time: Tue 29 Sep 2020 10:07:34 +0000
ROA not before: Tue 29 Sep 2020 10:07:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 49.158.16.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2751 (0xabf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:07:34 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=42FC9240B2514F0FD9011D0A49CF67DADA72DC7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:62:a5:c1:d4:49:ad:0d:a1:db:98:79:f1:00:
d8:c8:f1:93:73:52:55:76:6b:3c:65:3e:06:42:9a:
43:65:7e:d4:81:c8:ff:eb:68:a6:5c:81:37:6e:32:
37:d3:3a:6d:fd:01:31:4c:38:33:68:7f:3f:2f:d3:
56:c2:0c:fa:cb:e5:c2:bf:e7:f5:51:6c:63:51:e4:
33:c4:10:e4:2c:1d:f4:83:98:f8:99:a2:93:b0:cb:
0d:e8:43:7a:da:14:92:df:18:09:f1:b4:a9:bf:82:
f9:50:d7:25:0c:39:95:75:94:b8:0d:13:76:82:a0:
df:85:a1:64:aa:08:62:f0:6f:88:08:28:b8:03:fa:
c8:22:4d:f2:23:2b:c3:dd:e7:4c:20:3d:72:27:db:
f9:f9:3b:c3:a1:e4:d6:0c:f5:93:f2:93:74:f4:f7:
61:69:05:78:67:96:20:d0:e4:6c:92:87:3e:63:1f:
5c:f2:09:2e:f5:b8:39:2a:0f:f1:98:cf:dd:28:eb:
3f:22:92:dc:81:95:3e:e9:f7:ac:8f:0e:cb:5a:a6:
69:23:58:83:87:3d:05:c0:bd:97:66:36:93:c3:62:
68:97:21:e7:f6:8e:e3:2f:82:60:e1:b6:1d:05:bd:
74:6e:96:88:b0:31:bf:7a:60:61:06:64:a1:34:d1:
30:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:FC:92:40:B2:51:4F:0F:D9:01:1D:0A:49:CF:67:DA:DA:72:DC:7D
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/QvySQLJRTw_ZAR0KSc9n2tpy3H0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.16.0/21
Signature Algorithm: sha256WithRSAEncryption
68:a1:60:2c:68:08:d7:0f:76:94:30:e5:86:39:29:e4:c0:01:
1f:e7:dd:84:78:76:a4:4d:14:78:54:08:6e:68:6e:b1:9e:0f:
13:09:89:9c:51:af:11:91:ec:c2:59:22:09:2b:37:56:a1:59:
e7:5c:98:2a:4d:a9:de:87:c0:e8:51:20:99:fd:3e:b8:bf:e4:
b9:f1:b0:59:31:fd:3b:cd:24:11:f1:18:32:91:1d:5d:fa:34:
3d:03:1e:b7:94:48:2c:97:b1:70:d6:6b:52:d3:11:33:7a:26:
fc:5d:21:1a:8e:c6:d6:bc:07:5b:6e:5e:fa:af:7b:b2:60:64:
55:0a:3c:a9:f4:50:62:f2:e3:0f:ca:4a:13:35:ce:9e:65:fa:
53:99:a4:0a:cf:2b:d2:4e:ca:a1:6d:7a:bb:60:b5:df:22:ae:
e3:3f:2e:04:9d:bc:97:29:d8:2d:5a:58:02:73:3e:ca:b7:3a:
cf:c2:ef:8a:a3:5c:c0:55:07:eb:18:a9:fd:14:7e:02:55:51:
be:6b:15:33:67:90:90:23:5e:18:56:69:ca:49:a3:1a:0e:69:
21:e1:d9:17:df:e3:87:b2:01:66:6a:77:3e:43:88:d7:cc:89:
5d:a1:ca:37:2a:b2:e8:d9:74:6c:f0:cf:6d:58:90:0f:c3:b1:
f9:26:6f:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:48 2023 by rpki-client on console-fra.rpki-client.org