Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/SEGV7lBZj1DLm2a41WzU3jQha6Q.roa
File: SEGV7lBZj1DLm2a41WzU3jQha6Q.roa (raw, json)
Hash identifier: twL6T0hv6c9mvHiMaPWneshRVhJpFLn0VgCNVA7X3b0=
Subject key identifier: 48:41:95:EE:50:59:8F:50:CB:9B:66:B8:D5:6C:D4:DE:34:21:6B:A4
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0AE3
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/SEGV7lBZj1DLm2a41WzU3jQha6Q.roa
Signing time: Tue 29 Sep 2020 10:07:45 +0000
ROA not before: Tue 29 Sep 2020 10:07:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 49.159.220.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2787 (0xae3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:07:45 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=484195EE50598F50CB9B66B8D56CD4DE34216BA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:31:5d:3b:cc:c9:91:7f:ff:21:55:b6:b7:58:
fb:cc:eb:43:cd:20:d5:42:0a:7f:2f:83:1e:89:91:
cb:5f:c0:06:6f:fd:b8:dd:1d:54:bf:37:c0:ca:ff:
4b:45:c2:97:ec:fe:eb:48:f4:bf:b2:bc:1e:11:20:
4d:0c:15:d7:34:f1:b4:a4:87:74:16:26:e0:88:ae:
53:02:a3:8d:f4:3a:27:e9:81:0d:29:60:90:b0:25:
e5:61:88:75:16:91:7a:9e:56:b4:c0:13:60:51:49:
d7:2a:2d:a2:f7:08:d9:72:83:4b:08:45:4f:d0:7c:
5f:40:a2:00:ca:f2:8c:ad:dd:01:18:b7:eb:aa:da:
29:d2:ff:b3:ce:9b:65:42:28:cd:4b:a3:25:2d:38:
1c:38:4c:5d:c0:ec:2b:1d:6a:7d:33:d0:b7:7a:bd:
28:6b:66:dd:0f:b0:c1:3a:fa:cc:26:c7:8d:0e:fd:
71:29:6e:82:f8:6b:0f:ef:4a:b6:09:42:45:35:d7:
a3:9f:b2:7c:b1:99:39:57:69:51:cf:c3:42:54:df:
7a:b1:86:54:cd:fc:b3:7a:5f:d9:1e:2e:a2:88:2f:
ce:a0:fb:47:f8:3c:06:02:da:51:16:06:41:3c:8b:
2f:68:80:03:0c:7b:7e:f4:89:17:0e:c3:9a:c0:6e:
36:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:41:95:EE:50:59:8F:50:CB:9B:66:B8:D5:6C:D4:DE:34:21:6B:A4
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/SEGV7lBZj1DLm2a41WzU3jQha6Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.220.0/22
Signature Algorithm: sha256WithRSAEncryption
89:b2:d2:b6:ff:b9:28:3b:4b:1f:a4:6f:b0:a3:99:c6:a9:7a:
fb:46:c3:95:ca:b6:72:6e:35:8a:d8:3a:79:81:5b:dd:b2:09:
c9:28:69:a6:a9:9b:03:6e:af:50:7c:51:e3:15:dd:63:0f:e8:
24:ab:a4:7e:69:72:24:7e:46:cc:98:4e:13:66:b3:eb:9d:d5:
d3:6e:a9:8b:47:c3:44:b1:44:df:97:b6:77:0a:2c:f3:43:c2:
aa:bc:12:f9:95:5f:43:3b:fc:6a:80:c4:6b:36:0e:8d:4a:36:
54:ca:84:d1:60:f7:3a:65:1a:bc:c7:32:8c:bc:33:1f:ca:cb:
5c:3f:02:68:7f:4f:97:19:bc:13:8e:ae:ae:41:b4:1f:0f:25:
0b:43:23:e3:89:4f:50:fd:61:31:b8:36:e2:4d:5e:7d:ba:47:
6e:25:f1:bc:74:23:97:c3:7a:3d:4d:6c:f4:0d:3b:b4:8d:10:
4f:f2:23:40:6e:7a:de:f3:71:25:31:df:b1:48:97:75:e9:2d:
fd:ab:68:d4:eb:af:7a:a5:e0:3e:e6:3d:9a:bd:dc:85:07:c2:
3b:f2:b5:19:70:de:fb:9b:77:5d:15:67:80:e7:0b:b4:cd:3a:
8a:30:51:b3:2a:09:2f:14:e0:99:b4:22:63:1e:4e:07:37:05:
3a:e4:7c:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:37 2023 by rpki-client on console-ams.rpki-client.org