Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/T7BIOI2m4ZWBPc49UVOxnq1FwRg.roa
File: T7BIOI2m4ZWBPc49UVOxnq1FwRg.roa (raw, json)
Hash identifier: je94LLy2uF7EEzg9vKcszXWUNRha8kBC1bD0AqmnRa0=
Subject key identifier: 4F:B0:48:38:8D:A6:E1:95:81:3D:CE:3D:51:53:B1:9E:AD:45:C1:18
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1033
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/T7BIOI2m4ZWBPc49UVOxnq1FwRg.roa
Signing time: Sun 07 Feb 2021 12:43:32 +0000
ROA not before: Sun 07 Feb 2021 12:43:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 49.159.64.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4147 (0x1033)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:43:32 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4FB048388DA6E195813DCE3D5153B19EAD45C118
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:7f:d0:56:70:c3:41:92:64:4b:de:22:5a:30:
64:07:00:7c:bd:44:12:ec:c7:d0:11:7f:0a:f9:fa:
47:0b:5c:45:ae:1b:bd:41:24:1a:47:e1:23:53:8e:
90:14:5d:62:59:0b:59:2d:e9:19:a7:f8:ce:eb:bf:
4d:dc:7f:23:2b:d3:c4:a1:97:d8:c9:c8:f6:76:84:
ac:55:f3:6f:31:0f:f4:bd:e7:17:d4:25:26:39:09:
5b:1d:b3:69:b0:66:5c:1c:6e:89:e1:bd:0c:22:d4:
e2:c7:b8:96:f7:03:0d:10:4d:d6:c2:bc:08:80:99:
77:8b:d7:86:10:29:65:c5:6c:e9:1b:69:78:20:1b:
cb:85:3b:01:b2:53:9b:30:c4:87:a3:65:94:f7:15:
3d:e8:6a:86:ab:f9:59:4f:39:c0:70:25:6f:91:8c:
38:9f:f0:aa:9d:10:c3:e1:f8:06:99:3b:b6:20:af:
dc:81:42:ad:8a:25:eb:7e:2c:76:09:46:29:b8:eb:
87:20:a2:e1:ba:6b:03:2d:d1:79:b4:40:dc:5a:26:
cf:14:75:7a:ce:d3:33:75:af:37:c1:1b:c4:1a:fd:
b4:e8:bd:86:3f:eb:90:76:0a:85:a8:49:e9:13:67:
a9:31:b2:75:30:3f:c8:7a:3c:ac:ba:20:2e:21:75:
f9:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:B0:48:38:8D:A6:E1:95:81:3D:CE:3D:51:53:B1:9E:AD:45:C1:18
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/T7BIOI2m4ZWBPc49UVOxnq1FwRg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.64.0/22
Signature Algorithm: sha256WithRSAEncryption
64:4c:58:76:be:ed:e0:94:a6:05:6b:1b:18:c2:86:f6:21:6a:
50:fa:f6:c6:4b:df:e2:45:56:be:cd:7d:f9:c5:41:c8:45:35:
1d:32:65:c0:ef:bd:19:fb:e3:88:2f:1e:38:13:8f:af:09:0a:
d8:8d:96:cd:03:06:23:78:d9:35:0f:e3:21:bd:b9:d7:fc:64:
2b:86:c9:f0:a4:bf:36:2d:9c:c2:a3:1a:ce:b2:5b:55:e8:f8:
23:b2:7e:a5:bd:e9:32:68:86:6a:e5:60:6c:73:0c:02:6a:8f:
ee:20:65:1e:1a:b0:3b:dc:a0:c2:4b:83:e6:b4:e1:2f:3d:8a:
00:df:b1:73:25:be:1a:21:b8:11:0d:b2:38:d0:58:03:f6:84:
29:7a:b3:a8:69:c0:ba:b9:b8:fd:94:a4:3e:85:6f:36:d4:81:
7a:ff:27:4a:d7:05:d7:a9:00:3d:19:9d:2b:62:41:f3:ee:e1:
8c:64:1b:7c:14:78:94:0a:4d:5f:3a:a1:94:ef:a3:2c:b2:16:
e8:35:57:72:45:62:d1:19:c7:f0:5a:a5:94:1f:4f:4c:57:f1:
58:45:d8:6b:32:51:ec:0a:54:79:6b:18:c7:5a:5e:8e:03:71:
fc:af:f7:1d:5a:5e:95:37:64:5d:19:81:d7:fa:5c:db:63:75:
0c:ca:e4:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:49 2023 by rpki-client on console-fra.rpki-client.org