Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/TwFKwseLalv8zrDsUAgrclqom6k.roa
File: TwFKwseLalv8zrDsUAgrclqom6k.roa (raw, json)
Hash identifier: AW1TkcjPRjNS7ilEmjPdf6clmtxs56LrQx4+YtCaxb8=
Subject key identifier: 4F:01:4A:C2:C7:8B:6A:5B:FC:CE:B0:EC:50:08:2B:72:5A:A8:9B:A9
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0FA1
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/TwFKwseLalv8zrDsUAgrclqom6k.roa
Signing time: Sun 07 Feb 2021 12:35:17 +0000
ROA not before: Sun 07 Feb 2021 12:35:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 49.158.112.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4001 (0xfa1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:35:17 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4F014AC2C78B6A5BFCCEB0EC50082B725AA89BA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:05:ca:98:83:75:2a:2c:5b:38:20:ca:d8:b4:
f7:fd:e5:1c:0b:3e:e5:ef:9d:f3:b4:55:58:47:04:
17:c0:0f:3c:99:a5:43:aa:03:a8:30:24:e8:96:63:
a8:a3:de:92:14:4e:d1:40:ad:30:c2:73:61:46:37:
cb:85:59:f9:70:5f:d6:00:03:59:01:8c:21:e0:c3:
c9:e3:22:ec:af:44:60:8e:c1:3d:87:b5:32:22:ff:
2a:c1:ba:42:a9:3a:ae:94:f5:85:82:0e:2b:44:d9:
36:0f:da:35:1c:08:da:c2:8e:5e:5b:9c:d3:87:2d:
17:a2:a6:36:73:62:4f:c6:54:ca:8a:30:55:28:e8:
87:fb:8e:79:78:87:8a:21:c4:44:48:31:95:55:5d:
5f:cc:61:e7:f8:e5:85:53:ae:47:89:e6:98:f1:dd:
53:bd:b8:6e:a3:01:86:69:6a:8c:72:55:04:a7:81:
19:bf:6a:1a:de:7b:03:6c:97:e5:76:c9:05:59:ff:
d6:25:be:d6:3c:b7:03:44:eb:4d:af:b9:0f:1f:31:
40:c8:37:c7:79:63:9f:ad:4d:e6:d9:41:37:8e:46:
26:fa:9b:48:93:cc:37:ee:ba:7f:d0:98:1b:04:80:
93:32:85:83:4b:0c:6e:94:69:e6:40:0f:07:b0:f0:
9a:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:01:4A:C2:C7:8B:6A:5B:FC:CE:B0:EC:50:08:2B:72:5A:A8:9B:A9
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/TwFKwseLalv8zrDsUAgrclqom6k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.112.0/21
Signature Algorithm: sha256WithRSAEncryption
83:ea:60:28:76:44:8b:26:35:80:c1:bc:5d:82:9f:74:00:bd:
3d:f5:a7:e2:80:ba:24:e0:2a:a2:24:a2:72:1e:4a:af:bd:fe:
cf:71:e9:c7:69:d4:7b:ae:d1:d5:cc:54:a9:8c:4f:18:6b:0c:
8b:3f:2b:77:b5:b1:2c:d0:63:a1:cf:d6:66:84:7b:2b:07:57:
2b:21:fe:8a:55:a7:35:97:49:da:66:5e:83:59:2c:5a:f1:02:
2e:e2:34:45:99:93:68:55:e4:bc:0a:4f:4e:ec:3c:80:fb:f4:
d8:be:e5:b4:34:6c:b1:37:a9:30:b6:28:3c:54:9e:e7:4e:5a:
a5:06:35:99:65:af:fc:ef:bc:a8:6f:26:9b:7d:bf:3b:27:4b:
a1:01:28:c2:75:2a:b2:11:b1:cb:87:7f:9b:36:9a:2b:00:5a:
35:8b:0e:46:c3:4a:33:cf:7a:27:de:75:b2:46:89:50:8e:a0:
94:b3:13:c9:b9:62:3c:21:de:a3:03:82:3b:97:0a:f1:b5:33:
76:47:e6:a2:16:7c:fc:b5:76:21:44:8c:d8:a5:cd:23:b8:ee:
4f:93:83:15:c7:ce:20:ab:a2:22:09:a1:83:62:a7:83:bf:41:
25:8a:ce:a2:a1:a4:84:1e:ce:f7:8c:e0:3d:e7:d1:a5:a0:87:
4f:65:e0:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:47 2024 by rpki-client on console-ams.rpki-client.org