Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/UqDsyXhHmImM5pM4ZsxGXSHl6WM.roa
File: UqDsyXhHmImM5pM4ZsxGXSHl6WM.roa (raw, json)
Hash identifier: fgGnrWR2sI17dOOoSOsjsgAGzuHPDZOuQkPh6QM9lMs=
Subject key identifier: 52:A0:EC:C9:78:47:98:89:8C:E6:93:38:66:CC:46:5D:21:E5:E9:63
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/UqDsyXhHmImM5pM4ZsxGXSHl6WM.roa
Signing time: Thu 15 Sep 2022 02:36:47 +0000
ROA not before: Thu 15 Sep 2022 02:36:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24165
IP address blocks: 49.159.220.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:47 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=52A0ECC9784798898CE6933866CC465D21E5E963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d8:46:b0:57:25:82:8c:02:eb:e9:77:4d:6a:
3f:33:b4:5e:ee:ad:17:50:b8:43:68:13:51:93:06:
db:64:e0:5d:2e:e6:5b:6d:93:e4:bf:50:2a:0b:ae:
dc:0a:02:61:9a:72:76:c9:2e:17:9d:6c:aa:1a:7e:
4c:73:d2:ba:96:db:49:5e:69:fb:4d:73:86:a2:f9:
3c:b6:7b:48:20:29:a0:29:8f:8c:01:4b:4c:1a:21:
e5:97:d4:db:a4:ce:ef:7c:f0:15:bb:f8:35:95:29:
88:10:eb:bb:73:68:46:21:0d:10:83:6d:fe:cd:0b:
ad:92:6b:67:6b:dc:be:f0:bd:15:a6:36:b0:b0:cb:
19:a7:2d:2c:bb:dd:a5:30:22:94:24:a4:fc:48:7a:
56:02:bf:c3:39:17:44:d4:6d:91:d8:5b:06:53:98:
23:d1:50:af:ef:5c:8a:16:17:cf:ce:b4:65:92:f1:
e4:7f:d0:f0:57:14:f8:bb:5a:c6:45:cd:71:a2:27:
08:4a:54:77:91:bc:a1:ff:22:c6:1e:73:e1:2b:ad:
71:9b:fc:44:8e:18:ce:61:64:1e:2e:b8:50:ae:40:
e7:41:0a:c8:a3:ec:4e:9b:03:58:34:21:9b:3c:c2:
a0:55:a8:40:22:d0:57:47:68:cf:8e:da:51:61:b9:
40:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A0:EC:C9:78:47:98:89:8C:E6:93:38:66:CC:46:5D:21:E5:E9:63
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/UqDsyXhHmImM5pM4ZsxGXSHl6WM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.220.0/22
Signature Algorithm: sha256WithRSAEncryption
60:92:7c:77:d5:27:ed:52:7a:ad:26:dc:df:d2:7d:0a:2b:bf:
86:5f:0e:ba:f3:31:67:3a:b6:7f:62:14:0a:1b:5b:b4:80:ce:
bb:0a:5b:87:a6:b2:d5:56:03:b0:a4:79:52:3a:59:d2:ad:e8:
49:32:6b:b3:0e:9a:36:1e:7e:ad:20:82:8d:7a:6b:85:b7:de:
ca:8f:4e:4c:fa:ca:5c:aa:9a:f1:8b:f9:8c:d4:b1:38:0e:e6:
88:97:fc:5c:90:23:08:10:14:a0:0d:58:ad:a6:0e:b5:59:6c:
cb:74:ca:80:39:ea:01:f8:a1:5d:22:d3:3b:c3:b3:d4:08:b5:
dd:de:00:b8:92:7a:3b:10:87:07:8d:a7:f5:c9:7a:62:6b:1c:
b0:7b:22:2d:71:d9:9e:5c:c8:dc:04:4e:87:db:3e:ca:e9:cd:
67:d3:80:60:8e:db:26:d4:f7:81:e4:ca:58:bf:22:82:e6:8f:
24:35:f4:57:9e:cc:c2:f5:c1:d4:ca:b7:7a:24:b9:b6:f8:c8:
f6:28:c6:e6:66:99:ee:28:4e:6c:b8:f2:90:ea:83:47:aa:1b:
a5:87:07:ff:61:73:4a:50:ef:5a:b2:ce:2d:ef:d3:c8:9d:0e:
a4:90:6c:87:34:00:c6:79:2d:b2:fd:eb:b7:b1:06:a1:08:d8:
f6:c4:88:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org