Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Vm2PQTXbzLg81aAK3MIDJ7b4vtQ.roa
File: Vm2PQTXbzLg81aAK3MIDJ7b4vtQ.roa (raw, json)
Hash identifier: uELEo4hf2acYw9ZORrSC2ReQ4ZKBJPB1gt3tuxntRcA=
Subject key identifier: 56:6D:8F:41:35:DB:CC:B8:3C:D5:A0:0A:DC:C2:03:27:B6:F8:BE:D4
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1556
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Vm2PQTXbzLg81aAK3MIDJ7b4vtQ.roa
Signing time: Fri 21 Oct 2022 09:09:42 +0000
ROA not before: Fri 21 Oct 2022 09:09:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 49.158.200.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5462 (0x1556)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 21 09:09:42 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=566D8F4135DBCCB83CD5A00ADCC20327B6F8BED4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e4:ba:a4:52:08:99:e6:3d:3e:16:ea:59:72:
da:35:7c:cb:3e:6c:08:32:63:21:59:7e:6a:c2:2e:
00:bf:50:e9:6e:cf:89:66:b4:67:b5:86:e7:e2:51:
fa:34:65:65:d8:43:d8:87:97:ed:81:b0:1a:c4:76:
8a:49:8d:fb:d2:e9:8f:0d:ff:4b:f1:a7:a0:86:02:
41:0c:9c:3e:92:2d:c2:e7:5f:88:1a:a3:ae:88:b2:
ab:b7:a2:3c:36:62:e5:f3:92:48:34:13:09:5f:b9:
c5:5d:25:c4:b3:75:ad:03:bf:40:21:20:f0:03:6a:
10:93:54:e8:48:66:7b:0d:ae:b7:a8:9e:b1:90:f5:
85:ba:83:0f:54:0b:7c:af:8f:ab:bb:7b:9c:2b:e5:
7b:79:12:68:ae:b1:17:64:9e:7d:1f:3b:0a:b3:8b:
b1:76:9d:18:29:1c:10:fe:a9:70:04:ae:c2:e0:bd:
df:82:cf:9e:27:31:7d:72:d8:0c:e1:f6:b4:e3:1f:
75:ee:9d:b7:f6:e6:20:92:31:de:89:f0:99:46:d2:
40:37:ae:f4:3a:a8:c4:d0:28:47:b0:e3:67:66:d1:
8c:f8:d0:a2:84:df:c0:6c:af:9e:47:42:6b:cd:db:
7d:6c:4a:0f:3b:a5:75:d7:0b:6d:44:de:49:9a:bd:
24:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:6D:8F:41:35:DB:CC:B8:3C:D5:A0:0A:DC:C2:03:27:B6:F8:BE:D4
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Vm2PQTXbzLg81aAK3MIDJ7b4vtQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.200.0/21
Signature Algorithm: sha256WithRSAEncryption
61:76:48:08:6c:9c:50:1b:33:3f:a4:74:84:b3:1e:80:20:cc:
dc:29:de:0b:34:20:e1:e9:ff:2a:9e:da:dc:0f:e9:5f:1f:4c:
b4:dc:dd:21:8d:97:46:cd:9d:79:43:d3:7d:36:c7:3c:22:55:
29:98:5c:de:91:7e:c3:6c:f6:97:c8:25:65:12:b4:c9:9c:7f:
3d:ea:ac:40:69:f1:19:6d:4d:91:47:45:46:ae:57:96:e4:83:
93:16:9e:18:b9:8a:29:e6:ee:f8:48:f1:81:c2:e9:67:a5:7f:
81:b4:89:1f:f9:bd:04:bf:9d:9c:02:2c:3a:56:c6:69:4e:08:
a1:11:43:72:3d:a8:7d:ab:95:2d:ee:68:a5:94:3d:6f:7f:25:
d8:6a:cd:ae:6c:bd:b3:24:bc:86:a6:7f:2a:a7:f3:4a:4c:8e:
bd:f5:95:b6:62:12:bb:1b:68:87:6e:1f:bc:4b:5e:e1:bc:2f:
e8:ea:ae:64:5e:53:83:46:44:0e:99:65:16:90:6d:63:a4:50:
dc:57:53:32:f8:dd:d1:d0:d8:aa:8c:19:e9:21:9c:15:3b:6c:
51:a7:10:0b:9c:22:62:16:93:2f:0d:df:b5:e8:11:e1:a9:37:
a8:10:5e:2f:4a:12:b7:f5:ea:c4:88:f6:41:5d:15:c4:7a:84:
8e:a9:78:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org