Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/WAATeT3LLS8lqesONYEGxCjuccY.roa
File: WAATeT3LLS8lqesONYEGxCjuccY.roa (raw, json)
Hash identifier: LNXvI12j6qWBP7u6eceOdO/wCBAmnXBCKQLl38zsCVo=
Subject key identifier: 58:00:13:79:3D:CB:2D:2F:25:A9:EB:0E:35:81:06:C4:28:EE:71:C6
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0EF1
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/WAATeT3LLS8lqesONYEGxCjuccY.roa
Signing time: Sun 07 Feb 2021 12:30:53 +0000
ROA not before: Sun 07 Feb 2021 12:30:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 49.158.24.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3825 (0xef1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:30:53 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=580013793DCB2D2F25A9EB0E358106C428EE71C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e1:db:db:df:7d:11:39:a0:c1:a3:e7:4b:9a:
fc:8a:4d:27:c1:00:78:fe:1b:4f:64:62:8d:3c:79:
0e:3c:49:9a:93:a6:1e:46:54:a8:95:52:de:65:a8:
22:f9:e7:99:1f:0e:ff:bc:50:f3:21:dc:a9:3a:63:
eb:f1:56:f6:e4:0b:ff:f6:4e:a1:62:64:f6:4e:46:
e2:98:92:95:80:da:86:bb:d1:40:f5:15:91:7b:b2:
16:31:b1:26:af:70:a9:32:60:7a:6d:9c:fb:b1:6f:
0e:43:8c:fd:ca:71:ff:3d:f0:43:e9:7f:ec:ad:cb:
59:87:dd:41:95:88:30:f0:f0:f0:d3:22:bc:53:3d:
2d:81:db:a6:8a:cb:07:fe:5b:f2:6d:a7:83:60:5a:
26:d9:73:15:91:8c:19:21:9f:63:be:26:aa:99:51:
54:40:3f:79:6b:67:76:ea:be:54:7f:c1:ae:a8:b8:
a7:92:eb:16:5d:e3:2c:58:89:46:15:d4:94:67:fc:
d3:d6:b3:e2:47:41:a9:1a:fa:7f:cd:f6:64:e2:10:
02:c4:89:67:66:14:ea:e6:e2:8d:ae:ee:02:1f:72:
92:fa:2c:9e:18:1a:5c:22:f2:b5:a6:a5:dc:90:0c:
ce:74:70:c0:39:46:59:1d:e9:f4:30:12:f5:af:3b:
37:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:00:13:79:3D:CB:2D:2F:25:A9:EB:0E:35:81:06:C4:28:EE:71:C6
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/WAATeT3LLS8lqesONYEGxCjuccY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.24.0/21
Signature Algorithm: sha256WithRSAEncryption
44:2f:bc:e0:21:6c:8f:d5:e0:53:0c:4e:40:43:78:76:f5:e8:
38:37:73:08:0f:b3:e0:c8:15:6c:b4:84:02:ac:cb:83:fa:8e:
b5:e7:5b:8d:19:7f:bd:ac:a7:18:34:88:37:a8:7e:ce:75:25:
8b:82:44:a6:90:8b:d3:d2:2a:a5:4c:34:a0:69:f5:e7:c5:f3:
ab:e1:99:86:05:2b:73:d5:17:21:0a:26:bb:78:f8:f0:58:1e:
46:cf:0f:80:04:b6:a0:92:04:6f:9e:9e:34:e5:a3:91:f8:de:
f2:e1:8d:55:18:bf:10:d6:59:f4:f2:5c:bc:7d:92:df:a0:10:
f0:1f:fa:b9:37:38:87:aa:09:d7:e0:87:65:5e:a0:59:c8:12:
eb:34:63:5e:0c:9a:58:7e:f6:d8:34:bc:21:a0:6e:30:db:9e:
c9:fb:40:9a:b0:af:fc:1a:1e:3c:f3:f4:3f:20:89:c3:51:a0:
97:a5:66:23:58:27:fa:fc:1e:52:7e:ff:c3:8d:34:06:72:f0:
f2:aa:48:63:6b:f2:e3:26:46:03:28:e6:a0:c0:75:79:e0:36:
3c:e8:8f:3b:8e:7f:45:9f:ca:b0:5f:f9:cf:bc:b2:45:41:47:
10:1b:f7:fe:7b:ae:74:e6:7e:c7:3b:52:56:9c:0a:7d:cd:16:
f3:03:50:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:47 2024 by rpki-client on console-ams.rpki-client.org