Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/X4HbaHFSeERmssu-fvvn5RWi284.roa
File: X4HbaHFSeERmssu-fvvn5RWi284.roa (raw, json)
Hash identifier: izHn26aAA8XqJNmjrLso2BWui4a56SStJOL9wmduWyo=
Subject key identifier: 5F:81:DB:68:71:52:78:44:66:B2:CB:BE:7E:FB:E7:E5:15:A2:DB:CE
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 194F
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/X4HbaHFSeERmssu-fvvn5RWi284.roa
Signing time: Sat 22 Oct 2022 06:06:22 +0000
ROA not before: Sat 22 Oct 2022 06:06:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.158.76.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6479 (0x194f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:06:22 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5F81DB687152784466B2CBBE7EFBE7E515A2DBCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:ec:05:ba:5a:0d:23:97:d0:60:f5:d1:46:4e:
c8:bf:b6:9a:8e:67:4a:bf:61:30:5a:e6:94:db:25:
2b:4b:3f:71:47:29:19:00:b0:56:7a:af:3c:dc:ee:
13:85:75:2a:68:78:84:cf:f3:92:6c:94:4e:7b:a2:
92:5f:96:48:52:e9:c2:c8:51:24:8e:d7:e8:71:cb:
f9:e6:18:d7:be:3b:91:20:91:0e:b2:64:83:b3:c0:
fb:13:7c:62:83:c1:02:5a:ed:81:d0:a4:ec:f7:bf:
fa:39:6d:ea:68:f6:ce:a8:47:02:bf:3f:f7:a8:2d:
7c:41:60:22:c7:4b:86:f5:a9:af:3a:dc:db:f6:96:
cf:5e:d4:ef:08:bd:60:cd:7b:41:ce:95:ae:42:68:
cc:65:79:b8:99:50:77:1c:f2:95:3b:fc:11:90:b8:
1d:cb:76:c9:56:85:7b:dc:e2:fa:72:16:ba:02:e7:
dc:cd:77:a3:51:61:a2:8a:09:b8:ea:c7:2f:21:b8:
81:36:b5:9c:7d:73:91:49:1d:1b:57:47:fd:75:89:
70:6e:fe:0f:3e:ba:91:ca:16:b9:90:a7:99:37:2d:
15:c3:dc:bf:4d:f5:bf:6d:18:36:31:42:d5:03:34:
c9:3d:f9:f9:78:53:e4:ac:60:72:50:90:85:aa:1a:
bb:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:81:DB:68:71:52:78:44:66:B2:CB:BE:7E:FB:E7:E5:15:A2:DB:CE
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/X4HbaHFSeERmssu-fvvn5RWi284.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.76.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:b4:6d:99:41:33:b8:e1:71:c1:8e:6a:cc:46:c0:ad:1e:3d:
57:02:7e:a6:35:48:12:f2:58:c0:2a:df:7d:f1:df:33:90:2e:
d2:35:bd:5e:b7:95:1f:8d:91:86:22:cf:ac:5e:14:1e:26:2a:
26:53:64:7c:60:be:11:4f:8c:89:d8:f3:2d:76:90:f0:ce:6a:
2d:ef:64:79:5b:f2:42:9d:c9:78:f8:4e:94:8b:35:b8:dc:eb:
68:85:ac:c0:53:60:f7:72:cb:dd:07:c7:f2:4c:74:02:f4:6c:
60:66:a1:95:53:ed:9d:8f:ae:41:78:f6:0e:42:70:56:09:11:
c8:8e:a6:81:a7:14:fb:a8:f0:1b:d0:4d:2d:86:f0:9c:31:3b:
5b:93:ae:7d:e7:25:c2:cd:63:16:aa:25:a1:e4:05:a6:4f:6f:
4d:58:f8:71:b4:8c:ac:0f:36:fa:bf:87:5e:fb:e4:0f:7c:b6:
02:80:23:53:8f:58:08:52:87:75:1a:78:65:16:45:53:67:75:
73:1f:8a:de:a4:d5:7b:22:24:04:3f:ed:80:d6:f5:c7:8e:81:
9d:58:d7:d0:bb:e7:b4:d2:3d:c5:00:05:0a:3f:dd:07:62:6b:
9d:d3:a3:e9:ce:a1:00:0b:42:61:53:3a:d9:42:d4:bd:30:9f:
e2:7c:b6:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org