Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/YcpsnVvLioJNcQAWCN8l4XWPTSQ.roa
File: YcpsnVvLioJNcQAWCN8l4XWPTSQ.roa (raw, json)
Hash identifier: JNI30AcXRKbIPaf4x7ezxoznlqfYjsnaQZOKBfBDIqg=
Subject key identifier: 61:CA:6C:9D:5B:CB:8A:82:4D:71:00:16:08:DF:25:E1:75:8F:4D:24
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0FFF
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/YcpsnVvLioJNcQAWCN8l4XWPTSQ.roa
Signing time: Sun 07 Feb 2021 12:37:01 +0000
ROA not before: Sun 07 Feb 2021 12:37:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 49.159.232.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4095 (0xfff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:37:01 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=61CA6C9D5BCB8A824D71001608DF25E1758F4D24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:84:cf:55:54:e1:91:e6:d2:a3:ef:e8:79:f1:
4e:39:18:f4:3e:49:a0:dd:c2:e3:b2:9b:c7:03:ed:
56:96:e4:dd:6c:95:11:29:f8:22:ce:ad:4d:11:51:
22:79:cc:a3:68:6b:ec:4c:67:f7:77:92:4b:78:ca:
d5:a8:53:20:5e:6d:b9:93:56:8f:5b:7e:17:6b:93:
4e:75:47:4d:9b:fc:e8:37:89:42:22:d0:9f:e0:19:
36:67:ae:8b:78:d3:fc:fc:1a:51:82:7d:81:a6:95:
74:26:3d:e5:16:e8:49:63:be:37:83:ab:06:6b:76:
dc:93:4f:86:38:7f:10:7c:4a:a9:aa:d1:c8:61:08:
08:fa:80:31:6b:55:67:ea:36:0d:1c:f7:84:b7:a2:
e6:42:01:24:fa:e3:a1:ac:e0:c1:07:27:39:37:2f:
5d:ff:9a:aa:98:2e:38:b8:76:a9:16:db:49:57:ae:
2d:8e:07:75:0e:0b:63:91:fb:ac:67:fe:61:b2:52:
1c:f2:ab:8c:2b:cf:d2:36:df:02:ee:36:f1:36:e6:
5a:88:e4:e8:fa:58:0f:cb:72:8a:0c:21:43:84:41:
fc:55:33:a9:20:d7:9e:88:cb:23:c6:af:e0:7d:14:
ac:40:a7:de:80:23:bc:5e:3e:9c:a6:68:2a:f2:55:
c0:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:CA:6C:9D:5B:CB:8A:82:4D:71:00:16:08:DF:25:E1:75:8F:4D:24
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/YcpsnVvLioJNcQAWCN8l4XWPTSQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.232.0/21
Signature Algorithm: sha256WithRSAEncryption
03:cc:69:5f:9c:28:40:ce:69:fd:af:5b:62:ae:3f:8a:e1:e9:
16:71:b2:92:2e:2a:9b:c7:e7:d8:96:20:6a:77:d8:bc:9f:85:
ea:38:2d:21:fe:55:4b:74:cc:04:8e:96:db:ff:ef:5a:1e:a4:
61:17:0d:a5:c8:48:f9:e3:85:9a:5d:b6:45:2c:a5:19:1b:48:
95:bb:bc:eb:ee:eb:7e:0d:bc:72:0b:71:3c:d2:4d:b7:8b:c2:
7c:36:0b:9e:17:fc:74:02:2d:68:1f:de:49:30:79:f2:c1:f2:
b2:0f:25:6c:a8:b9:74:b1:b7:d7:49:5e:ad:f6:d2:7e:8f:c7:
4e:ee:66:d6:f0:c5:9e:ba:27:93:98:fa:95:a1:23:8b:3e:a5:
7e:1c:16:6f:5b:0d:af:40:1e:9e:dc:39:28:03:55:81:e1:42:
10:a1:0d:8c:3c:61:ed:14:ee:9c:35:d7:a3:2c:45:34:2a:10:
1a:1f:e0:d1:2d:77:b3:d4:c9:86:ba:f2:a3:6c:f4:c1:06:1b:
65:26:f1:84:5f:86:2f:2d:51:a7:e3:d3:7f:08:b1:e2:f0:55:
ba:16:7a:b0:73:c1:aa:dd:12:0f:4e:b2:3e:c3:39:ed:db:b3:
e3:b7:e7:a8:42:0f:39:75:8f:f5:f0:57:c5:be:0c:95:0d:3f:
4a:a5:3f:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org