Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Zy13ybxJfSKGSH_W7dHClFki98A.roa
File: Zy13ybxJfSKGSH_W7dHClFki98A.roa (raw, json)
Hash identifier: GO9fmApesjDGnyky9goLu+zAFkSTSMKOYRh69zlBYSY=
Subject key identifier: 67:2D:77:C9:BC:49:7D:22:86:48:7F:D6:ED:D1:C2:94:59:22:F7:C0
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0FE7
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Zy13ybxJfSKGSH_W7dHClFki98A.roa
Signing time: Sun 07 Feb 2021 12:36:35 +0000
ROA not before: Sun 07 Feb 2021 12:36:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 49.159.144.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4071 (0xfe7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:36:35 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=672D77C9BC497D2286487FD6EDD1C2945922F7C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:74:71:55:3d:23:1e:8c:b6:88:ab:10:97:cd:
5f:12:c0:a6:f7:8e:cd:12:2c:8c:6e:9a:59:3e:40:
26:fe:d4:34:be:68:c0:a4:be:74:a1:22:e8:85:58:
f1:ea:0d:15:3b:5e:58:03:dd:6a:67:13:bc:73:a7:
7d:f7:93:be:2e:1c:41:f3:79:68:e2:6b:5c:59:89:
11:88:87:93:0c:d5:a6:ae:99:e5:ff:3d:da:b6:04:
61:d3:9c:a3:d5:54:b2:ea:7b:13:8a:e1:a0:aa:61:
65:30:23:6d:df:3b:59:1f:6f:ae:4d:fb:67:a0:1b:
f1:1a:08:8a:2e:7a:e5:31:72:33:ff:52:f9:fe:81:
90:cc:2c:1a:80:57:d7:b6:7e:ad:c3:05:6b:ab:2f:
4a:b9:39:03:8c:e6:4f:4e:66:b9:79:07:6b:c6:f3:
1b:c0:93:18:db:19:56:14:3e:bb:08:25:c7:65:c3:
68:b5:f8:66:84:8d:9f:84:9a:2e:cd:0f:1f:03:6d:
80:12:54:b2:3f:fb:34:34:88:a5:fd:8e:71:71:99:
74:ae:0e:25:aa:c8:01:09:ce:73:7d:34:96:05:23:
ad:a6:82:87:8c:ed:be:69:95:ec:39:62:4b:3a:e6:
51:4b:28:a9:e4:9d:3b:2d:05:d0:23:4b:c6:fa:2f:
5a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:2D:77:C9:BC:49:7D:22:86:48:7F:D6:ED:D1:C2:94:59:22:F7:C0
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Zy13ybxJfSKGSH_W7dHClFki98A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.144.0/21
Signature Algorithm: sha256WithRSAEncryption
4b:c2:a6:92:91:35:5b:10:1c:36:ea:e8:89:30:ee:25:42:d7:
a4:5a:98:01:08:26:39:b4:ce:1c:3f:8a:74:24:29:76:56:37:
ff:96:a6:16:4d:2f:21:05:f1:5d:24:e5:34:69:9c:37:3d:a1:
a1:c7:a2:f3:04:49:05:3a:4a:dc:95:c4:a4:36:90:8f:c3:50:
97:4a:7d:b8:e3:c1:13:6d:55:0b:b5:c5:9c:42:13:ba:fa:af:
1d:16:7e:fd:b3:71:92:8b:b2:0f:23:2b:2d:08:ce:34:03:a5:
8a:98:7c:ba:af:96:ba:fe:d8:54:70:87:b8:62:d5:83:f2:60:
aa:0c:47:7f:c5:99:4b:50:f7:5c:32:44:f0:58:17:02:bc:c6:
f9:42:e7:8c:18:66:65:d1:7e:15:e2:c3:ac:95:d7:f1:df:85:
7d:5d:24:11:a9:07:73:f1:a5:11:93:d7:8a:76:3e:cc:c7:ce:
44:ad:0a:0b:97:7d:73:85:d6:1b:b8:7c:50:4a:4b:a2:25:22:
0a:b7:74:d5:d5:14:00:07:d7:45:e1:f5:0f:a9:61:37:9e:16:
6f:69:ef:b5:ba:42:23:0a:04:ca:0e:f4:dc:13:e8:b4:e5:d8:
2a:fc:56:54:6b:25:34:36:7e:b7:2d:11:98:e0:ac:e4:62:01:
cc:4e:c0:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:48 2024 by rpki-client on console-ams.rpki-client.org