Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/_rt5XQlzZKol35lAUcz32dNlH5E.roa
File: _rt5XQlzZKol35lAUcz32dNlH5E.roa (raw, json)
Hash identifier: BN8YFWjrkaKUKGM79F/oMb1uAXOOZR+73zn8zsgRfk8=
Subject key identifier: FE:BB:79:5D:09:73:64:AA:25:DF:99:40:51:CC:F7:D9:D3:65:1F:91
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0D14
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/_rt5XQlzZKol35lAUcz32dNlH5E.roa
Signing time: Thu 14 Jan 2021 03:17:36 +0000
ROA not before: Thu 14 Jan 2021 03:17:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 49.159.240.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3348 (0xd14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Jan 14 03:17:36 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FEBB795D097364AA25DF994051CCF7D9D3651F91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c3:73:59:66:5e:d5:4d:c1:a5:2b:b8:73:ff:
06:2d:01:4c:df:bb:85:c9:41:41:0d:b6:18:ec:32:
dc:dd:3f:c4:9d:e8:8b:2e:6c:b6:99:87:0f:4f:37:
84:b9:2d:ea:ba:e1:58:08:1b:aa:fb:61:d2:a7:41:
87:0a:54:37:e4:f1:03:49:a4:93:81:db:a5:b9:db:
16:cd:1b:25:a1:96:89:bb:24:7a:d4:99:9f:12:c2:
a8:00:9f:47:81:70:6a:a5:e8:10:c2:b3:87:f7:1c:
28:ee:39:f2:46:ee:f1:88:28:6b:1f:a2:5e:01:e2:
58:b5:ab:86:2c:72:a5:67:47:88:c6:91:0c:1f:18:
34:3c:44:e5:bc:c3:77:1f:8e:14:e1:89:8f:2d:56:
cf:32:96:e3:13:ac:1e:e6:5a:bd:08:35:09:3a:4e:
1e:d0:fa:2f:47:e4:59:fa:bb:6b:f4:77:96:6d:40:
d8:5d:9b:f4:f8:4c:df:75:9f:01:0d:5e:98:e6:76:
24:dd:d6:ea:a6:f8:a7:69:f1:05:5f:5b:a2:ef:c4:
65:a5:8e:1a:b3:bd:27:3f:8c:12:64:6a:4b:2e:27:
26:4b:47:6b:7d:dc:09:cb:02:7a:3b:2e:04:6d:1b:
cd:99:fa:a0:44:dd:d4:6f:5d:85:4f:8d:6e:db:64:
76:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:BB:79:5D:09:73:64:AA:25:DF:99:40:51:CC:F7:D9:D3:65:1F:91
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/_rt5XQlzZKol35lAUcz32dNlH5E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.240.0/21
Signature Algorithm: sha256WithRSAEncryption
10:1b:20:36:7a:b4:f8:97:80:bc:ab:0a:41:9a:de:aa:3c:88:
ea:72:6d:d8:d4:cb:28:c8:22:b5:cb:25:33:4e:18:d7:02:02:
f0:5d:5f:38:41:bf:35:b3:e9:87:77:21:7f:8f:51:f3:91:91:
bd:4a:9a:c2:32:0e:ed:70:c3:72:e6:32:67:ae:0c:03:33:8b:
e7:1c:cb:62:40:71:e3:d0:31:e9:e8:d7:d1:e1:33:a6:86:e9:
d6:fc:b8:26:cd:22:ed:35:92:76:8f:93:d6:16:a1:21:f3:3f:
a5:2e:62:24:9f:5b:bd:94:3c:dc:91:b8:5e:c0:82:03:13:bf:
10:e8:48:e3:59:f9:a8:74:e8:ba:1c:c9:9d:db:83:31:f1:67:
a0:b6:eb:48:fa:79:0b:c3:82:d6:ef:5d:20:f4:b6:be:ad:c2:
fe:54:4f:6c:ff:71:80:43:77:f2:d4:3c:72:48:5f:4c:33:b0:
12:3e:8c:6c:01:5a:d1:d3:56:0b:5f:a0:9c:d4:f5:24:13:96:
a1:24:bf:41:df:bb:4d:0e:2a:9c:80:00:16:2e:24:37:66:c4:
ee:8a:6f:af:ce:36:cf:bf:30:ae:cf:fb:7c:57:f7:ed:3d:63:
53:db:02:1f:ff:da:b6:b8:25:cb:25:6c:b6:d7:56:d1:39:3b:
a8:ff:3d:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org