Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/_xq9CrKX0woS1TfYfm33IVyVtQ8.roa
File: _xq9CrKX0woS1TfYfm33IVyVtQ8.roa (raw, json)
Hash identifier: arnBzz0cKBRggYBkwbkgmVSGNHTvtRCpBmL7e+VXGWk=
Subject key identifier: FF:1A:BD:0A:B2:97:D3:0A:12:D5:37:D8:7E:6D:F7:21:5C:95:B5:0F
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 141B
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/_xq9CrKX0woS1TfYfm33IVyVtQ8.roa
Signing time: Fri 29 Apr 2022 10:27:20 +0000
ROA not before: Fri 29 Apr 2022 10:27:20 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 49.159.40.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5147 (0x141b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Apr 29 10:27:20 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=FF1ABD0AB297D30A12D537D87E6DF7215C95B50F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3a:c1:91:24:6f:ee:b2:f9:3e:93:23:20:ed:
df:7a:a7:cc:59:b4:46:60:d1:f8:59:1f:50:9b:46:
ed:b9:99:fd:58:7e:9f:95:86:cb:e6:bb:61:25:69:
e3:66:dd:68:db:62:cf:43:fd:d4:fb:e6:7d:97:41:
cd:83:58:9a:71:e5:f5:e0:ed:9c:49:72:79:c0:22:
5b:b5:66:49:1c:fd:1e:56:16:ef:d2:25:0f:9e:b3:
d4:7b:63:2d:9d:97:9c:c5:16:95:b2:31:35:6b:55:
82:60:b9:c2:f3:28:98:59:85:c4:6f:88:81:f6:ac:
c8:5e:88:72:05:32:7b:da:5b:cd:78:8b:1d:31:db:
e7:12:60:21:63:05:12:a0:ba:c3:95:ef:e9:7c:c6:
08:08:7b:f8:c0:74:7e:4c:3c:fd:93:ab:e9:a4:81:
71:97:83:06:07:86:66:11:24:01:c2:f8:01:09:de:
11:10:b5:48:d8:8e:1e:a1:25:07:cd:e8:f6:08:39:
47:4a:3e:1e:5d:da:8d:63:2f:4b:08:70:0c:cf:d1:
3f:45:2f:a6:42:da:ea:4d:39:49:e6:0c:0c:48:b2:
73:b3:fb:88:e5:6b:f6:1f:b0:04:b1:cc:bb:3f:d1:
e0:89:36:b9:e8:53:47:c7:e6:91:a0:9e:b4:70:ec:
6f:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:1A:BD:0A:B2:97:D3:0A:12:D5:37:D8:7E:6D:F7:21:5C:95:B5:0F
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/_xq9CrKX0woS1TfYfm33IVyVtQ8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.40.0/21
Signature Algorithm: sha256WithRSAEncryption
46:79:8d:a3:29:50:3c:27:86:72:58:03:7d:ac:c9:45:9a:9d:
19:2e:93:e5:c2:19:7d:1b:e3:2e:04:91:15:ae:e2:8c:e4:c4:
9a:d0:f9:f0:8b:41:3b:69:32:d1:4f:e8:c7:7f:25:56:97:48:
b9:66:7e:92:65:35:cd:70:84:b4:22:7f:e8:5f:ce:10:93:2c:
fc:d8:ce:3b:03:ec:f7:e6:e2:8e:e3:0f:ae:73:74:1c:5a:8f:
8b:2a:36:8b:eb:98:39:16:bc:fd:55:5d:1f:28:b7:54:44:e0:
b3:c0:34:61:06:81:31:05:a2:50:c8:61:ac:46:42:c3:c4:d2:
2d:28:77:15:d0:39:b8:6c:c3:50:37:e2:f5:8f:95:93:7f:c7:
6c:71:be:2a:9c:68:d7:41:39:b6:56:c9:b5:02:7b:43:4f:b1:
8f:e2:30:b3:ca:d5:53:17:fd:f7:6a:d6:b9:d5:d8:84:5c:e2:
ce:ee:26:f1:5b:50:70:9b:f9:c3:1f:be:2b:1c:24:a3:48:8b:
63:0f:67:a9:d1:e8:83:ce:99:3e:90:0d:8b:15:e6:9c:8f:bc:
37:33:41:a7:1b:ce:23:c2:6f:5c:3a:6f:aa:5e:64:4c:3a:7a:
d2:4c:78:b0:08:fb:2b:24:5f:ef:70:3b:81:f7:0f:61:b8:bc:
e9:ef:78:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org