Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bBd2hlq9kUmATI54EE-5o78JBMA.roa
File: bBd2hlq9kUmATI54EE-5o78JBMA.roa (raw, json)
Hash identifier: /syrAr6+DK+6lmpgVyCdU8EjFSH+SX43mZmhkC2tZGA=
Subject key identifier: 6C:17:76:86:5A:BD:91:49:80:4C:8E:78:10:4F:B9:A3:BF:09:04:C0
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12B6
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bBd2hlq9kUmATI54EE-5o78JBMA.roa
Signing time: Wed 29 Sep 2021 02:54:52 +0000
ROA not before: Wed 29 Sep 2021 02:54:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 49.159.168.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4790 (0x12b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6C1776865ABD9149804C8E78104FB9A3BF0904C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a4:96:d0:87:8a:f9:6f:71:aa:22:3a:94:2c:
97:a1:e1:3e:92:b6:78:79:3e:e4:78:ed:73:8a:9a:
49:4c:49:46:c7:91:ae:98:4d:a3:6e:03:a8:fa:9b:
b0:e1:c9:b1:22:52:2d:ac:f4:90:d0:87:9b:38:f9:
bf:d3:4c:c8:62:fe:9a:64:54:ee:57:35:06:59:26:
cb:12:f0:d8:ef:6b:06:f0:1b:19:be:10:5f:b6:2c:
e7:0c:bd:fc:c6:30:cb:fe:58:fb:80:d5:96:df:c2:
02:40:51:b9:e3:0c:c3:2e:d5:de:33:1b:8e:d8:c5:
f0:21:e5:da:85:19:10:d9:13:c6:42:66:e5:3f:0f:
35:32:c7:f9:e5:12:49:9d:48:47:c3:ec:bf:f9:1c:
24:6d:0a:fd:fa:b0:c9:9a:b1:29:4f:b9:6b:80:d1:
d6:fd:f5:d9:3b:2e:cb:8c:8e:45:8a:ae:99:9e:41:
e2:53:27:7a:ed:f6:ab:dd:3a:3d:a0:70:e6:18:1a:
59:5b:0f:9e:8b:73:32:78:5f:a4:c3:2d:e0:d3:82:
14:e3:3a:d9:5f:22:6e:02:23:7d:33:f3:6d:57:92:
71:b9:1e:61:96:26:98:c4:02:93:cf:eb:c8:60:bc:
24:0f:6f:59:59:e4:43:10:2d:f6:64:b0:df:12:c0:
e6:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:17:76:86:5A:BD:91:49:80:4C:8E:78:10:4F:B9:A3:BF:09:04:C0
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bBd2hlq9kUmATI54EE-5o78JBMA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.168.0/21
Signature Algorithm: sha256WithRSAEncryption
2c:93:8c:da:b5:10:a8:e8:cf:8e:12:65:50:12:ab:1f:f4:b6:
3f:e9:2c:b9:2f:87:6b:67:4c:71:1d:60:8f:03:24:72:b0:6a:
39:09:75:40:96:27:81:bf:52:4c:24:be:13:ab:7e:0d:28:85:
b2:68:56:7f:ad:24:24:f4:a0:f0:0d:be:d6:68:3f:77:7e:ff:
2d:d0:75:f8:b6:bb:56:ad:c9:60:da:04:ce:99:9d:e6:3c:ae:
1b:00:fd:39:74:67:b4:ab:f4:ef:f8:ce:03:c6:09:a2:71:08:
b2:de:9c:5d:8a:00:16:82:a6:45:75:97:07:19:2a:03:2c:a4:
99:32:48:e5:13:07:e5:51:41:14:c9:b7:40:36:72:aa:58:d3:
61:79:7b:6d:42:c5:74:49:d9:db:d6:c1:9d:30:08:c7:b2:66:
fa:ce:67:fb:dc:b1:1b:50:69:92:bf:fb:b0:35:b4:b6:bb:3b:
b9:25:7e:89:62:da:53:a8:09:05:27:dd:c5:6f:0e:cb:53:1f:
c2:5f:06:ce:9e:98:56:70:14:81:5a:37:d9:90:4d:77:30:ed:
22:f5:1b:83:0d:6c:21:73:97:e9:4c:ca:40:bc:f5:65:87:41:
59:0e:8e:21:73:30:19:bf:ff:92:80:8f:4d:f5:ef:b3:b2:98:
68:c5:61:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:48 2024 by rpki-client on console-ams.rpki-client.org