Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bPnEEwqNPQXvbfJQynep0dp1yHk.roa
File: bPnEEwqNPQXvbfJQynep0dp1yHk.roa (raw, json)
Hash identifier: T6t25ZnwiwAsDCY1d4kNWmzDIyiCMbHXDepSVPIN744=
Subject key identifier: 6C:F9:C4:13:0A:8D:3D:05:EF:6D:F2:50:CA:77:A9:D1:DA:75:C8:79
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1227
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bPnEEwqNPQXvbfJQynep0dp1yHk.roa
Signing time: Wed 29 Sep 2021 02:54:15 +0000
ROA not before: Wed 29 Sep 2021 02:54:15 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 49.158.0.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4647 (0x1227)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:15 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6CF9C4130A8D3D05EF6DF250CA77A9D1DA75C879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5f:08:3d:fe:31:c7:8c:8a:35:9d:50:51:08:
bd:37:ba:2f:bc:e0:3d:73:4e:12:f2:82:f2:5f:91:
a7:d4:c7:60:63:47:0f:3f:f5:20:66:7e:30:cb:d8:
e3:60:c2:22:2e:b0:b0:eb:68:96:36:ee:a2:cd:e2:
71:47:91:e1:73:c6:b0:cc:2f:ee:2e:bb:b6:20:4a:
97:d8:c5:33:d6:f4:9a:f1:79:32:b4:b0:b4:21:6c:
ed:3d:a1:55:4a:b4:fa:8d:1b:33:b8:73:db:2c:57:
6a:21:0b:2a:24:5c:74:df:21:b9:6c:b9:50:ff:fb:
f0:4a:b6:a9:f2:f9:d7:43:92:12:b0:95:92:62:a4:
c9:35:d2:56:e0:5d:7a:d9:d4:f0:69:b1:d8:6f:b0:
bc:6b:41:94:27:2d:89:92:8b:f2:64:8c:3e:53:87:
13:f5:79:28:51:76:59:68:0e:d6:08:d1:b6:89:2b:
23:3e:47:9d:4f:ea:4c:7c:41:88:fd:6a:79:21:bf:
41:28:12:61:6d:70:64:dc:67:28:59:c3:ef:d8:ee:
b2:7e:c0:7f:b1:34:d7:f4:69:31:8c:a7:24:ff:b5:
b2:78:bd:d9:e2:3f:09:db:e2:fa:e4:a8:c9:b8:eb:
05:86:4a:a1:9c:23:40:23:cd:e0:a5:2c:c2:6e:99:
d6:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:F9:C4:13:0A:8D:3D:05:EF:6D:F2:50:CA:77:A9:D1:DA:75:C8:79
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bPnEEwqNPQXvbfJQynep0dp1yHk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.0.0/20
Signature Algorithm: sha256WithRSAEncryption
13:61:15:f3:d2:4c:92:8a:ae:ab:0b:c0:84:a0:43:84:68:41:
88:04:5e:ce:10:9c:70:c3:69:20:40:af:b3:00:1c:a7:e9:42:
4b:15:e6:88:8e:4f:5d:45:29:51:e6:58:8a:a1:27:3b:fd:6a:
c0:c8:b9:f4:80:5c:99:8f:4b:4f:7b:e0:41:f7:4b:50:ee:9a:
63:21:d2:ef:02:c3:61:15:0f:63:45:08:d3:10:6d:32:55:d0:
41:35:44:9c:a8:ee:63:03:0f:4f:81:64:ba:0c:67:45:b0:76:
1c:6e:5d:ff:56:ea:aa:58:cd:eb:8b:e7:3f:ff:fa:d9:d9:e5:
2e:f9:34:1e:91:98:a7:e9:dc:a1:54:5f:75:86:73:35:84:a2:
3d:11:73:c0:f0:ec:88:7a:a0:96:d0:3c:96:d9:04:96:07:49:
fc:ec:bc:ce:73:88:7b:0b:bc:49:62:3a:96:23:2b:31:70:82:
30:43:ca:15:50:4a:4b:51:95:97:e8:7b:71:d0:11:ee:ea:6d:
a0:c1:62:53:79:39:6e:3c:1e:49:71:fe:42:bc:b0:6c:fe:8a:
a1:b8:4c:3b:73:62:ef:41:53:de:0c:f9:69:8a:bd:de:3a:55:
f6:7c:27:ed:31:b5:2e:4c:29:9b:94:8a:89:2c:2a:0f:00:8c:
94:bc:72:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:48 2024 by rpki-client on console-ams.rpki-client.org