Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bq3KJVaeJvOIP918vC9KbraxC2c.roa
File: bq3KJVaeJvOIP918vC9KbraxC2c.roa (raw, json)
Hash identifier: PzNYmYpN5+4ooD1gopJqRq2iIU8gzS7+bg2mkOX4XDA=
Subject key identifier: 6E:AD:CA:25:56:9E:26:F3:88:3F:DD:7C:BC:2F:4A:6E:B6:B1:0B:67
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0FF1
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bq3KJVaeJvOIP918vC9KbraxC2c.roa
Signing time: Sun 07 Feb 2021 12:36:46 +0000
ROA not before: Sun 07 Feb 2021 12:36:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24163
IP address blocks: 49.159.192.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4081 (0xff1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:36:45 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6EADCA25569E26F3883FDD7CBC2F4A6EB6B10B67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:80:30:b0:9b:d0:23:0f:36:73:da:5c:d2:67:
cf:65:07:b9:37:aa:ee:37:89:9a:70:d9:36:d3:7d:
02:d0:78:48:27:8b:c2:0f:ee:03:e9:1f:20:da:37:
53:15:74:1e:b0:78:52:30:8b:a3:9e:c9:38:a5:63:
78:c5:ca:bd:56:d7:15:36:30:08:d7:d9:48:61:52:
1b:54:fa:8b:f5:1c:cd:db:95:34:9d:2b:45:62:b9:
ee:3d:8e:a7:bc:4e:8a:83:e9:78:a1:42:b9:ed:7c:
41:d1:4d:f5:72:4f:f4:23:43:aa:25:63:e4:37:d2:
67:73:2a:3f:d8:d5:70:e9:1a:99:fd:3d:d0:b1:5b:
85:46:a8:7b:0a:47:df:6d:3f:e0:d2:bc:2f:5d:1f:
18:1d:bc:da:ee:36:86:6b:1b:03:a3:5c:f2:c8:28:
3f:84:7a:25:02:d6:a6:24:d3:c5:df:cb:6e:30:09:
b6:d1:c2:8f:7d:2a:ad:e4:17:38:8f:3c:51:43:9b:
f1:72:d4:4d:c3:a2:00:22:64:b0:4c:30:09:4b:c5:
40:4f:8d:cf:0e:43:b6:da:43:b5:bd:6c:33:10:b6:
ef:cf:34:8b:fb:d7:b4:af:b6:96:bf:4b:d7:46:ed:
30:f1:0e:f9:e2:3e:6b:c2:42:25:7f:83:23:c6:90:
6a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:AD:CA:25:56:9E:26:F3:88:3F:DD:7C:BC:2F:4A:6E:B6:B1:0B:67
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bq3KJVaeJvOIP918vC9KbraxC2c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.192.0/20
Signature Algorithm: sha256WithRSAEncryption
8c:a2:a8:f4:cc:eb:9d:ef:77:d4:d1:4a:69:f0:23:36:29:b4:
dd:0e:8c:8e:fd:24:4d:b3:ff:7b:54:12:fe:7f:fa:1b:3b:58:
39:de:ca:b0:e2:95:b6:cf:1a:5a:6d:cf:e7:d8:17:d5:29:f6:
73:45:de:83:84:5a:64:e0:44:b0:e4:13:ce:7e:e0:e0:e7:de:
b5:58:3d:fd:ff:a7:27:c9:78:db:18:3f:b7:b4:aa:fc:a3:58:
c5:0d:bc:d4:ab:9e:53:62:41:08:83:9d:32:e6:7c:44:70:29:
74:69:b1:0e:fc:5f:ac:b7:52:5c:0a:f3:5b:e2:8c:48:42:97:
ac:92:6a:cd:0f:6f:a2:69:d0:a9:53:c0:b3:e7:22:e7:76:27:
ba:11:62:07:f5:25:29:ab:29:fe:8a:d3:04:f3:a0:9d:0b:aa:
c8:fc:b1:86:33:bc:89:88:f1:ee:d2:bd:6c:0c:53:d9:44:68:
aa:64:f6:20:d6:7e:08:c1:42:4f:d0:7a:f9:d5:35:bb:cd:29:
3a:ab:27:8e:9a:70:08:35:bf:ba:df:b0:61:39:61:12:a2:f6:
55:8c:89:72:57:64:59:5a:b3:8c:57:bc:1f:dd:e6:94:82:36:
41:19:77:95:4b:ba:00:0d:f8:d5:56:89:44:30:5b:f3:8b:24:
60:f0:e8:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:50 2023 by rpki-client on console-fra.rpki-client.org