Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/cYxh5JGmG_APf1tK-yCGGBHpFLM.roa
File: cYxh5JGmG_APf1tK-yCGGBHpFLM.roa (raw, json)
Hash identifier: 9Dr3bv38qEuzyrtRDyfDiunz09oDcKzNhfb/v1ozBfY=
Subject key identifier: 71:8C:61:E4:91:A6:1B:F0:0F:7F:5B:4A:FB:20:86:18:11:E9:14:B3
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0AC0
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/cYxh5JGmG_APf1tK-yCGGBHpFLM.roa
Signing time: Tue 29 Sep 2020 10:07:35 +0000
ROA not before: Tue 29 Sep 2020 10:07:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 49.158.160.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2752 (0xac0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:07:35 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=718C61E491A61BF00F7F5B4AFB20861811E914B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:0d:17:a7:7d:88:2c:32:17:23:a0:95:a6:f6:
ed:a4:73:d4:77:af:e9:78:03:89:99:0a:0d:ce:75:
40:8d:d1:cf:ad:13:18:1e:22:15:2d:c3:a8:9e:6a:
9a:c7:6d:c8:77:a3:61:6b:ed:88:f2:9a:04:78:29:
67:b2:52:2b:27:d7:06:03:18:08:9b:ee:d6:d2:2c:
b3:84:e2:b8:60:aa:d4:ff:27:54:45:d1:94:e6:50:
cb:7b:e9:b2:94:6c:e3:af:de:4d:e1:c0:b7:00:f4:
3e:d5:b5:04:b0:ca:5d:d1:9b:4b:b3:f1:be:12:f1:
b0:1a:a3:b1:f2:c2:12:ef:dd:ef:66:00:04:84:ca:
05:eb:8c:a2:e0:fb:b9:58:4a:cb:4f:14:87:75:33:
dc:d4:f5:a7:d7:c3:c7:f4:e2:78:c1:70:12:7e:9b:
1d:e3:84:fa:9f:5b:31:7f:17:63:8b:6b:44:bb:e5:
59:e8:84:28:3f:97:1a:3f:4c:74:05:76:39:fc:a6:
c3:e2:99:cd:a7:ec:dd:55:d2:20:ae:32:6e:4a:a2:
16:26:f1:ca:bf:07:68:a3:43:55:07:cb:0b:7d:96:
67:a3:29:78:c6:93:60:a5:86:80:f0:9b:ac:d1:63:
02:d1:47:d4:e6:56:9a:19:4b:4b:1d:1c:3a:0b:1b:
fe:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:8C:61:E4:91:A6:1B:F0:0F:7F:5B:4A:FB:20:86:18:11:E9:14:B3
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/cYxh5JGmG_APf1tK-yCGGBHpFLM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.160.0/21
Signature Algorithm: sha256WithRSAEncryption
17:b7:43:00:54:d4:c2:10:65:c9:d1:d3:d4:1f:8b:22:5b:06:
c0:d6:d8:09:bf:03:ce:69:01:3b:7d:81:db:2e:ef:ec:00:ab:
da:42:36:f7:ca:de:cd:e9:73:88:07:fa:b8:16:cf:80:72:e4:
d0:c5:4c:6a:20:f8:44:93:8b:28:b8:17:d7:71:2f:40:12:a1:
63:fc:25:bb:67:7c:8a:f8:69:68:30:ca:ff:67:a7:cd:14:13:
fa:28:bf:98:6d:18:8a:7b:48:97:16:27:2f:ea:8d:40:de:d7:
57:60:ed:25:d3:ac:b5:a6:d7:e7:54:48:9d:45:74:91:4f:38:
c5:5b:9c:7b:55:76:e6:68:63:a7:c5:68:7e:e6:70:41:3b:57:
da:7d:34:19:b8:45:20:c0:77:6d:05:aa:fe:b6:8d:1f:f8:4a:
87:9c:45:b1:34:cc:57:3f:41:ae:f7:5c:ef:e2:60:40:93:3e:
a0:c4:54:b1:c6:e6:6d:54:e0:f5:72:76:d1:b1:f1:2b:2c:b9:
ae:bd:d5:b4:a0:d9:88:b4:a1:cb:d6:d1:ac:58:7b:0f:73:00:
93:9e:e6:45:19:d7:f6:2c:1d:e4:30:04:f5:ca:a5:fb:85:8e:
53:c4:66:97:be:f1:4a:00:12:4e:3d:47:9d:15:db:92:13:3b:
78:70:d2:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:50 2023 by rpki-client on console-fra.rpki-client.org