Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/d__015G-xKIGkxwODCLYzre2aXQ.roa
File: d__015G-xKIGkxwODCLYzre2aXQ.roa (raw, json)
Hash identifier: uPmYdrB2VMix8Eh3FWG04tOw9yfHsCww58t5gqp6h9o=
Subject key identifier: 77:FF:F4:D7:91:BE:C4:A2:06:93:1C:0E:0C:22:D8:CE:B7:B6:69:74
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0AE2
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/d__015G-xKIGkxwODCLYzre2aXQ.roa
Signing time: Tue 29 Sep 2020 10:07:45 +0000
ROA not before: Tue 29 Sep 2020 10:07:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 49.159.218.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2786 (0xae2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:07:45 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=77FFF4D791BEC4A206931C0E0C22D8CEB7B66974
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:19:89:7d:8f:d5:9b:b6:ac:23:96:60:e6:33:
25:88:05:8b:48:00:bf:f1:9b:22:63:c5:0e:14:f4:
b4:47:c6:9c:ca:22:45:22:84:06:a1:c4:6c:7e:d3:
f7:2d:fc:d7:64:9f:a1:35:19:30:53:da:7f:61:03:
cc:29:86:93:67:8f:0d:b9:12:5c:55:fc:92:3c:7f:
8c:54:cc:04:49:8a:f8:92:88:2f:8f:15:4e:ce:fd:
06:60:1e:21:35:1f:6f:d8:91:cb:e9:bd:ce:7f:18:
51:0a:fb:e9:4f:70:42:b1:f6:3f:60:8e:ce:1a:48:
ba:17:f8:1a:56:ed:d7:4e:7b:6a:6d:36:cf:6f:d3:
0c:ea:7e:d7:e9:f9:4a:57:1f:a6:e2:9b:82:4c:61:
e8:3c:f6:82:86:52:62:33:23:8c:35:a8:e2:b4:6f:
bd:f8:16:09:de:c2:ca:36:c5:32:9f:97:01:07:89:
b3:d8:82:e7:ef:7a:cb:f2:50:bc:91:c0:cd:c7:d8:
ec:93:26:1f:3d:aa:e8:0c:ba:1d:94:bc:82:3d:23:
cb:7f:ae:22:f0:62:04:22:ae:27:0f:ee:1c:05:13:
71:5a:fb:f5:37:0d:f0:12:d7:48:ce:52:67:d5:50:
77:31:71:d4:67:af:b8:e4:cf:6a:f2:18:bf:9b:c7:
bd:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:FF:F4:D7:91:BE:C4:A2:06:93:1C:0E:0C:22:D8:CE:B7:B6:69:74
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/d__015G-xKIGkxwODCLYzre2aXQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.218.0/23
Signature Algorithm: sha256WithRSAEncryption
29:4b:cc:7e:64:f7:68:16:59:cf:78:79:1e:db:f9:5e:7f:aa:
85:bc:f8:70:08:b7:58:62:b6:fb:06:46:c0:83:b5:40:a1:e1:
9b:bb:95:33:e8:ab:98:5d:e4:95:a7:43:a2:93:93:5b:8c:f7:
82:7c:88:0c:ab:3e:ea:c6:ce:92:8a:fe:29:b9:81:7e:ae:6a:
bf:9d:0e:6e:79:05:67:b9:27:3c:b6:29:03:e2:61:0e:5a:66:
0b:0a:3e:64:ca:83:50:88:82:ea:81:ba:cb:76:2c:ff:e8:3c:
0c:aa:cb:dd:d7:ce:18:da:2f:cd:7a:a8:1a:a8:65:7b:3a:14:
f0:18:b0:c0:ba:ec:97:9e:ea:ba:03:2a:7d:76:13:5e:06:78:
69:99:d2:0e:b2:a1:94:18:18:1b:ca:bc:a2:2c:79:21:8f:7b:
d7:bd:4f:69:0e:61:b7:e5:55:17:cd:95:ca:31:64:e2:32:33:
a4:a3:89:53:e2:16:ad:5b:9a:7e:03:70:33:04:1b:e6:29:7f:
fd:c5:ad:c7:4c:c9:1a:e4:98:a1:9a:d0:3b:67:74:6d:82:b5:
e9:c6:b2:f1:b1:c4:0e:53:32:8d:94:50:a6:ce:5a:f8:f9:fa:
ce:68:2c:07:9b:2a:48:73:a2:1b:61:9d:30:03:93:86:34:eb:
77:4a:b0:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:48 2024 by rpki-client on console-ams.rpki-client.org