Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/gmTJtDQk3xlKbIyWYHa2UWk6Rbg.roa
File: gmTJtDQk3xlKbIyWYHa2UWk6Rbg.roa (raw, json)
Hash identifier: 2Yw/ax4iY6n5n5jSQWd+4FKEbItbgyn+RKJWDSLC0oM=
Subject key identifier: 82:64:C9:B4:34:24:DF:19:4A:6C:8C:96:60:76:B6:51:69:3A:45:B8
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0D17
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/gmTJtDQk3xlKbIyWYHa2UWk6Rbg.roa
Signing time: Thu 14 Jan 2021 06:56:41 +0000
ROA not before: Thu 14 Jan 2021 06:56:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 49.159.216.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3351 (0xd17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Jan 14 06:56:41 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8264C9B43424DF194A6C8C966076B651693A45B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f4:18:86:91:aa:69:b6:80:78:4c:6f:4d:dc:
79:9a:a9:ff:7e:d7:0f:cc:32:6c:2e:59:92:8e:15:
93:2a:07:12:39:10:5d:48:ad:c2:84:b6:20:4a:10:
6a:e9:e7:0b:1c:c8:50:df:4f:78:fe:75:54:15:6a:
a7:90:7d:d0:56:ff:59:99:8c:7b:08:4d:f2:36:73:
8d:08:d0:2a:52:13:1c:fe:83:5a:14:43:ae:22:f3:
a3:8c:c9:28:3f:8a:62:44:4e:64:8f:9b:f0:55:85:
42:81:dd:63:f1:1a:62:a9:55:8c:6b:44:57:01:fd:
44:8e:10:d6:9e:3b:eb:12:82:13:00:aa:ce:77:5e:
95:8f:59:2e:53:0d:69:5b:7b:93:45:c3:e7:e4:50:
b2:5a:d4:df:b8:69:06:e1:32:f9:9e:ab:16:81:ab:
67:e0:87:9b:9c:9e:3c:a0:6d:bd:b7:84:45:cb:8f:
b8:3f:06:68:73:b7:71:d3:cf:17:d2:b6:23:92:37:
70:9a:1b:6e:93:c4:f5:e2:55:b8:67:95:d8:6d:ff:
a3:67:df:61:87:e0:4a:98:b4:3e:44:02:2f:48:84:
72:f3:87:12:81:7a:1d:14:75:d0:d0:fb:b8:3f:0e:
55:22:93:3b:ab:4c:cc:74:6f:64:60:eb:60:46:a9:
5b:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:64:C9:B4:34:24:DF:19:4A:6C:8C:96:60:76:B6:51:69:3A:45:B8
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/gmTJtDQk3xlKbIyWYHa2UWk6Rbg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.216.0/21
Signature Algorithm: sha256WithRSAEncryption
3e:c9:eb:85:66:92:28:58:75:2d:68:04:76:20:71:92:a5:5a:
40:14:80:d3:d1:5a:9b:c7:87:59:d8:0a:9a:eb:b8:33:b2:01:
81:51:88:36:d3:a4:62:d2:93:d8:b2:bc:f6:1a:d1:ed:7c:59:
91:ed:57:0d:50:91:c2:39:b6:a6:72:78:31:ca:17:30:03:1a:
49:7f:34:e1:8e:84:ef:10:d6:8c:0e:c6:96:1c:da:db:52:df:
46:ed:69:65:f5:bd:bd:cf:40:cc:fe:ad:65:03:8a:a7:61:90:
33:c9:a7:ae:56:e3:2a:11:77:b4:47:90:80:49:ec:eb:c5:1a:
2b:16:8b:9b:6b:46:49:d5:8a:98:e4:ac:b5:35:c0:58:85:f9:
43:a8:d1:13:f1:5d:d4:54:9c:46:45:db:4c:5e:25:66:63:52:
6a:b1:f7:3e:b3:21:ac:a3:7b:cb:40:ea:39:93:f5:3a:20:7e:
bf:de:68:4e:50:c5:a9:3c:b9:b6:6e:59:0e:34:4e:e6:be:e9:
e6:4c:b4:1a:62:12:a5:fb:38:68:97:38:9b:60:dd:01:cb:d3:
95:59:b4:b5:50:a7:0b:fb:f4:38:12:aa:11:d9:65:b2:f7:61:
a9:7a:fc:1e:5b:94:e2:5f:44:80:24:9f:44:ea:f0:ae:1f:7a:
4e:f0:0a:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:49 2024 by rpki-client on console-ams.rpki-client.org