Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jFi9OjUkEFtHutf84ONf4uQk4oI.roa
File: jFi9OjUkEFtHutf84ONf4uQk4oI.roa (raw, json)
Hash identifier: Z4Q5XsZ4Ous/m57pRAKkeq35j6tjsbJM1zOqpJJfMj0=
Subject key identifier: 8C:58:BD:3A:35:24:10:5B:47:BA:D7:FC:E0:E3:5F:E2:E4:24:E2:82
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1461
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jFi9OjUkEFtHutf84ONf4uQk4oI.roa
Signing time: Thu 19 May 2022 06:01:55 +0000
ROA not before: Thu 19 May 2022 06:01:55 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 49.158.136.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5217 (0x1461)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: May 19 06:01:55 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8C58BD3A3524105B47BAD7FCE0E35FE2E424E282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:4f:88:d3:f6:c7:35:a9:1e:85:cb:a4:dd:b8:
d6:c3:6a:e6:21:11:e4:63:46:39:23:da:5f:a5:56:
38:c4:39:2b:8a:3d:03:54:37:47:79:66:c2:a8:bd:
70:f1:bc:07:cc:e0:2b:09:9b:a3:61:b0:53:14:f0:
17:ab:6c:08:ad:9d:14:5d:91:7b:aa:45:e0:95:b5:
75:82:3a:d7:8d:23:5c:66:d1:28:45:85:67:29:5b:
d9:13:27:ec:27:a5:39:9d:9d:5f:5b:ea:75:cf:b5:
de:ea:28:71:c7:5c:dd:33:e3:bf:54:59:f6:f8:b6:
11:5e:d2:e8:b5:31:65:89:10:d0:28:b3:3c:d1:81:
8f:de:b8:5e:56:20:1c:aa:27:ed:83:19:45:39:d6:
7f:61:91:42:c8:2c:cd:7d:3b:89:42:42:43:09:5a:
8a:c2:72:06:87:6f:13:43:a8:b7:08:40:77:97:58:
89:1b:d8:09:59:57:1d:d6:78:d8:7a:ea:81:58:ee:
12:27:03:f6:76:43:c9:f0:89:b5:07:17:78:ff:1a:
00:29:9b:60:72:0d:84:5e:7d:93:4a:7e:de:82:47:
6a:10:55:dd:8b:72:eb:ae:05:7d:b3:20:8a:ae:92:
1f:56:80:1c:f1:61:56:34:26:73:fb:88:2b:01:de:
89:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:58:BD:3A:35:24:10:5B:47:BA:D7:FC:E0:E3:5F:E2:E4:24:E2:82
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jFi9OjUkEFtHutf84ONf4uQk4oI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.136.0/21
Signature Algorithm: sha256WithRSAEncryption
9d:06:44:ee:7b:9d:6b:08:87:8b:8f:61:42:89:69:73:cc:b9:
b1:da:43:d2:fb:b9:bb:9d:31:d1:f4:63:1a:16:89:08:41:3a:
fe:4a:13:dc:4b:60:56:fb:e5:5f:1a:b6:c6:b6:50:85:00:b4:
e2:d1:1a:8b:15:b0:e5:2e:fa:cf:64:cb:9f:52:e2:b2:c4:1f:
1a:48:aa:5b:03:6c:6f:2b:01:9e:2e:65:d0:82:43:2c:0c:6a:
77:c1:9a:d2:a6:ec:53:df:18:10:09:d9:29:fa:84:f6:92:07:
73:1f:fb:64:61:8a:3e:56:6d:17:94:60:a1:9f:69:66:71:4a:
3f:10:3c:d0:e4:5c:66:3b:3b:5f:36:48:8a:51:4d:92:58:22:
b9:e5:54:bd:2f:28:09:10:66:09:99:b1:d1:1b:fb:e9:04:0c:
f1:69:25:44:3e:24:a1:3b:d0:f4:17:36:d6:45:ea:3c:f1:d9:
f8:35:cf:16:f7:f0:fb:af:87:f9:c4:2f:a4:3c:e6:e1:86:56:
1a:0e:a6:cd:29:1c:d9:f4:5c:6c:cf:ea:9a:22:6b:64:24:e9:
0f:c7:1a:0c:bb:36:b6:69:42:c7:d5:53:2b:da:cd:ce:85:0d:
b4:9b:7f:73:11:17:6b:5c:a0:5a:ec:9c:c1:16:34:09:d0:d8:
fb:92:2f:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org