Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jS0kXQx3xSO23lIuTchtGdk8eSA.roa
File: jS0kXQx3xSO23lIuTchtGdk8eSA.roa (raw, json)
Hash identifier: bzlWnn/sPsBlN+8tXgW4OM+FeDKZjlsD2h+UdQT6zac=
Subject key identifier: 8D:2D:24:5D:0C:77:C5:23:B6:DE:52:2E:4D:C8:6D:19:D9:3C:79:20
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12A4
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jS0kXQx3xSO23lIuTchtGdk8eSA.roa
Signing time: Wed 29 Sep 2021 02:54:49 +0000
ROA not before: Wed 29 Sep 2021 02:54:49 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24163
IP address blocks: 49.158.208.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4772 (0x12a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:49 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8D2D245D0C77C523B6DE522E4DC86D19D93C7920
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:11:bf:38:c7:de:1b:dc:da:3b:1d:23:c0:c1:
24:57:97:4e:75:21:59:6f:c9:5e:b9:39:58:92:e6:
c4:c2:7f:91:24:e2:b6:8c:de:2d:a1:79:80:49:04:
b3:7d:1d:6b:74:ed:cd:7b:06:02:52:37:60:d8:a6:
64:cc:49:66:93:6c:48:1d:51:0f:85:de:ca:5b:ad:
21:ec:f4:f4:39:c9:7a:13:a3:b1:ef:a8:e3:55:c9:
83:bf:2b:1f:49:31:4d:b3:3e:38:b8:cd:5f:d5:fd:
6a:b5:74:ee:80:f6:32:20:70:36:fc:3d:0f:49:1b:
22:7a:14:11:b2:59:77:34:fe:ae:3a:ce:40:4a:a9:
81:e6:b8:2a:13:c3:15:da:f6:a9:af:3f:5c:b7:58:
88:41:76:83:5c:b0:af:08:a9:89:b2:b9:72:43:53:
6d:58:d3:36:76:c9:c3:c7:82:dc:46:e5:02:56:4f:
cc:5f:51:d7:90:8f:63:25:76:57:73:26:f0:ba:6b:
d8:be:10:93:b5:c0:5b:c7:df:32:15:d2:9d:bc:45:
96:98:ac:ae:b6:61:2c:82:87:e5:f2:01:5c:61:5a:
e3:08:0a:45:d1:f9:23:dd:82:35:6f:38:d0:e9:53:
ad:34:a9:cf:9f:82:64:ed:3a:42:e1:c6:b3:cc:b9:
24:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:2D:24:5D:0C:77:C5:23:B6:DE:52:2E:4D:C8:6D:19:D9:3C:79:20
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jS0kXQx3xSO23lIuTchtGdk8eSA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.208.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:29:ec:32:b8:fb:ec:6e:dc:05:f4:50:b3:ed:e6:ff:de:9b:
9f:c3:a1:3e:14:2d:94:b1:61:99:85:2d:c6:28:9d:ec:b0:d5:
b5:f7:bd:cf:2b:31:60:42:84:17:e7:d9:94:e3:dc:8c:2f:80:
cf:5e:23:90:71:b4:4b:f7:a5:98:c1:14:0c:0f:23:d0:06:78:
c1:a1:61:4f:66:88:1a:35:0a:3b:db:13:b1:e4:d5:e3:4b:6e:
07:b8:7f:88:b4:80:ef:d3:58:a2:83:dd:f8:d4:58:1e:26:98:
00:60:07:64:39:25:56:51:bd:9e:f8:bf:e7:13:10:54:18:5f:
b1:62:ec:f8:51:6f:e9:c7:76:09:48:1f:6c:61:83:a6:7b:62:
ea:c1:af:e9:3c:3f:45:57:35:7f:fa:c5:91:6b:70:9e:b0:35:
0e:43:ee:2e:a5:ee:2a:28:74:02:60:f3:52:a4:99:aa:b9:41:
e0:9a:25:bf:4d:d8:81:89:75:6c:ee:5a:24:53:5f:ea:65:f0:
9c:6c:e3:83:72:e2:9e:99:d8:2a:8f:6b:ab:6a:74:73:b0:6c:
1b:38:c2:a1:c6:23:b0:18:03:da:6c:d4:11:c0:1b:3a:10:76:
34:c1:31:ef:6b:ae:30:44:aa:b4:2e:65:ad:27:db:9e:63:5e:
e5:26:fe:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org