Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/mhHv4alcHm4cM5DJjlIzM1QJhpQ.roa
File: mhHv4alcHm4cM5DJjlIzM1QJhpQ.roa (raw, json)
Hash identifier: HOaV9YVTS9GJtTtNH8rxEKVrpFE2clQOQudZ6jtYwx0=
Subject key identifier: 9A:11:EF:E1:A9:5C:1E:6E:1C:33:90:C9:8E:52:33:33:54:09:86:94
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 129F
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/mhHv4alcHm4cM5DJjlIzM1QJhpQ.roa
Signing time: Wed 29 Sep 2021 02:54:47 +0000
ROA not before: Wed 29 Sep 2021 02:54:47 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24163
IP address blocks: 49.158.192.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4767 (0x129f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:47 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9A11EFE1A95C1E6E1C3390C98E52333354098694
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:23:7a:3e:38:12:e2:b7:72:a7:9b:dc:a0:b4:
de:de:76:81:cb:11:5b:92:87:c9:48:b6:69:88:4c:
1e:1e:44:be:d8:39:e7:37:0f:19:1f:36:83:4d:fe:
a1:43:44:a9:83:93:c2:a3:7d:3f:5b:3e:ee:4b:05:
7f:c5:51:eb:b4:d8:4a:bc:e9:02:24:e9:fc:c2:52:
e8:e0:bc:89:40:49:41:99:d7:58:e9:35:3e:fb:90:
fe:a6:4c:a1:7c:2e:76:b6:ef:69:85:03:72:c7:f2:
0d:35:20:23:d9:21:f6:5a:33:78:6a:17:f5:5e:eb:
00:3c:90:86:be:dc:ec:e3:7c:c4:ca:5d:f3:a1:e3:
0a:a2:84:c9:fd:16:07:86:10:2d:85:d0:bc:a5:b0:
78:09:5f:dc:45:c5:45:0e:f2:07:39:64:98:d4:83:
72:97:35:5c:f1:7d:b1:14:2a:ad:d1:78:eb:c2:dd:
e8:8a:bb:14:58:4b:8e:32:bd:42:e0:65:22:1f:05:
c2:4d:70:7b:73:93:8b:c3:d0:b7:56:a6:b4:67:72:
cc:f3:1a:5e:f2:37:6a:90:2d:ad:55:89:06:dc:c4:
02:0c:8d:75:54:87:86:92:45:58:41:72:87:c3:56:
a8:19:c7:c8:34:e1:51:65:1c:e5:29:86:94:ae:7c:
c9:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:11:EF:E1:A9:5C:1E:6E:1C:33:90:C9:8E:52:33:33:54:09:86:94
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/mhHv4alcHm4cM5DJjlIzM1QJhpQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.192.0/22
Signature Algorithm: sha256WithRSAEncryption
58:b1:21:f5:47:06:ad:41:86:91:ab:3c:22:f7:02:8a:86:0a:
51:79:e2:c0:be:00:e6:36:a7:52:1d:2c:50:de:3c:f0:13:64:
0f:02:26:19:1a:45:12:72:65:cf:54:c2:28:e5:cf:d7:ee:e5:
34:10:cd:3b:c8:42:2b:6b:1a:1b:74:d9:4e:93:12:e5:3c:16:
42:e7:e4:93:05:46:46:7e:56:b4:88:44:57:f5:8f:fd:9f:5d:
94:c7:0b:90:45:7c:b0:ae:de:54:bc:4b:fb:8d:b9:5b:ff:dc:
4b:b3:9f:e8:4c:68:f7:ee:db:08:50:62:d1:6e:57:cc:e4:0f:
78:a8:07:83:7d:09:db:bb:e8:aa:aa:4e:3b:37:01:0c:3c:9d:
11:05:90:be:41:c4:23:b5:bd:69:54:fa:cd:17:5a:7b:38:20:
ed:f8:c2:0b:2a:d3:1e:c4:9f:d4:de:4f:57:b1:b2:e8:b7:ef:
e2:a6:cf:6e:82:bf:d7:c0:d3:6e:36:9e:a5:ce:e0:e1:be:3d:
38:24:b4:4f:7f:a5:e9:e2:41:5c:6e:30:1b:37:b1:27:e2:d7:
dc:25:f5:d9:eb:81:49:cb:36:14:96:79:f0:21:93:64:00:8f:
b1:fe:b8:3e:ad:87:72:bd:1f:40:0f:30:01:c8:b2:65:8c:44:
8f:3a:45:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:49 2024 by rpki-client on console-ams.rpki-client.org