Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/mjfZjglMISIxdAHALteUAmiTWWo.roa
File: mjfZjglMISIxdAHALteUAmiTWWo.roa (raw, json)
Hash identifier: jQpF6thchmccViFES71PXI322ApIDlg0mU3/vVj2YlI=
Subject key identifier: 9A:37:D9:8E:09:4C:21:22:31:74:01:C0:2E:D7:94:02:68:93:59:6A
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1430
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/mjfZjglMISIxdAHALteUAmiTWWo.roa
Signing time: Wed 04 May 2022 01:34:29 +0000
ROA not before: Wed 04 May 2022 01:34:29 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 49.158.232.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5168 (0x1430)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: May 4 01:34:29 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9A37D98E094C2122317401C02ED794026893596A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:98:bc:49:8f:15:c6:89:cd:5a:1c:12:77:32:
4c:14:2b:22:01:2f:cc:d8:d6:4a:8a:08:71:9e:4e:
f3:0b:0e:e5:0c:ab:57:67:b7:dd:28:57:50:ee:fe:
47:df:d6:ff:65:28:03:20:18:fa:20:0b:de:2e:fa:
7e:c4:ba:f5:f1:ee:76:53:0d:81:79:54:8f:d6:2c:
77:37:05:10:52:e2:d1:aa:9a:5b:5a:59:4e:fb:ad:
25:16:19:15:56:75:97:a4:af:c4:df:8a:b6:32:93:
00:ce:9f:a8:6f:e1:13:52:cb:9a:bd:04:a7:65:73:
c7:a0:04:ae:34:78:2a:8b:8a:d6:3a:a9:34:c2:46:
f8:ba:e9:f0:15:56:f5:ed:c1:4d:66:f6:ad:b4:4a:
38:00:cf:0d:73:c1:68:1a:27:6f:9b:2e:bf:a0:b9:
8f:f6:cb:3d:b5:88:6e:b1:8d:eb:70:ee:75:49:39:
cd:e9:d5:77:41:da:ec:34:ed:81:fd:a3:67:54:aa:
45:c8:43:9f:66:69:57:cc:59:42:ce:27:cc:5e:ad:
40:a4:a0:4f:06:2f:60:d8:2a:9f:47:49:d3:c4:ab:
4d:dd:80:fe:a3:2b:52:3d:22:d5:76:1d:a1:7b:b3:
4a:3f:83:70:fd:d0:1d:12:75:44:95:b1:c2:28:27:
7f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:37:D9:8E:09:4C:21:22:31:74:01:C0:2E:D7:94:02:68:93:59:6A
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/mjfZjglMISIxdAHALteUAmiTWWo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.232.0/21
Signature Algorithm: sha256WithRSAEncryption
29:00:b0:77:e8:76:d2:50:8f:b4:8d:01:9d:15:bc:d3:59:4d:
b9:d6:1e:aa:6e:50:b0:2c:88:86:db:1e:0a:f2:2c:9b:54:5a:
cc:5b:95:56:0c:e7:f5:83:19:b3:c7:a1:0b:fd:f5:27:0f:96:
33:e1:fa:d1:cc:fd:98:01:53:61:24:4b:b3:66:16:da:d5:45:
93:f3:88:75:e6:13:e5:e4:82:80:f1:ac:76:6f:72:fe:2c:ad:
ee:b1:92:91:53:24:65:55:18:39:01:28:66:f4:00:b5:53:f7:
ef:38:99:78:43:fb:02:ad:fc:5a:2f:3b:8c:ea:69:4c:8d:1b:
08:ba:82:8c:7d:9c:68:cc:74:76:f0:6d:28:97:99:fd:e5:1a:
9a:fe:cd:0b:64:5d:0e:0f:1e:06:a2:ce:3f:e2:fd:c9:f5:a4:
ee:9d:eb:ec:74:03:36:8e:f8:04:19:96:24:39:3f:51:0c:6a:
96:3f:fb:a2:76:d0:d6:29:51:f0:b5:33:b1:22:a6:7e:f6:e4:
f3:46:2f:a2:1f:df:d3:7b:7b:bf:e6:7c:d1:7c:fb:4b:14:88:
55:a4:39:55:cd:9f:6e:54:f5:a9:66:81:6c:67:54:47:01:69:
de:d1:1b:81:ab:08:86:74:84:27:f5:95:9b:07:9a:f9:38:19:
6f:3d:66:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:40 2023 by rpki-client on console-ams.rpki-client.org