Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oRgtU3OM8sG1JLoqWLKtlTO-Lt0.roa
File: oRgtU3OM8sG1JLoqWLKtlTO-Lt0.roa (raw, json)
Hash identifier: BbhskkLRXzuT9N18MFf+nElrb49Pk7OWIRvGGJw8h9o=
Subject key identifier: A1:18:2D:53:73:8C:F2:C1:B5:24:BA:2A:58:B2:AD:95:33:BE:2E:DD
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12A0
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oRgtU3OM8sG1JLoqWLKtlTO-Lt0.roa
Signing time: Wed 29 Sep 2021 02:54:47 +0000
ROA not before: Wed 29 Sep 2021 02:54:47 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24163
IP address blocks: 49.158.196.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4768 (0x12a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:47 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A1182D53738CF2C1B524BA2A58B2AD9533BE2EDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0a:5a:c3:9c:1d:03:e1:04:d7:57:f2:57:92:
24:f5:7d:9c:5d:b8:e9:34:94:c9:de:98:cd:8d:cb:
f6:f2:37:ee:81:05:e7:58:97:1d:17:14:04:d4:51:
48:29:bc:80:ab:43:9a:e5:8f:72:7f:bb:78:57:46:
24:87:e3:8a:2f:4b:f0:b1:fa:81:58:01:e3:a0:68:
a6:34:1e:aa:c6:60:b6:b7:56:b1:1b:c6:2b:05:f5:
09:2f:49:eb:93:38:39:26:df:6d:02:2a:53:4e:92:
76:ba:7c:c8:e5:77:07:b1:a0:06:dc:e7:c2:6b:bc:
35:73:30:d1:d5:ee:9c:3a:f7:53:a2:58:55:0b:bd:
0b:88:0e:13:72:9b:b0:ce:55:d5:67:36:96:8e:10:
5a:19:1b:40:3b:a4:a7:5c:38:fc:4a:e5:c3:75:50:
fe:09:6d:7e:f3:03:1d:01:93:38:f7:68:53:1c:3c:
63:ef:cb:68:72:1b:3f:06:e0:b3:b1:9f:56:4f:2a:
52:97:13:05:ec:66:bf:25:71:81:46:b1:19:4f:4f:
28:9b:c4:86:d0:0b:c2:f1:84:56:a8:63:ef:62:2d:
5e:fa:9b:a1:f2:76:0a:90:1d:5b:fb:d4:e8:24:10:
40:64:cc:69:e2:e0:62:b5:39:51:27:e7:e3:4e:61:
c5:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:18:2D:53:73:8C:F2:C1:B5:24:BA:2A:58:B2:AD:95:33:BE:2E:DD
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oRgtU3OM8sG1JLoqWLKtlTO-Lt0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.196.0/22
Signature Algorithm: sha256WithRSAEncryption
57:83:d9:68:e8:96:46:c1:ca:79:15:40:ab:c7:83:9b:5c:da:
f6:e0:79:1d:0d:d0:3b:4f:1b:e4:02:89:19:2f:0c:e2:74:0e:
19:48:19:96:ba:52:25:3c:71:df:5a:1f:1c:99:8c:23:ec:b3:
c6:18:78:df:0b:08:03:39:fa:fb:d0:9f:53:a3:71:12:1e:5f:
e7:7f:19:5b:fc:05:88:be:78:5c:e5:03:21:af:97:be:6f:58:
70:03:6d:46:28:22:c6:00:eb:08:eb:41:c9:d3:d1:a4:0a:b1:
c6:45:1f:a3:74:da:e5:24:e0:b2:96:f6:4a:1f:73:b0:2a:1c:
c5:7b:5a:69:fc:cd:b4:95:98:5f:d4:e4:89:c5:da:a1:50:42:
20:f6:d0:01:6c:81:9b:99:03:a7:3c:27:0b:0c:0f:ce:98:de:
67:d7:6b:8b:1f:d9:bf:e4:a7:01:60:25:0b:d0:9b:dd:ed:d9:
9f:2e:c9:64:c5:90:73:24:10:bb:dd:e5:6d:68:89:13:bb:2d:
e5:87:0d:1f:15:02:42:85:ac:2e:f1:86:b9:29:c5:65:e3:4d:
4b:b6:7f:a8:7f:7d:b5:85:e8:b6:cd:e9:98:f7:e4:48:2c:a8:
83:7b:5e:99:28:aa:64:7b:59:60:b1:86:8f:29:39:07:1b:54:
15:d4:c0:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:49 2024 by rpki-client on console-ams.rpki-client.org