Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oXGizyFjliHqIJMkVUGiwa4N47I.roa
File: oXGizyFjliHqIJMkVUGiwa4N47I.roa (raw, json)
Hash identifier: Kz/poe9PVO+g4STHqMXDVlibfFkmXNf9efQjUDPCR1U=
Subject key identifier: A1:71:A2:CF:21:63:96:21:EA:20:93:24:55:41:A2:C1:AE:0D:E3:B2
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oXGizyFjliHqIJMkVUGiwa4N47I.roa
Signing time: Thu 15 Sep 2022 02:35:40 +0000
ROA not before: Thu 15 Sep 2022 02:35:40 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.158.80.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:35:40 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A171A2CF21639621EA2093245541A2C1AE0DE3B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b1:8a:98:a5:96:04:b0:8d:b2:69:7a:3e:f5:
39:33:c5:c8:97:8d:3f:97:77:44:df:d7:08:b6:b7:
1c:d0:4c:9e:c6:36:54:a9:21:da:d8:a0:64:eb:32:
8b:d7:82:3a:4e:46:ed:22:1c:d0:e8:ea:4d:22:5b:
db:bc:40:81:97:95:7b:26:2d:74:95:95:89:c5:cf:
ca:6b:d5:58:22:19:cf:72:48:4a:e2:77:6d:a7:9d:
d4:61:91:32:09:e4:e5:90:51:21:bb:a4:dc:3f:72:
f9:01:b1:8a:1e:e7:7c:ab:75:73:c7:a8:c1:a6:48:
da:57:51:9f:38:9b:c6:73:70:9d:fc:c9:5e:2b:42:
95:cb:66:bd:c5:e8:eb:cc:10:f3:a0:67:35:06:ad:
15:aa:2f:18:ec:e7:97:d1:ca:8d:74:62:e8:82:be:
89:d4:58:99:01:46:ae:ee:2c:2f:11:85:ba:52:95:
1f:c6:ee:41:ce:db:02:52:db:c5:f9:ad:aa:27:93:
35:33:75:52:e3:11:02:b3:40:0b:98:7d:6e:3c:07:
48:c8:dd:73:be:8f:51:51:c2:fd:5e:c2:08:a7:bd:
c5:db:1f:84:84:6c:5d:87:9c:a3:95:b6:0d:8a:50:
78:0c:29:e7:b2:4b:bd:ec:37:46:e0:c0:34:b6:4e:
d9:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:71:A2:CF:21:63:96:21:EA:20:93:24:55:41:A2:C1:AE:0D:E3:B2
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oXGizyFjliHqIJMkVUGiwa4N47I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.80.0/21
Signature Algorithm: sha256WithRSAEncryption
0d:0f:9d:48:df:d0:f4:8e:27:fe:45:d6:7c:83:74:f9:26:a1:
7f:fc:b1:37:9f:bb:c4:d0:e0:54:fa:11:80:bc:72:64:60:6f:
41:6a:f7:b7:71:97:48:35:47:ba:24:6a:68:ed:c4:95:40:8e:
2c:2d:1c:ac:73:0b:88:e5:9c:53:df:22:db:62:15:8b:74:78:
09:fc:ba:01:1e:87:32:7a:67:88:dc:cf:5c:a0:ba:3e:3c:bf:
c9:e8:c5:28:30:3d:2c:81:b4:58:33:f6:35:4a:4c:ea:8e:d1:
d4:5f:b8:02:6e:1a:ff:cf:8d:3d:ae:47:d3:b9:ee:c5:57:25:
b4:88:c7:53:31:cd:22:ec:a5:f1:6d:7e:42:5e:91:58:2b:7d:
29:22:2a:82:84:68:71:39:7d:b0:88:cf:56:20:33:ad:ff:2f:
13:af:3b:a7:4a:51:c7:53:31:42:a7:3d:f7:bd:d9:ed:f0:14:
f2:da:1a:56:c7:e4:fa:a5:9e:8f:3b:61:51:f8:5c:7e:21:49:
72:55:43:95:bd:34:eb:45:35:91:a9:7b:54:44:cc:a8:fd:72:
6d:55:c1:af:8d:a2:2e:6d:2f:ed:cc:2f:2f:63:2e:fa:f0:d5:
60:54:b4:99:73:47:bb:a8:2f:8c:f5:50:d3:6f:b0:77:a9:38:
65:8e:4d:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:49 2024 by rpki-client on console-ams.rpki-client.org