Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ofGl2s6p4lznA2CfKFsPcmeQ3fg.roa
File: ofGl2s6p4lznA2CfKFsPcmeQ3fg.roa (raw, json)
Hash identifier: hBP5e4zr8mjG3rJ6JulR3KwH0C2D97G7C85pGWCM3OU=
Subject key identifier: A1:F1:A5:DA:CE:A9:E2:5C:E7:03:60:9F:28:5B:0F:72:67:90:DD:F8
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1E1D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ofGl2s6p4lznA2CfKFsPcmeQ3fg.roa
Signing time: Fri 01 Sep 2023 10:15:41 +0000
ROA not before: Fri 01 Sep 2023 10:15:41 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 49.158.124.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7709 (0x1e1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:15:41 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A1F1A5DACEA9E25CE703609F285B0F726790DDF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:14:15:cb:19:03:f0:43:7e:e8:68:ab:44:86:
bd:4e:13:23:58:81:0e:b8:70:48:1f:fb:99:f0:73:
e3:4b:07:a5:df:9e:1b:ff:09:dc:70:2a:fe:e6:80:
90:9c:e0:04:40:6d:c8:5d:0a:8c:fb:ea:bd:f8:f9:
8d:73:13:69:2e:ff:d3:c6:12:e6:d4:16:e6:be:d7:
18:dd:6a:5c:f7:e7:0a:44:2e:0a:9e:98:60:e0:27:
b7:37:f1:8a:47:1e:2e:30:87:b3:81:03:fa:1a:c1:
bf:77:15:18:59:3f:62:e3:04:b3:c8:66:6d:9b:ad:
88:b9:41:00:a1:f4:85:41:dd:cc:04:38:46:e6:4c:
c2:6b:4f:15:17:c1:28:b9:df:23:c4:4a:ae:28:3d:
ca:26:70:64:d7:b8:a3:b8:06:74:1e:d8:5a:a7:63:
b8:05:a2:ad:65:b4:f2:52:8d:35:0b:0e:2a:ef:e4:
3b:e3:d2:45:e5:a5:96:aa:82:63:d6:a7:c3:3a:f4:
9c:b5:17:b1:8d:4d:72:65:81:ad:82:98:f1:74:07:
a8:2e:2c:6b:35:e6:0c:71:29:85:22:e4:22:08:65:
9f:57:b9:3b:a7:67:0e:7e:18:1e:00:37:a7:7c:e0:
53:25:73:09:1a:ac:49:cd:ed:38:dd:07:7e:81:a1:
d3:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:F1:A5:DA:CE:A9:E2:5C:E7:03:60:9F:28:5B:0F:72:67:90:DD:F8
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ofGl2s6p4lznA2CfKFsPcmeQ3fg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.124.0/22
Signature Algorithm: sha256WithRSAEncryption
33:f7:0a:43:0e:10:7f:af:62:1d:60:2c:e0:d2:5b:7f:06:6f:
22:04:85:06:f8:22:ee:1c:f3:8c:69:9b:80:75:aa:f5:9b:95:
b1:e3:8e:11:b1:48:7e:14:6e:96:ad:85:85:a0:4c:8c:a7:5e:
c0:4f:48:7c:1a:1c:2b:b7:57:16:f9:87:1f:07:07:16:23:dd:
c0:22:89:00:ca:c9:a1:5d:9a:aa:2e:d6:fa:35:30:58:4d:cc:
23:44:b6:df:ad:ea:47:85:af:ad:09:bd:26:48:00:b8:2c:ff:
21:e6:60:25:9f:09:b7:ca:3e:dd:51:14:b3:6f:e2:44:12:8e:
ad:30:c8:27:29:4d:a3:78:2e:08:80:d5:44:4a:7a:ba:4b:4e:
c6:d8:68:87:9b:d9:1c:23:72:86:e9:47:4b:14:eb:ae:57:f0:
bf:f6:ab:12:0b:a3:c3:f6:33:73:1a:b2:4e:d6:f9:9b:df:ad:
41:b6:5e:5a:5d:12:5a:2b:ee:a4:14:22:0f:2a:38:ec:8a:f6:
89:42:d6:7c:3f:ae:2d:e0:93:e3:11:15:83:cb:4d:50:ab:3b:
98:89:f8:20:fd:b6:1d:b3:e8:92:24:60:3f:51:fe:d8:42:9b:
c8:dc:40:25:87:9d:1c:35:50:a7:3a:59:12:6c:8b:5d:07:27:
ac:75:7e:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:49:36 2025 by rpki-client