Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/pGtcDoYAkbZeZp-rozWl0qvMriQ.roa
File: pGtcDoYAkbZeZp-rozWl0qvMriQ.roa (raw, json)
Hash identifier: Vf8CYxGj9eSKuB3Z9M4mIkovrwH3gFQuODq0wfzKE+0=
Subject key identifier: A4:6B:5C:0E:86:00:91:B6:5E:66:9F:AB:A3:35:A5:D2:AB:CC:AE:24
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0EF3
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/pGtcDoYAkbZeZp-rozWl0qvMriQ.roa
Signing time: Sun 07 Feb 2021 12:30:55 +0000
ROA not before: Sun 07 Feb 2021 12:30:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 49.158.32.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3827 (0xef3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:30:55 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A46B5C0E860091B65E669FABA335A5D2ABCCAE24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:52:bc:ea:a5:30:40:10:46:cd:28:62:5b:36:
bd:2f:67:a7:59:b4:c6:66:c8:a9:54:96:b8:a3:59:
f1:fa:5b:76:f0:3f:18:d5:11:42:61:2d:5d:c3:d4:
49:2b:77:e1:3a:79:d8:c8:b5:39:7a:a8:85:17:da:
8e:b1:d8:c7:1e:24:d1:73:68:01:07:d0:bd:34:bf:
7d:a1:17:00:94:ed:b6:e1:f5:9c:54:71:a5:e5:64:
f9:a1:16:e9:d2:ee:19:21:59:b1:ba:7a:46:d1:bd:
0b:1d:73:f7:8c:f3:8c:e1:5b:08:f2:0f:38:b3:66:
1a:6c:fc:db:eb:60:ec:82:ec:4c:fb:34:34:22:ed:
3a:a5:f4:3c:90:08:d1:93:74:27:19:f8:53:5b:7d:
cd:32:cd:e1:db:c1:2c:97:46:ec:f6:ee:27:75:d0:
46:b8:68:9f:c9:8c:fa:2c:ac:1e:72:9c:30:7f:ce:
e3:8b:30:98:8f:ea:06:6c:58:33:07:a3:2f:bc:d8:
05:29:ee:1a:65:91:04:56:de:1a:f1:39:52:47:e4:
39:dd:c5:89:05:8a:3c:66:c6:f1:10:18:74:ed:7a:
a5:bd:b9:43:f7:8a:0f:4e:0e:1f:a3:cf:c3:00:02:
84:3d:0a:44:e1:67:49:8e:26:f2:ff:67:a7:05:be:
fe:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:6B:5C:0E:86:00:91:B6:5E:66:9F:AB:A3:35:A5:D2:AB:CC:AE:24
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/pGtcDoYAkbZeZp-rozWl0qvMriQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.32.0/20
Signature Algorithm: sha256WithRSAEncryption
0e:d8:fc:2a:c7:d7:41:8a:24:72:84:0e:f7:cb:d1:fc:3a:91:
70:b9:13:d6:27:08:17:bd:7c:cf:ba:c8:c8:9c:93:6b:66:70:
35:94:c9:1e:4f:2e:a9:5d:92:ac:bc:08:ba:34:46:bb:85:2c:
0c:9f:65:75:04:a1:68:65:53:f9:07:2d:48:db:1e:e0:eb:6a:
df:62:b9:66:99:92:e2:c7:83:2e:de:a7:69:0a:cf:81:04:46:
28:5f:42:35:5a:e6:82:64:4f:63:b0:1e:ce:3b:22:77:dc:de:
06:8e:bf:93:78:5d:80:55:9f:e4:f8:b2:fa:ec:55:74:ae:a3:
95:bf:90:e0:03:5f:cc:1c:72:1b:20:82:d9:f7:08:e7:8f:a6:
00:30:98:e1:85:a6:03:81:45:11:30:47:36:7b:81:3f:77:19:
3a:ac:34:36:41:db:e6:52:70:b7:93:44:51:30:f5:9e:3a:84:
dc:49:c0:fe:b8:a6:c5:d9:b0:26:7e:f6:66:e7:86:bc:fa:31:
60:19:28:6e:b0:2d:1c:85:51:a3:e2:a0:8b:f5:d7:1c:14:6e:
ce:c5:68:f1:8a:a0:9f:ed:73:6e:c6:54:af:bd:b8:f8:60:05:
aa:2b:45:08:50:96:55:48:96:21:28:ca:dc:52:73:82:3c:32:
b7:2d:2e:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:40 2023 by rpki-client on console-ams.rpki-client.org