Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qVOHOxFz8Pg0iKymFd5SmAEb-Ys.roa
File: qVOHOxFz8Pg0iKymFd5SmAEb-Ys.roa (raw, json)
Hash identifier: muJspr4E2lOjt130kXxAxNY2WDQxRAPwe7Akcv7DvRo=
Subject key identifier: A9:53:87:3B:11:73:F0:F8:34:88:AC:A6:15:DE:52:98:01:1B:F9:8B
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 129E
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qVOHOxFz8Pg0iKymFd5SmAEb-Ys.roa
Signing time: Wed 29 Sep 2021 02:54:47 +0000
ROA not before: Wed 29 Sep 2021 02:54:47 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 49.158.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4766 (0x129e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:47 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A953873B1173F0F83488ACA615DE5298011BF98B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:43:be:f2:2e:9b:af:01:45:f8:54:a2:8a:1e:
15:d1:a9:9d:19:1e:f5:39:88:b5:9d:26:05:93:f3:
c3:ea:2a:85:43:16:b7:c6:84:d9:6a:4b:9d:8a:2a:
6c:33:c3:e0:d8:95:e3:c0:25:a1:d4:0b:27:a8:3c:
83:bf:d3:58:25:ef:5b:29:05:06:11:88:52:d9:e8:
02:6e:a8:73:59:5e:fd:3b:97:81:e1:86:7a:5e:45:
85:45:67:35:51:22:8e:bd:14:ed:31:93:1c:f1:96:
b1:cb:00:ef:9c:c3:31:bb:40:e6:fc:e1:d0:f4:cb:
3d:95:1f:e6:e5:11:ca:85:a5:ae:a1:a4:66:59:0c:
36:1c:c5:ea:85:e1:05:f1:d0:e0:1b:41:14:64:92:
e9:44:98:22:5a:06:63:60:6b:f2:b5:c6:f3:09:9d:
07:bc:d3:e2:9a:a3:32:79:5d:9f:10:18:09:37:77:
0e:cb:e7:28:62:34:89:46:46:a6:fd:46:f0:27:73:
8e:68:b2:6c:40:6a:e5:e2:10:40:fc:85:5a:64:06:
0d:95:2d:7b:ae:79:05:26:df:13:d1:5e:b9:7b:fc:
80:34:b6:00:bb:03:a2:e6:7f:66:0f:7e:fe:c8:e6:
3f:14:8e:e0:d3:bc:30:56:d8:a1:8c:79:c7:59:70:
fc:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:53:87:3B:11:73:F0:F8:34:88:AC:A6:15:DE:52:98:01:1B:F9:8B
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qVOHOxFz8Pg0iKymFd5SmAEb-Ys.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.237.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:5d:e7:3a:3b:94:28:dd:4c:63:59:56:a1:a6:6e:3b:20:21:
55:50:19:b4:fc:c9:7d:20:6c:18:86:8e:a6:86:3c:b1:ca:cf:
6d:03:b7:24:7f:61:30:2b:c1:91:9f:0a:9e:d8:70:38:65:59:
55:06:a9:cd:a7:4f:48:52:1b:47:a0:5e:4e:16:0d:29:bd:19:
a1:60:40:7a:59:2a:e0:2c:2c:2c:d6:c2:ec:c8:bc:53:56:5e:
38:23:ca:20:16:c9:ad:c8:0c:ee:ad:b6:85:46:4e:ee:f2:9d:
e3:42:76:c8:40:dc:3d:09:e2:6c:5e:d1:52:9d:69:db:45:e7:
ca:d5:1c:d0:03:b3:3e:52:b6:b0:21:0e:1a:1c:23:59:d6:04:
ec:1c:5b:ff:89:a2:7a:94:2c:79:e5:15:28:82:e3:d1:40:46:
14:df:25:f9:3a:ef:cd:f4:f7:d5:39:d6:ed:31:17:77:24:fa:
8a:a8:45:23:f3:66:ac:6d:77:80:8d:74:07:f7:63:b6:27:48:
e7:23:e1:37:a8:e6:29:a0:f5:e2:db:19:da:9d:41:20:d2:56:
ab:32:1f:33:a1:af:54:60:ef:f5:62:ca:cb:54:ea:06:00:c1:
7d:59:04:6d:2a:64:6a:40:ab:3a:f4:21:ec:f3:e4:e0:35:bd:
d5:fc:3e:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org