Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/u8CDrdGyUKBa4zbE6BNp7QdBYqw.roa
File: u8CDrdGyUKBa4zbE6BNp7QdBYqw.roa (raw, json)
Hash identifier: 8GKtZe7pQ/zFNwgxJyoRSMc/FBGF/f+9ky874UF5psc=
Subject key identifier: BB:C0:83:AD:D1:B2:50:A0:5A:E3:36:C4:E8:13:69:ED:07:41:62:AC
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0FAD
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/u8CDrdGyUKBa4zbE6BNp7QdBYqw.roa
Signing time: Sun 07 Feb 2021 12:35:31 +0000
ROA not before: Sun 07 Feb 2021 12:35:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 49.158.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4013 (0xfad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:35:31 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BBC083ADD1B250A05AE336C4E81369ED074162AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:84:7a:40:94:67:b7:32:35:86:8a:e2:e0:d9:
e4:21:57:28:bc:82:2c:96:31:68:1e:05:94:c3:ca:
3b:24:cc:b6:ac:80:b3:35:39:da:d5:0c:ae:69:08:
89:30:25:b1:ab:7f:55:0e:94:31:95:d3:64:bf:54:
3d:ff:b7:bf:a9:ca:cc:7d:aa:32:61:8f:6e:1a:1d:
67:f6:6c:f1:0e:83:34:fa:89:88:50:54:d1:00:9d:
7b:da:9e:8d:ef:99:42:a0:2b:93:07:f8:6f:a2:0d:
62:ae:ad:52:ac:8d:f5:13:3b:c4:16:bd:d8:04:60:
e0:29:01:f3:5d:ad:6d:0f:9b:dd:ae:1d:97:17:da:
9d:40:74:78:be:7e:8e:f0:c0:16:5c:5f:ea:e9:84:
22:ac:99:21:e5:00:66:65:d9:96:40:e2:4b:38:1a:
5a:97:a9:9c:f8:c3:76:cd:5d:34:f8:64:d1:e0:47:
62:11:7f:b9:04:ff:01:fc:fd:2f:f4:9b:e1:66:76:
36:7f:13:da:f9:2c:6d:17:18:8f:9e:cd:43:9d:bd:
64:75:76:bf:a5:8f:8a:bf:d5:82:71:cd:49:c7:ad:
9a:1c:41:f6:13:f2:e1:79:ee:7b:d7:09:d3:06:da:
06:15:90:5b:f9:81:95:02:31:7c:9e:52:b5:85:00:
35:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:C0:83:AD:D1:B2:50:A0:5A:E3:36:C4:E8:13:69:ED:07:41:62:AC
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/u8CDrdGyUKBa4zbE6BNp7QdBYqw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.144.0/24
Signature Algorithm: sha256WithRSAEncryption
84:3a:b1:2b:7f:74:08:44:a8:b3:c6:b0:81:03:b8:de:ab:88:
0b:d8:df:b3:28:7d:33:13:c7:44:c6:12:54:e8:c2:33:1b:cf:
14:5b:9a:ab:80:fa:d6:74:4d:f0:91:dd:87:0a:90:ca:dc:64:
8d:d6:60:ef:46:62:e5:02:58:17:7a:d8:fc:e6:29:dc:55:76:
77:54:ae:72:f1:3a:c9:a1:c8:9e:be:c7:93:1d:9c:8d:a5:28:
25:cc:8d:4e:18:c6:93:7a:4d:24:1c:4d:a1:73:e2:5c:cc:35:
81:a4:a5:bd:14:9b:90:af:fd:d1:dc:af:ce:ed:86:08:7b:9f:
51:e0:0f:44:a9:80:22:04:56:f1:d0:95:81:9d:e2:ee:a7:51:
d7:54:32:21:f9:05:6b:9f:97:6c:96:94:7a:33:b2:f5:9c:e4:
d4:ae:0d:3e:37:c0:03:24:b5:27:60:37:b8:7d:3f:a5:c5:c3:
b8:67:c0:25:dc:b8:bd:63:c1:3f:75:44:1a:80:ae:44:00:c3:
ab:18:39:23:cb:7f:75:9a:07:e4:3c:0a:48:a9:a9:ba:e7:4b:
f0:2a:71:a0:8b:d6:32:a6:81:55:cb:7b:c6:ac:40:a8:35:b2:
64:8a:26:b3:07:8f:7d:66:54:26:9b:02:60:25:a8:26:57:58:
8b:15:ff:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org