Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xMKUfpYB9t2oknehM92ug6tFvbQ.roa
File: xMKUfpYB9t2oknehM92ug6tFvbQ.roa (raw, json)
Hash identifier: qb36+JmXSbep6FYcYPVrAVduHAAn+hGyTstzfzeB4h0=
Subject key identifier: C4:C2:94:7E:96:01:F6:DD:A8:92:77:A1:33:DD:AE:83:AB:45:BD:B4
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12B8
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xMKUfpYB9t2oknehM92ug6tFvbQ.roa
Signing time: Wed 29 Sep 2021 02:54:53 +0000
ROA not before: Wed 29 Sep 2021 02:54:53 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24163
IP address blocks: 49.159.192.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4792 (0x12b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:53 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C4C2947E9601F6DDA89277A133DDAE83AB45BDB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:cf:69:53:40:22:64:c7:d7:59:e3:51:2a:78:
53:a7:b6:dc:12:d4:2b:4b:31:3f:0e:b9:6c:8f:52:
74:48:b5:23:18:cc:03:fb:44:94:60:51:16:7a:42:
55:5e:47:1c:e9:57:9b:df:13:15:fb:ff:fb:df:c3:
ed:49:77:2e:b7:e2:d2:56:d9:9b:20:39:f0:70:1e:
50:bf:cc:37:0d:23:9d:95:0c:b7:bd:d7:2d:77:a0:
db:3c:a9:35:94:e6:e7:2c:e2:b1:73:03:89:89:6c:
bf:f5:e2:dd:ac:67:43:bd:a2:97:53:45:8e:eb:fe:
8b:08:e6:a4:91:57:01:17:2e:7b:4d:9b:48:80:ad:
28:4f:ce:85:f9:cd:81:4a:dd:42:01:07:e1:80:80:
4d:b2:35:29:de:d2:12:ce:39:53:06:cb:03:2a:a0:
c3:f2:7a:9e:04:75:a3:7b:37:f3:ea:71:98:89:99:
3c:6b:d3:27:2c:19:85:72:8e:3a:4e:f6:cc:3b:00:
46:f5:a7:d3:22:e4:62:e2:75:09:4f:54:10:ae:90:
25:2b:be:28:1f:9f:da:cb:97:08:75:0c:3f:be:ea:
ce:9c:26:b6:ce:94:de:a5:f1:7b:df:ee:9a:34:7b:
01:74:48:74:fc:71:ea:58:9c:a0:37:f7:e9:bb:46:
2b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:C2:94:7E:96:01:F6:DD:A8:92:77:A1:33:DD:AE:83:AB:45:BD:B4
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xMKUfpYB9t2oknehM92ug6tFvbQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.192.0/20
Signature Algorithm: sha256WithRSAEncryption
47:45:9b:32:95:bd:da:e1:3e:7e:db:e9:f9:ca:5f:86:ee:6b:
d3:53:c2:69:91:18:e2:28:e8:64:7a:ff:25:f8:a7:26:cb:da:
34:e6:33:c6:61:e8:6e:88:df:13:9e:78:a3:66:c3:52:15:14:
39:79:98:9f:1d:8a:3f:f5:17:15:34:00:3b:ed:91:e3:0b:e5:
82:20:52:c6:83:33:e3:00:32:ca:65:5f:f9:e3:fe:81:45:b6:
8d:38:22:5f:95:b5:35:e3:bd:bc:3d:01:c3:66:8d:d8:8f:50:
1c:54:c2:4f:53:4e:0f:bd:eb:8e:e5:0e:88:53:d4:27:ed:79:
5a:4d:44:0b:75:87:02:c1:56:6d:0a:7b:03:89:a1:93:f1:84:
7a:bd:d1:20:64:ff:9c:02:2d:e0:ba:ed:41:d0:c8:f3:63:0c:
0e:ee:a8:9d:08:11:b2:8c:3b:87:f7:73:de:48:c8:bb:dc:72:
74:82:3e:cd:08:e0:f1:f2:c9:7c:be:b6:ba:b8:f6:a5:fd:09:
93:fe:f7:34:27:77:25:12:56:b1:da:e7:b3:b1:aa:90:ff:51:
9b:a9:37:5b:6c:b7:6b:39:c5:3f:64:9f:bc:c1:c2:22:67:dc:
bf:6f:4c:2f:65:fe:6f:94:51:57:7a:f4:67:58:37:c2:c8:5c:
e3:c9:24:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:41 2023 by rpki-client on console-ams.rpki-client.org