Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xnI2Kh17lQmSF-zonA5--FkmXMs.roa
File: xnI2Kh17lQmSF-zonA5--FkmXMs.roa (raw, json)
Hash identifier: ZhIjdYzc88iJQzaU++fTfGUcrqxCBWRU4eRSKVLPSx8=
Subject key identifier: C6:72:36:2A:1D:7B:95:09:92:17:EC:E8:9C:0E:7E:F8:59:26:5C:CB
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0B80
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xnI2Kh17lQmSF-zonA5--FkmXMs.roa
Signing time: Tue 29 Sep 2020 10:08:30 +0000
ROA not before: Tue 29 Sep 2020 10:08:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24163
IP address blocks: 49.158.176.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2944 (0xb80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:08:30 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C672362A1D7B95099217ECE89C0E7EF859265CCB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:33:8c:8b:99:5c:60:fe:d2:c6:74:88:92:82:
42:12:90:58:f1:6d:06:32:f5:5f:27:f3:ec:47:f9:
24:6c:0e:ec:da:a8:74:b5:a7:c8:ff:8a:8e:29:06:
eb:12:3e:24:a9:64:ff:79:30:c9:df:4c:ac:17:3b:
bd:da:bc:21:e2:f0:28:d6:f3:5d:4a:2c:4f:b0:49:
91:93:b3:f8:76:96:9a:56:7f:89:7a:0b:28:75:52:
a0:8b:fc:58:58:5b:db:c2:5f:80:b3:68:ba:8c:8d:
6b:39:72:65:f8:0b:39:9a:83:85:eb:37:ae:0d:36:
4a:54:de:a8:d4:67:61:1b:90:4d:b8:b7:b9:26:cb:
47:72:9a:a6:28:ba:52:fd:b3:bb:ae:1a:17:a5:f6:
0a:83:68:5d:72:a4:44:80:d8:77:4c:b0:d8:b7:43:
50:4f:e2:ac:68:83:25:dc:59:19:77:b2:fa:06:04:
f1:da:e1:bc:65:35:e3:86:7b:d0:c0:91:61:d4:cf:
60:1f:e1:5a:36:13:60:8c:34:dd:05:95:57:c1:55:
83:b5:f1:e7:b9:d4:59:04:51:eb:25:4e:53:ab:45:
d6:d9:eb:b1:58:1c:02:b9:a1:8b:ab:bc:09:2f:ed:
26:6a:bc:b5:eb:52:15:bd:8c:db:90:e2:b5:b9:00:
53:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:72:36:2A:1D:7B:95:09:92:17:EC:E8:9C:0E:7E:F8:59:26:5C:CB
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xnI2Kh17lQmSF-zonA5--FkmXMs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.176.0/21
Signature Algorithm: sha256WithRSAEncryption
33:6e:a5:4b:02:14:25:73:e1:f8:62:1b:25:f2:19:44:0e:69:
f1:bc:32:01:b0:48:6c:dd:fe:67:f3:ee:97:f6:c6:c2:3c:64:
ff:43:6f:5f:5f:52:eb:37:13:c6:95:bd:52:a6:67:23:38:16:
94:ef:e7:db:d4:fc:88:38:34:84:30:c0:40:b9:7c:e8:77:3c:
71:ee:a3:0f:82:c2:89:2d:45:ec:dc:a4:e9:f4:74:3e:d9:ff:
0d:00:1f:b5:cd:a8:ba:7d:7b:2e:be:7d:01:42:ae:00:01:dc:
67:9d:d4:1c:60:0f:ad:f1:53:9d:43:b9:d8:e3:ad:fd:d9:ca:
03:49:3a:7a:07:6f:e7:68:d4:fe:55:18:ff:0c:73:1a:15:03:
59:1c:b1:ff:41:d9:ff:27:a2:80:b5:08:21:6f:ed:ad:6f:ee:
25:2e:b6:18:52:bf:5a:0d:08:cf:d2:2a:db:15:fe:a5:75:02:
a3:54:87:3c:7e:76:c1:21:8f:58:a3:db:9f:0c:da:d4:e6:0b:
1b:5c:36:80:39:6b:91:a3:8f:29:48:82:82:55:1c:cf:a7:8d:
2c:62:80:6d:0a:36:eb:e0:3a:35:1d:90:7d:57:af:c0:f1:11:
d9:e7:14:63:fb:ef:a3:08:c1:b4:ab:ba:5b:63:c1:e0:ea:78:
5f:12:ec:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:41 2023 by rpki-client on console-ams.rpki-client.org