Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yN225gRmOPcxoR7KrYYaXZ3HEsc.roa
File: yN225gRmOPcxoR7KrYYaXZ3HEsc.roa (raw, json)
Hash identifier: 7B6T65J5Hcr9PkyGyAtdkN7C0ZgT8YgOhBijekhjfvk=
Subject key identifier: C8:DD:B6:E6:04:66:38:F7:31:A1:1E:CA:AD:86:1A:5D:9D:C7:12:C7
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0B2F
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yN225gRmOPcxoR7KrYYaXZ3HEsc.roa
Signing time: Tue 29 Sep 2020 10:08:07 +0000
ROA not before: Tue 29 Sep 2020 10:08:07 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 49.159.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2863 (0xb2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:08:07 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C8DDB6E6046638F731A11ECAAD861A5D9DC712C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:8f:51:65:29:07:19:ff:54:0d:24:4c:09:3c:
53:86:a3:08:2f:35:97:88:59:14:30:7d:72:4f:92:
85:3a:c2:0b:65:48:a7:19:aa:18:94:5f:b7:21:54:
f1:58:02:eb:1e:3b:cc:0e:eb:55:da:2b:9b:dd:04:
2e:4d:ae:5c:80:08:46:a8:f4:ae:9b:c7:2b:8b:b5:
1c:b6:60:02:42:af:b3:f2:a8:6b:e0:1c:ff:36:b0:
70:df:d3:b8:24:4a:af:10:c1:90:f8:0b:11:01:c7:
b1:3c:30:95:cc:01:1c:79:d3:26:39:b2:c7:91:21:
46:a1:0f:9d:3d:67:36:9b:54:e9:3c:14:78:03:46:
9b:04:5a:98:6e:27:01:77:38:39:4e:c1:a8:ea:a4:
f2:d0:cf:cf:14:1b:67:44:51:8d:a9:2a:56:e8:7b:
69:b8:f9:47:1c:0a:6b:f5:c5:2c:60:ff:0b:0f:ca:
0c:e6:c7:ce:0f:fc:c4:d3:7c:31:79:d0:60:37:2b:
a3:9e:b8:f6:0e:cf:c1:1a:12:d2:8d:91:6b:8d:4a:
0c:c5:13:56:b8:44:e7:85:3f:1f:74:cd:56:5a:8a:
85:6f:35:4b:44:62:76:56:83:a3:e7:aa:1c:1c:69:
1a:23:c1:14:12:48:00:3a:cb:48:22:e3:a1:da:18:
51:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:DD:B6:E6:04:66:38:F7:31:A1:1E:CA:AD:86:1A:5D:9D:C7:12:C7
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yN225gRmOPcxoR7KrYYaXZ3HEsc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.4.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:28:05:fb:6b:2e:ca:0b:9b:e9:c8:b1:86:2d:53:95:81:d8:
27:f0:bd:90:38:08:4e:e7:03:fb:8b:7c:a5:25:90:ac:47:4c:
9e:74:51:3a:72:79:e9:2f:00:ad:24:48:8d:d0:bd:3e:60:82:
c2:b1:d8:33:ff:aa:57:e8:21:bc:83:66:71:10:42:e5:a4:fa:
9c:46:e4:a2:19:ce:1a:23:67:85:6f:41:88:e1:a8:e3:ec:5a:
f9:2c:38:ad:c2:bf:24:f0:10:cd:0e:1e:99:87:4f:54:92:d1:
c5:ad:71:2b:a5:84:e9:8b:40:ae:fb:21:55:c8:33:d4:66:d9:
25:10:f5:10:0a:4c:04:5b:aa:ce:10:bd:f9:b9:08:0b:d7:2d:
f6:ca:b8:cd:07:fc:01:01:33:41:98:dc:30:52:aa:ee:3a:fd:
8d:f0:a4:95:1f:cc:fa:06:62:c0:9e:a5:cf:98:0f:dd:12:5b:
3f:37:45:aa:4a:0b:9e:1e:8c:85:19:c0:6b:1d:2e:15:92:43:
6d:57:ea:f4:39:d1:5e:f6:f6:0b:48:b5:58:c7:68:21:64:c6:
ab:4a:93:0a:13:85:4f:7f:57:23:80:bc:32:f6:56:3b:2f:1f:
2e:62:b8:42:98:10:6d:d4:4b:40:72:3a:05:0f:57:2a:a4:ee:
2c:6b:01:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org