Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ye-9KrHGcc0w9xnJ7Tkj7kkrt5w.roa
File: ye-9KrHGcc0w9xnJ7Tkj7kkrt5w.roa (raw, json)
Hash identifier: s2uGQDClnO1yeYiwca7dCqwjczFqbi7sJRkhPjHcOB4=
Subject key identifier: C9:EF:BD:2A:B1:C6:71:CD:30:F7:19:C9:ED:39:23:EE:49:2B:B7:9C
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0EF5
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ye-9KrHGcc0w9xnJ7Tkj7kkrt5w.roa
Signing time: Sun 07 Feb 2021 12:30:57 +0000
ROA not before: Sun 07 Feb 2021 12:30:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 49.158.40.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3829 (0xef5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:30:57 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C9EFBD2AB1C671CD30F719C9ED3923EE492BB79C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:46:92:4f:db:c1:34:18:fc:08:2c:2f:92:58:
46:22:c4:1f:76:a5:ab:59:65:15:39:14:61:9e:9a:
5d:91:9c:e6:77:5e:32:19:f9:90:db:a5:20:1c:1b:
e9:25:95:5a:1c:7f:01:7a:19:a6:75:7e:24:bf:f3:
44:3f:8f:3b:90:3c:9e:f1:46:af:4c:88:09:b9:64:
5c:8f:e1:ad:70:06:79:10:b8:34:85:66:aa:06:83:
21:31:78:e0:f0:81:56:a2:55:79:30:8b:40:46:bf:
d1:8f:3e:74:cd:d1:ee:f2:f6:5d:f1:55:04:02:51:
a9:9e:ff:95:71:83:11:73:ff:c8:a7:78:c5:aa:a8:
49:ef:9a:c3:28:14:7a:8c:c7:0f:59:10:55:45:ab:
01:2d:94:3e:56:d0:7d:84:04:ed:a1:96:a9:6d:ed:
b8:d8:c6:dc:55:6c:e0:04:c6:87:90:1e:73:dc:49:
0e:bb:4d:a6:ff:f4:c1:af:47:3b:b9:d1:5e:05:9a:
1d:2c:1a:5f:23:56:7c:99:3b:65:b2:ab:68:4c:8e:
b3:fa:87:90:90:b9:74:22:d4:39:18:0a:d0:4e:42:
32:dd:5e:ab:69:59:01:5d:0c:f1:ea:28:46:8f:b2:
d1:48:ed:56:39:71:5d:e4:21:0d:cc:da:2e:1c:84:
2f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:EF:BD:2A:B1:C6:71:CD:30:F7:19:C9:ED:39:23:EE:49:2B:B7:9C
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ye-9KrHGcc0w9xnJ7Tkj7kkrt5w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.40.0/21
Signature Algorithm: sha256WithRSAEncryption
7e:ea:f4:da:c6:01:73:57:7c:2c:8f:11:a3:92:49:a8:6a:52:
02:72:f2:ce:5d:3d:5c:73:d2:af:17:57:04:a2:19:cf:35:2d:
49:ca:3d:fd:97:52:45:fb:4c:87:06:89:94:ea:e0:5e:2a:a4:
6c:60:7d:c6:b0:15:85:27:87:26:d2:bc:86:8a:15:c2:73:ef:
a5:fc:0d:8c:23:29:f7:61:02:e8:7c:f7:cb:55:a4:fe:fe:d1:
6d:28:e3:ce:cb:95:5a:bb:74:ee:20:cf:06:58:4d:07:bf:64:
3a:c6:65:8b:e0:04:88:3f:46:5e:96:37:3f:8b:2d:4c:b4:26:
9a:92:85:65:52:99:27:23:b0:2d:92:b8:ad:28:22:11:6a:94:
1b:f0:02:8f:e1:cb:ca:97:1a:ab:fe:15:6f:a8:b5:27:e6:06:
f5:2f:7e:70:e1:6f:1e:8a:08:06:e7:10:c5:13:44:87:3a:47:
c5:4f:37:ca:06:4a:63:3a:c5:03:d8:37:8e:ed:6c:51:21:dc:
79:f2:44:71:fa:ef:8e:2e:13:d4:ef:97:64:79:5c:24:ec:f0:
fa:ef:49:54:55:c1:91:bb:96:01:b6:e9:c7:5e:38:5f:88:ae:
42:90:73:8f:a5:20:ca:c7:f0:92:4a:c1:59:a6:2d:b2:c8:fc:
5d:cc:5d:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:42 2023 by rpki-client on console-ams.rpki-client.org