Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0ZXUEGXQ7xNKPgZZcmRercvJyAg.roa
File: 0ZXUEGXQ7xNKPgZZcmRercvJyAg.roa (raw, json)
Hash identifier: MKTlD9HCa1FkQ0CqQzCQvVsCRR35dwgC1xj8SoPiYn8=
Subject key identifier: D1:95:D4:10:65:D0:EF:13:4A:3E:06:59:72:64:5E:AD:CB:C9:C8:08
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1340
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0ZXUEGXQ7xNKPgZZcmRercvJyAg.roa
Signing time: Wed 29 Sep 2021 02:55:32 +0000
ROA not before: Wed 29 Sep 2021 02:55:32 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 114.198.176.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4928 (0x1340)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:32 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D195D41065D0EF134A3E065972645EADCBC9C808
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:fa:ab:31:35:31:e6:09:bc:aa:a4:81:fd:00:
45:21:3b:08:69:47:fe:58:fb:14:02:17:8c:1d:c1:
08:82:27:12:99:a6:60:de:60:7b:1d:8a:d7:8b:4c:
b9:fa:b9:1a:7e:51:63:9e:7c:0f:df:bf:49:14:29:
eb:bb:01:63:66:30:12:04:d8:63:1f:aa:b1:8f:89:
c6:ce:38:54:40:a1:7f:1d:9c:85:a5:5b:59:76:bd:
ff:fb:1a:5f:b4:b9:dd:c0:94:38:d2:ed:bd:d5:87:
2c:8d:86:7c:a1:5d:9e:ec:34:cc:78:f3:c5:34:5c:
25:7a:c9:f1:91:98:45:b5:d6:f6:13:20:2d:52:43:
cf:ba:76:03:f9:e0:a8:b9:c2:ed:e5:22:08:45:f3:
a7:ff:1b:16:10:83:9b:43:5d:7f:26:62:7a:2f:7b:
50:04:5b:1f:d7:f3:d6:33:65:12:ac:07:62:f1:58:
71:d4:6b:62:73:10:3e:f7:d5:3b:f7:7f:18:dc:db:
7c:76:b1:1b:a3:b3:53:e2:60:09:f2:a2:94:c2:a5:
b5:5d:0a:33:49:b8:41:d7:7c:69:71:eb:e8:75:d4:
d0:f1:dc:09:21:5b:2e:8b:3d:07:8f:5d:71:2f:f2:
2f:d7:30:fe:b5:8d:b5:7f:37:1c:70:f0:e0:b3:4d:
73:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:95:D4:10:65:D0:EF:13:4A:3E:06:59:72:64:5E:AD:CB:C9:C8:08
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0ZXUEGXQ7xNKPgZZcmRercvJyAg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.176.0/20
Signature Algorithm: sha256WithRSAEncryption
6a:16:e4:54:e1:64:59:4a:12:87:dd:3d:db:92:64:19:2f:25:
7f:91:3a:1b:22:dd:ba:e1:e9:c5:53:9a:21:a3:e2:ce:45:cd:
3e:ab:a9:c6:09:af:bb:e6:04:31:e1:41:c6:ce:74:7d:76:6a:
81:2c:3d:78:bc:54:93:c9:0f:ea:39:16:7e:fe:26:ac:f4:f9:
6c:3c:4c:b5:4b:44:00:ab:85:25:f7:48:e8:fe:ef:1c:17:b7:
60:90:21:dd:3c:12:ca:7f:07:a5:69:6e:bc:9e:4c:5a:56:c1:
fa:87:fb:fb:e1:ed:5a:e1:84:fb:66:03:0c:a5:61:16:79:09:
bb:01:73:4a:3e:3d:43:89:34:ef:c2:89:08:9c:b9:a6:2e:15:
14:b8:b9:a7:72:55:6c:31:20:a8:a9:51:2c:bc:69:f1:16:9f:
2d:82:9c:3e:3f:f2:03:21:51:9a:3b:3f:19:71:94:77:58:65:
ff:25:55:8d:8f:e3:01:99:4d:1e:48:93:72:c0:5f:e6:7d:0e:
16:4f:fb:2f:ff:c2:39:be:5d:26:a2:19:ff:7f:b0:f7:cf:53:
08:97:ab:d6:a8:13:02:c9:7a:4e:3f:14:eb:15:0d:02:2c:b1:
6d:7e:cc:05:b3:ef:a5:50:4e:70:9f:9b:ab:30:ce:63:a8:46:
d1:ee:34:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org