Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/33gtNaobMvuan5ir5QxUQ-bbZ2c.roa
File: 33gtNaobMvuan5ir5QxUQ-bbZ2c.roa (raw, json)
Hash identifier: gs8Xxki14dD/t+Q/BIqfE3lvBCrCobsplcVdK37m+40=
Subject key identifier: DF:78:2D:35:AA:1B:32:FB:9A:9F:98:AB:E5:0C:54:43:E6:DB:67:67
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/33gtNaobMvuan5ir5QxUQ-bbZ2c.roa
Signing time: Thu 15 Sep 2022 02:36:21 +0000
ROA not before: Thu 15 Sep 2022 02:36:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.158.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:21 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DF782D35AA1B32FB9A9F98ABE50C5443E6DB6767
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c6:4f:9d:61:c0:ad:5f:89:52:38:4e:9a:5d:
5f:ad:bd:a1:61:78:78:5b:02:7a:c9:90:c1:fa:46:
e7:3d:46:5d:80:3f:59:eb:1e:91:75:dc:a6:0d:d8:
6e:ff:f5:2b:ec:db:02:8e:31:a4:cf:98:63:b1:c9:
42:f8:a0:1f:b9:b8:14:8a:f2:29:80:92:be:66:56:
f3:28:78:3f:63:85:23:4f:b1:05:ac:55:42:c5:40:
3b:17:15:1b:73:25:6e:ca:8d:81:d8:6a:2b:4a:11:
8a:72:a2:29:7b:0b:84:96:28:56:c8:10:d5:de:82:
eb:3c:0e:19:4a:31:80:ff:ba:55:7d:14:9d:cd:27:
00:7f:06:31:e8:35:3c:22:d2:28:58:c3:78:72:78:
be:f2:39:48:aa:98:98:2a:2e:71:58:d4:2b:7f:e6:
42:a6:9c:fc:5a:89:28:48:dc:ef:83:3b:2c:b1:d0:
6e:67:bc:50:ed:a2:41:fa:c5:f5:d1:88:27:96:d5:
5f:53:0c:52:79:b4:9a:3e:7a:23:b4:ad:46:3c:28:
8a:56:54:4d:9c:4f:ad:0f:b6:57:8a:d5:8a:25:42:
0d:b1:39:5d:29:2c:77:33:48:3f:a2:10:c5:af:03:
b6:cc:eb:05:9c:a6:b4:f5:3d:e8:93:1d:cf:2d:67:
e2:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:78:2D:35:AA:1B:32:FB:9A:9F:98:AB:E5:0C:54:43:E6:DB:67:67
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/33gtNaobMvuan5ir5QxUQ-bbZ2c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.147.0/24
Signature Algorithm: sha256WithRSAEncryption
20:29:0e:16:76:a6:f0:00:3b:5e:75:9c:b8:7c:4f:a7:d8:5f:
ff:43:e0:4b:f8:a6:15:1d:e2:65:2d:b9:32:db:50:59:7f:25:
b9:7f:db:b8:6d:d8:57:c1:31:e6:78:9a:ca:5c:99:69:b2:2e:
45:74:94:1a:5b:7b:68:b5:a8:42:70:6e:90:8e:07:09:94:4d:
f1:98:0e:c3:1a:43:74:12:43:d9:30:d5:d8:4e:f9:61:9c:31:
2a:cd:56:a4:56:f5:69:06:26:9d:e5:b9:a6:01:19:bf:6e:f6:
5d:b3:84:a0:8a:b1:ee:9d:ea:b0:90:0f:ac:d6:74:6d:21:1f:
0a:77:e7:26:cb:57:73:34:f0:a0:26:f6:41:08:2b:c8:e8:84:
66:5a:15:c2:09:8c:f6:f9:cf:13:5f:f7:c8:09:17:6b:87:ef:
9f:f2:8b:6b:12:b1:84:31:ea:b6:f2:00:1e:da:7d:fd:0a:6c:
60:09:d0:98:e8:13:df:a0:67:f0:cd:a9:fe:d6:69:9f:c7:f9:
99:62:b9:a9:4b:e6:67:84:fc:27:d3:cf:46:f4:27:48:00:80:
8c:33:c9:22:7d:f3:6a:94:16:05:fc:6a:7f:ad:25:4d:3f:03:
db:18:c0:d1:8b:a6:1b:ca:40:4e:80:2a:e8:31:1f:90:b6:85:
4a:89:7f:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org