Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DVNRIkN9qBX2FHVrf0rKWBSzPTc.roa
File: DVNRIkN9qBX2FHVrf0rKWBSzPTc.roa (raw, json)
Hash identifier: yaxfHpbV8F8KBTA3Tqjln+l4H2DocvW14PhDWS7ixe8=
Subject key identifier: 0D:53:51:22:43:7D:A8:15:F6:14:75:6B:7F:4A:CA:58:14:B3:3D:37
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DVNRIkN9qBX2FHVrf0rKWBSzPTc.roa
Signing time: Thu 15 Sep 2022 02:36:18 +0000
ROA not before: Thu 15 Sep 2022 02:36:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.158.76.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:18 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0D535122437DA815F614756B7F4ACA5814B33D37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ed:fb:48:a6:8d:b4:47:1b:8e:ee:ea:01:75:
b2:9b:e7:2b:6f:31:8c:38:d3:0a:89:cd:9f:44:62:
50:8f:d8:35:ef:b3:34:e4:56:81:3c:b5:19:f0:2e:
86:40:83:18:3a:65:5e:47:be:81:6b:c3:ab:07:ff:
45:bf:52:da:d0:cd:bd:45:bc:51:b2:29:4b:17:e5:
9d:a3:d4:f1:f7:cd:7c:d0:15:5c:32:74:5c:59:7a:
6a:b9:f1:25:8c:1a:ed:8d:76:34:17:90:6c:1d:7d:
7d:d8:f4:39:d2:d0:51:c0:50:21:39:b8:bd:05:5f:
88:71:f5:14:5a:78:01:17:53:5a:34:33:3b:3b:9f:
23:fd:9b:fa:ef:2c:fa:22:31:45:77:e3:05:f6:0c:
98:03:da:70:d3:15:14:50:23:30:45:59:21:91:2f:
4b:b6:ef:14:19:28:45:1d:3d:b2:6e:1e:81:58:ab:
f5:98:03:34:ed:f2:ac:23:e5:cc:80:0e:c7:5d:a4:
c0:06:9e:93:71:26:ad:ea:73:51:0a:6e:e4:3c:97:
ed:73:3c:49:e1:29:9c:14:25:15:df:e5:a9:a4:58:
fd:32:b4:ad:4c:21:ea:3f:36:c7:44:0e:12:9b:af:
e6:07:39:28:56:42:b7:40:00:9b:7d:03:7b:1a:03:
37:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:53:51:22:43:7D:A8:15:F6:14:75:6B:7F:4A:CA:58:14:B3:3D:37
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DVNRIkN9qBX2FHVrf0rKWBSzPTc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.76.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:da:d7:65:c7:8d:1d:00:dc:ee:29:3a:95:4c:27:a6:1a:5c:
d6:cd:3a:9f:1e:ba:71:02:ce:89:4d:1c:07:c9:9e:bf:31:9d:
42:19:4d:4b:80:c6:5a:cb:84:12:f7:88:7c:cd:24:e2:4a:c1:
77:46:26:5e:29:9a:6c:13:1d:f0:f4:5a:a8:04:a5:f6:3a:22:
e0:6c:dd:aa:18:7d:ef:0d:35:b3:a5:f8:1e:6b:f6:5a:af:51:
f7:ab:bf:fe:48:41:f5:50:a5:99:99:61:68:8d:b0:3b:e9:66:
79:c2:82:3b:62:79:f7:86:76:0f:eb:bb:78:3f:d5:6c:e4:16:
ad:28:09:a2:b0:e6:02:38:33:07:e2:07:3c:4b:3b:c9:30:03:
e9:6f:eb:1c:c6:83:4a:ca:8f:ec:fd:75:b7:37:f7:50:1b:fa:
e3:24:1f:3e:4b:76:f4:06:6e:f5:80:9e:b2:03:00:c8:2e:b6:
12:60:7e:45:a9:83:8f:8c:6a:25:ea:8b:18:48:80:3b:a4:7e:
b2:30:e0:54:27:01:7c:1e:95:6c:fc:a0:79:9f:63:6e:3d:06:
ac:8b:d7:80:e2:1f:a5:83:42:04:12:ca:e6:2a:ab:03:cb:77:
8d:9c:42:64:04:22:3b:7c:e4:42:c7:37:ab:68:2c:81:02:f9:
18:0b:99:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org