Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KDRvXHaU6nmcjhb8p1zLT3tKF5E.roa
File: KDRvXHaU6nmcjhb8p1zLT3tKF5E.roa (raw, json)
Hash identifier: VaKRK2g/o92TbgQFdvnZfiuEYnKPqrKcdNRWa18ChcA=
Subject key identifier: 28:34:6F:5C:76:94:EA:79:9C:8E:16:FC:A7:5C:CB:4F:7B:4A:17:91
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KDRvXHaU6nmcjhb8p1zLT3tKF5E.roa
Signing time: Thu 15 Sep 2022 02:36:04 +0000
ROA not before: Thu 15 Sep 2022 02:36:04 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 114.198.176.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:04 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=28346F5C7694EA799C8E16FCA75CCB4F7B4A1791
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:0b:0f:05:c9:2d:ff:d7:a1:7d:d9:e9:ee:50:
e5:e0:03:cc:67:35:b8:be:d8:6f:e8:f4:3f:a0:2f:
4c:a6:51:c5:66:8f:63:db:c9:35:27:9f:c3:ca:85:
97:6c:4c:66:71:bb:6d:f2:3f:97:b7:2a:fd:fd:a4:
23:2f:db:84:bd:75:6b:86:89:e5:3f:51:0e:e3:e6:
1f:fd:e0:4d:0e:ce:93:9f:aa:3a:5f:2f:90:04:58:
d1:58:13:45:73:32:5c:b5:76:e9:ba:59:69:8c:a1:
47:82:64:58:71:6c:32:f0:b5:33:74:7a:9a:e0:e4:
eb:1c:69:ba:b0:6f:a9:16:4f:d0:5b:b4:e9:d7:a3:
e5:5c:ae:74:99:c1:76:ea:7b:f2:1c:2b:1c:cc:1a:
2b:7e:d2:e0:ca:06:07:17:f1:8e:5d:72:6b:e3:f8:
80:cf:92:33:7d:26:a0:0c:4d:cc:88:c5:ec:dc:e3:
89:4c:a4:96:0a:ae:06:66:25:f4:2f:63:f0:79:50:
56:0c:e6:0f:47:0b:92:c6:17:32:b7:54:75:49:75:
21:2c:be:9f:91:c7:a6:1e:50:d9:79:38:04:36:3f:
b8:37:02:df:b6:0e:fb:2c:4c:11:4f:1f:53:ce:c4:
1e:d2:3f:72:7a:cf:d7:5e:09:85:80:60:a4:7a:1b:
50:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:34:6F:5C:76:94:EA:79:9C:8E:16:FC:A7:5C:CB:4F:7B:4A:17:91
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KDRvXHaU6nmcjhb8p1zLT3tKF5E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.176.0/21
Signature Algorithm: sha256WithRSAEncryption
8c:44:6d:3b:ee:0c:a5:f1:da:81:33:da:2c:c6:dc:e9:b8:65:
72:46:0d:ae:14:e6:c9:4a:e3:07:f4:fe:de:84:67:6a:a4:05:
3c:e5:46:de:7e:f7:c6:ac:29:b3:05:11:db:90:fd:b9:fc:f3:
a1:16:e0:00:90:15:a9:f2:0c:92:78:23:ca:1c:6c:14:cf:55:
68:a4:ae:06:57:99:04:be:3d:83:eb:8b:53:cf:95:bb:50:aa:
29:d1:bd:d1:8b:c8:aa:4e:47:58:12:9b:20:21:e2:39:17:2a:
1d:75:ce:7a:70:41:76:ce:fa:1b:0e:e5:82:50:57:f2:e7:d9:
8b:14:eb:63:0a:28:e8:43:ba:25:79:26:23:a1:89:ec:89:ea:
d3:08:d3:13:91:5b:aa:9e:3a:a6:97:54:d2:7c:64:02:df:e4:
c6:bf:e4:a3:b1:dc:fe:39:39:9a:27:51:ed:c7:4e:3f:83:79:
48:2e:25:f6:81:5c:44:a7:0a:09:7a:69:7e:27:48:39:92:14:
94:d9:58:fe:83:ae:2c:a6:82:af:a2:78:7d:08:28:1b:3c:ce:
b7:9a:4e:20:e6:80:b5:de:f0:e2:7f:dc:96:f1:00:23:8a:b2:
53:b7:a6:61:48:c4:80:8c:b8:e6:93:95:30:0b:f4:a6:5a:d7:
a1:1e:4a:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org