Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/N4C8gdGgLZMmp0-Ri9xqOal-nVo.roa
File: N4C8gdGgLZMmp0-Ri9xqOal-nVo.roa (raw, json)
Hash identifier: CcZsyfhacYjgSs4XHKx9bCMmg3FKRAw4Cit6BBc2K4w=
Subject key identifier: 37:80:BC:81:D1:A0:2D:93:26:A7:4F:91:8B:DC:6A:39:A9:7E:9D:5A
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/N4C8gdGgLZMmp0-Ri9xqOal-nVo.roa
Signing time: Thu 15 Sep 2022 02:35:50 +0000
ROA not before: Thu 15 Sep 2022 02:35:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 114.198.172.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:35:50 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3780BC81D1A02D9326A74F918BDC6A39A97E9D5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5d:1f:7d:c9:84:df:88:f0:03:05:72:27:9d:
b4:94:fd:50:a2:d4:2e:c3:84:89:a3:ff:88:d1:1f:
c4:56:20:40:d4:89:3a:14:74:de:b4:8c:8d:73:87:
f3:30:8b:c4:da:8a:17:e6:6c:a5:ea:49:17:b7:e9:
1e:21:9a:9a:41:e9:87:b6:3c:48:0b:4b:19:21:6b:
91:e5:85:c8:45:00:a9:0e:d5:a7:13:31:b3:7a:2a:
a1:51:35:4f:9d:a1:29:a8:ce:58:17:ef:0c:27:bb:
a2:28:97:fd:8a:6e:b7:5b:0b:8f:38:a3:99:5d:23:
54:d4:2b:79:1e:c6:13:4b:c2:e9:52:10:d8:f9:c8:
5c:e8:d9:92:6d:00:5d:ba:de:83:a6:59:ed:1f:f3:
11:f0:43:ec:4c:6e:3b:48:f6:a8:4c:cc:e5:1e:f4:
79:ee:43:51:94:5a:77:92:42:cd:fe:e1:ce:cf:ec:
5b:ca:62:63:c7:05:01:83:80:34:55:bc:e1:4a:a7:
11:52:8e:2c:63:37:ea:34:13:d3:42:62:ff:b8:dd:
de:31:e7:a9:8b:7f:a1:77:ae:a3:38:23:de:94:10:
fb:56:c2:86:7a:4c:bc:e8:46:73:79:bf:83:81:1e:
ac:07:fc:d5:23:18:c5:08:13:d6:bf:70:29:2c:43:
4a:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:80:BC:81:D1:A0:2D:93:26:A7:4F:91:8B:DC:6A:39:A9:7E:9D:5A
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/N4C8gdGgLZMmp0-Ri9xqOal-nVo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.172.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:bd:2c:d1:b5:f7:93:5c:a9:51:dd:47:1b:7e:33:39:c4:03:
e4:e8:a1:5b:7a:ee:5d:94:36:29:09:44:c4:69:6d:fa:71:59:
20:f4:98:cf:0b:11:d8:23:17:8d:69:70:1d:fc:4a:73:b5:51:
83:81:53:c9:59:08:33:02:a2:c1:d1:ed:a4:ec:d6:93:c4:60:
87:b3:09:d1:19:c6:96:fb:aa:b9:7a:b5:7a:18:a9:b2:a4:a8:
26:c5:a6:b0:42:55:01:bb:b6:0f:8a:e6:4c:96:b6:db:81:8b:
79:1b:81:8d:d8:23:99:3b:ba:d4:63:5f:76:24:ec:80:64:af:
6e:6e:f0:52:83:d5:eb:76:1f:4d:47:98:d1:61:d9:f1:37:9a:
53:f0:dd:45:92:77:82:27:09:04:38:3d:68:1c:37:f1:84:a1:
d2:fc:22:30:37:8b:32:89:cd:5d:83:69:5f:86:26:35:d4:fd:
d5:90:81:cd:8a:89:d7:40:c3:6b:1d:88:87:10:ff:0b:f5:c6:
cf:f8:30:fc:c6:a3:78:99:57:0c:84:a2:c5:37:12:a4:b8:50:
d8:89:76:04:c3:0f:cd:0e:f8:18:6b:b1:fd:30:40:3f:40:c2:
1a:98:75:59:92:c8:12:04:d0:1c:f9:c5:a7:90:db:7f:c2:a8:
30:b9:68:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org