Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/UFOg_L7NMOGvNGHrMvFLnIYCHTE.roa
File: UFOg_L7NMOGvNGHrMvFLnIYCHTE.roa (raw, json)
Hash identifier: trwzBHdbGmN36E4Oxvm4vbceiWkw4cvViliBtV6sj1M=
Subject key identifier: 50:53:A0:FC:BE:CD:30:E1:AF:34:61:EB:32:F1:4B:9C:86:02:1D:31
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1409
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/UFOg_L7NMOGvNGHrMvFLnIYCHTE.roa
Signing time: Fri 29 Apr 2022 10:18:06 +0000
ROA not before: Fri 29 Apr 2022 10:18:06 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 49.158.0.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5129 (0x1409)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Apr 29 10:18:06 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5053A0FCBECD30E1AF3461EB32F14B9C86021D31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:9a:0d:4e:d4:07:61:30:cc:d2:b2:d8:ec:16:
49:a3:c0:74:66:a1:8b:2f:96:93:25:37:03:c6:d1:
6a:81:c0:23:0a:6c:00:95:23:65:05:ef:20:a1:88:
02:06:92:43:ca:ba:47:fa:12:07:69:e4:b3:fc:5e:
9e:52:a7:ed:f0:ec:17:61:35:e3:03:35:e3:45:4b:
c4:61:f0:b8:3f:79:06:47:f1:b8:b9:11:16:00:ac:
cc:02:4a:bb:4c:cf:16:7e:e8:64:35:41:19:1d:c5:
0b:8b:14:eb:16:74:88:f1:e9:c6:c4:84:b1:c4:a7:
1f:f6:b7:59:1a:5d:2b:22:d2:62:dd:7f:68:a9:72:
04:1f:02:69:4f:19:03:90:9f:bd:a1:51:6a:af:fc:
3c:5b:6a:c0:e0:d0:90:ba:0b:6d:40:da:02:fd:01:
9e:1d:40:5d:34:f1:06:53:d7:8d:87:7d:7f:6f:80:
a7:65:0e:58:8d:8a:01:3e:6d:ea:84:db:66:90:02:
2d:08:a3:58:3a:b0:3c:90:a6:82:7a:2f:78:42:fd:
15:34:12:7c:1b:af:3b:5c:3d:3b:55:50:ac:9d:8f:
6e:91:d4:5c:a0:2e:20:35:fc:e3:c1:02:53:43:14:
34:96:e1:a1:78:65:c3:71:d2:c1:3b:87:53:10:5c:
3f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:53:A0:FC:BE:CD:30:E1:AF:34:61:EB:32:F1:4B:9C:86:02:1D:31
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/UFOg_L7NMOGvNGHrMvFLnIYCHTE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.0.0/21
Signature Algorithm: sha256WithRSAEncryption
36:4c:1b:00:24:39:c9:0b:15:78:7c:1e:e3:bc:00:8a:c2:8b:
98:94:79:c2:92:16:03:05:06:19:71:a6:29:8a:64:d5:d3:1c:
54:cc:98:df:de:4f:96:15:26:4f:c2:c2:a4:db:57:78:59:52:
07:26:2a:3d:96:86:03:b5:c7:a4:c6:a1:b5:8c:9b:9c:5d:ca:
d3:ad:18:dd:a9:3f:95:30:b6:7e:d9:28:5a:9a:80:5a:bb:1f:
95:9c:a5:c3:87:9c:f8:82:d6:41:a1:bd:d5:42:04:aa:c2:44:
06:8e:00:63:bc:e3:d9:25:bf:d4:e4:f6:18:d7:95:fb:0c:7c:
de:a8:95:58:9c:9b:e2:76:9a:f7:65:0b:d4:26:bc:53:13:5c:
69:62:eb:3a:d2:b9:9c:33:ef:8d:74:47:c3:5a:e9:50:2c:cc:
4f:1c:83:65:99:4b:fc:33:02:23:79:78:4a:dc:bf:6e:53:8c:
ab:7e:5c:2c:7f:23:51:13:40:59:be:2b:16:76:a1:00:62:b0:
07:7e:f7:b4:63:d6:64:44:1d:a6:8a:db:74:4b:fd:87:f0:bd:
0d:83:e6:7c:03:20:d0:66:4c:f9:2e:29:e2:06:8f:35:28:52:
9d:5f:55:69:f0:cf:f8:b1:fe:96:56:94:c7:0c:f4:cc:29:61:
aa:1d:65:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org