Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/uhkapjM7logfLd0P4p9lv4GhOWU.roa
File: uhkapjM7logfLd0P4p9lv4GhOWU.roa (raw, json)
Hash identifier: L6RtG05sdG021zMF7Dh21/L5uUfL3RbiPBO8CD6cIi8=
Subject key identifier: BA:19:1A:A6:33:3B:96:88:1F:2D:DD:0F:E2:9F:65:BF:81:A1:39:65
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 195D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/uhkapjM7logfLd0P4p9lv4GhOWU.roa
Signing time: Sat 22 Oct 2022 06:06:26 +0000
ROA not before: Sat 22 Oct 2022 06:06:26 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 114.198.184.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6493 (0x195d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:06:26 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BA191AA6333B96881F2DDD0FE29F65BF81A13965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:3a:45:d5:d9:73:2c:be:cc:7a:da:17:86:2b:
31:4c:27:ea:c9:52:e0:3b:08:fc:76:3a:d3:44:3a:
88:f5:b4:0a:02:50:cb:a0:c2:17:13:bc:11:08:a2:
4b:1e:c7:9d:78:2a:9d:f2:0f:79:aa:fe:39:10:3e:
35:7a:cd:85:dc:1e:09:a7:ff:5a:51:be:cb:fa:45:
f3:b3:ce:4d:46:2d:11:e1:9d:3e:67:e4:4e:9c:5f:
ab:1c:f8:aa:54:44:25:d1:25:37:69:28:11:08:81:
da:ab:4f:96:8b:0b:01:a3:b7:07:80:96:69:19:24:
c8:14:e8:16:4c:52:e6:28:b0:7b:2b:93:2f:33:b0:
6a:f9:01:43:4b:2b:ae:f5:07:92:fc:5e:ab:74:e7:
18:8a:d0:d7:15:f0:a7:fe:0a:ca:cf:67:bd:55:6a:
52:6d:2d:dc:12:a0:3c:cb:87:22:fa:3e:94:77:48:
e4:89:56:62:a5:c4:66:8f:54:aa:e5:35:bc:12:d9:
32:a2:e9:37:11:d6:38:2f:60:42:90:99:12:26:e7:
63:77:5c:ed:d3:b6:2a:de:5d:08:cb:88:2a:ed:3b:
cd:af:35:90:ae:cc:ab:99:6f:a4:dd:09:56:30:b3:
cb:4d:6a:b9:4b:fc:23:1d:51:de:2f:ac:d7:44:ee:
c5:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:19:1A:A6:33:3B:96:88:1F:2D:DD:0F:E2:9F:65:BF:81:A1:39:65
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/uhkapjM7logfLd0P4p9lv4GhOWU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.184.0/21
Signature Algorithm: sha256WithRSAEncryption
50:16:ec:98:6b:d5:b6:ad:41:3d:88:48:d1:8e:6a:91:9e:c9:
d2:85:3c:6a:7a:80:8f:1f:24:e5:f5:f7:4d:0c:1a:2a:f2:fe:
73:d4:f5:28:14:a7:77:06:5d:b8:6a:47:f4:66:56:26:c9:82:
8b:2f:46:4a:8e:e1:77:59:1a:43:58:66:db:c8:76:c9:b1:95:
61:76:b6:54:00:78:bd:74:14:97:19:8a:b5:90:86:01:f2:3c:
a9:72:d9:2e:87:b8:4f:54:d7:bd:1d:4c:92:3d:8b:d4:37:ec:
1d:cc:72:2a:f1:85:0b:31:5a:ca:f6:65:3e:ab:5a:19:3b:b0:
3a:6e:09:0a:a4:f6:d4:e8:39:a8:c5:de:86:2c:24:6d:35:f1:
f8:1d:24:28:01:14:51:32:45:90:25:f9:eb:0e:42:27:fc:dc:
2b:74:80:9f:5a:37:ee:60:26:c1:69:22:8c:37:24:73:46:8c:
ae:e9:48:c2:d5:97:79:14:35:98:1c:71:5b:04:8b:6b:df:ec:
ca:45:d4:cb:ef:1b:64:c1:7c:5f:75:fa:78:f6:80:16:29:b5:
19:fb:e5:34:93:10:c8:92:b8:58:87:6d:d4:12:3c:fe:ab:57:
09:ed:3c:72:26:d9:88:5f:97:c2:1f:96:95:0f:4c:e1:ac:06:
77:5b:08:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org