Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ydvK6bDfjS8uUrO56jGsTx2UYIY.roa
File: ydvK6bDfjS8uUrO56jGsTx2UYIY.roa (raw, json)
Hash identifier: 14d7G6hNeyIJ6I/XYFUWmwAMZpMGXILq47ySgtSONVc=
Subject key identifier: C9:DB:CA:E9:B0:DF:8D:2F:2E:52:B3:B9:EA:31:AC:4F:1D:94:60:86
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ydvK6bDfjS8uUrO56jGsTx2UYIY.roa
Signing time: Thu 15 Sep 2022 02:36:23 +0000
ROA not before: Thu 15 Sep 2022 02:36:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24165
IP address blocks: 115.165.208.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:23 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C9DBCAE9B0DF8D2F2E52B3B9EA31AC4F1D946086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:02:fc:87:bb:68:54:92:86:36:9c:ac:3e:a2:
77:9f:61:a5:04:eb:b6:eb:93:d6:b8:46:03:c2:92:
fd:1e:02:54:e1:e9:fd:b5:fe:46:54:ab:21:dc:59:
72:10:1c:dc:79:34:ae:b9:5a:7f:85:25:c9:d8:90:
2d:80:b2:cc:98:0d:b0:90:25:c6:ab:ae:b1:b7:ee:
f6:24:e8:64:b4:56:7b:7d:7b:f8:1e:11:12:91:54:
a2:58:11:5c:55:95:e6:05:58:01:f3:0f:91:62:0f:
d3:bd:0f:13:40:0b:21:61:b4:aa:99:41:1d:80:a3:
88:a7:32:09:91:36:58:c3:a0:bb:5b:d5:53:bd:62:
68:7e:b7:a4:49:db:1e:0c:7d:c3:c2:6d:84:65:2b:
2f:e8:d6:9b:bb:2b:fb:1a:11:84:e3:63:38:cc:03:
7c:a9:6f:f1:9c:d3:18:7a:89:30:08:7d:6b:61:fa:
2e:63:0c:c1:20:8e:c6:7a:d8:d8:1b:b5:65:be:9e:
81:91:f1:80:be:7b:ca:e0:b0:3b:a0:9e:e9:82:70:
01:42:23:0c:f0:93:44:ce:4a:3c:a6:c6:6c:ac:47:
f9:97:8e:27:8d:c6:08:da:f7:1b:82:c9:75:ba:0b:
d2:b4:e1:1e:11:02:e5:6c:3c:ec:c6:09:01:03:89:
23:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:DB:CA:E9:B0:DF:8D:2F:2E:52:B3:B9:EA:31:AC:4F:1D:94:60:86
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ydvK6bDfjS8uUrO56jGsTx2UYIY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.165.208.0/23
Signature Algorithm: sha256WithRSAEncryption
97:44:14:96:63:f2:1c:82:08:a5:b5:f0:fe:2d:51:f9:d1:b1:
34:e7:72:09:06:9c:ff:39:9d:30:56:51:a1:48:88:10:f1:12:
d8:58:b5:15:6d:4a:90:69:04:20:c0:b7:0f:0b:b5:9b:58:ea:
a8:3a:38:91:f4:23:91:4e:9d:83:f9:d2:91:0b:df:1b:7d:27:
42:7f:bb:84:9d:90:a2:ad:7f:13:29:41:70:8a:6f:ed:71:15:
5d:35:bd:c9:cf:c7:58:8c:16:e8:d2:cb:f6:30:53:f2:c6:6b:
e6:e3:47:f1:2e:6a:6f:94:1b:70:ee:be:7f:44:bb:a3:49:fc:
c8:2a:3c:4a:5d:46:fa:7a:ef:c7:bc:23:2c:94:f8:ee:9d:02:
0b:b8:4e:6b:ca:aa:17:fc:fe:a2:71:f6:69:50:94:1f:31:5c:
be:92:36:ff:7f:b3:d2:fb:69:b6:0b:64:be:b8:ec:a1:89:7f:
b6:1c:8e:c9:f0:2b:f3:1a:95:77:af:af:45:89:e3:78:ef:c4:
a9:44:dd:4a:49:98:99:9c:66:b3:12:48:29:11:bd:fc:24:0e:
53:2c:0b:eb:39:3c:e9:54:83:5a:d5:65:d0:98:70:8c:05:90:
5a:16:a0:0d:1e:ba:f2:14:a3:91:c3:0d:0e:55:c9:73:24:ad:
4c:cf:b3:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org