Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3zuZIAolYdebAHG8eFGopg1H_h4.roa
File: 3zuZIAolYdebAHG8eFGopg1H_h4.roa (raw, json)
Hash identifier: oHZormuvoke54cUZtB/TE3WHDYTcWubRgilcMwo6cXY=
Subject key identifier: DF:3B:99:20:0A:25:61:D7:9B:00:71:BC:78:51:A8:A6:0D:47:FE:1E
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0F1B
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3zuZIAolYdebAHG8eFGopg1H_h4.roa
Signing time: Sun 07 Feb 2021 12:32:53 +0000
ROA not before: Sun 07 Feb 2021 12:32:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 114.198.164.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3867 (0xf1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:32:53 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DF3B99200A2561D79B0071BC7851A8A60D47FE1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ad:81:02:13:14:d0:01:dd:56:c2:df:4d:b4:
ef:02:b3:72:93:3c:08:47:e9:76:4e:c5:7c:72:25:
fd:9d:38:28:6f:7f:c9:51:45:79:47:78:60:12:cc:
88:04:f9:02:2f:6a:60:2b:c8:ac:52:c6:fd:02:84:
21:7b:61:86:62:0f:77:ec:02:1a:d2:0d:4f:a8:20:
30:79:5a:29:68:d4:27:ef:6a:fc:e2:5b:52:fa:03:
d8:58:97:4d:56:40:fa:ae:3c:23:96:f3:9c:4e:0c:
7b:20:5c:a1:6f:fb:51:dc:17:7a:50:12:10:c9:bd:
e5:7e:85:f7:40:f9:db:51:e0:15:82:3b:a6:5f:c2:
66:85:aa:fc:0c:0e:da:8c:b0:44:11:b8:98:6d:69:
71:fa:04:97:a0:e9:90:a6:63:11:9e:9d:65:76:2e:
93:48:2a:2b:09:38:cc:08:1d:d3:f2:b6:b4:a7:28:
4a:33:5d:5d:2e:2a:8f:7c:df:e3:3e:87:3f:82:65:
1a:41:a0:c0:ca:6b:a0:c0:d6:87:12:a8:9e:f3:41:
9d:c1:7d:8a:94:79:27:53:9a:c6:8a:20:6b:52:fe:
22:bd:e4:a2:08:de:90:71:9b:56:39:6f:82:37:e8:
58:11:3d:ed:96:1a:04:77:12:cb:01:d4:3b:43:e7:
97:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:3B:99:20:0A:25:61:D7:9B:00:71:BC:78:51:A8:A6:0D:47:FE:1E
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3zuZIAolYdebAHG8eFGopg1H_h4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.164.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:c3:ff:f7:ac:53:4c:98:d5:99:6f:fe:07:de:3e:47:20:74:
cc:d9:ef:c3:5a:08:f8:bc:a7:bf:d9:36:28:b2:f9:2c:c4:b6:
ba:9f:f5:18:f8:7d:5e:33:d9:6e:7b:09:21:b5:c4:ca:64:d9:
d5:97:74:0e:86:08:74:39:2f:3f:f7:b7:84:32:d3:8b:0f:90:
6c:75:e9:2c:60:4b:0b:c3:39:cd:39:28:cb:42:7e:41:dc:31:
25:b0:6d:63:8a:d9:e1:1d:3d:ec:37:40:4c:e2:70:ea:73:39:
39:4c:ac:1e:a1:7d:58:fc:f8:6c:cb:1f:6e:5d:4f:83:ce:9b:
fd:8b:ec:18:e6:56:fc:ce:65:1e:52:a1:a8:07:7f:a9:cf:29:
7e:0d:f2:64:fe:23:b9:a8:c5:a1:75:ba:8c:72:47:cd:2f:43:
99:04:3b:36:b0:0a:f9:f3:64:56:a2:0d:ac:90:88:cf:d7:5e:
2d:77:18:69:cb:65:62:58:16:60:09:42:7b:e4:03:b8:43:0b:
e1:9a:12:90:e5:72:37:14:37:c8:6a:91:37:f2:e1:72:c0:d1:
7a:62:cc:0e:02:c2:ef:0c:bc:07:a8:be:b7:b4:37:49:74:cd:
12:06:83:76:02:e0:25:e6:23:d3:7a:a9:82:f8:61:d6:d2:c4:
67:b5:d2:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org