Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8ouonF4490DGyb8535dyu65oynk.roa
File: 8ouonF4490DGyb8535dyu65oynk.roa (raw, json)
Hash identifier: +2b7FcGUjawCpsoZvW9FF14cvtQQW5MA5FhIUu7t03Y=
Subject key identifier: F2:8B:A8:9C:5E:38:F7:40:C6:C9:BF:39:DF:97:72:BB:AE:68:CA:79
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8ouonF4490DGyb8535dyu65oynk.roa
Signing time: Thu 15 Sep 2022 02:36:47 +0000
ROA not before: Thu 15 Sep 2022 02:36:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 211.76.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:47 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F28BA89C5E38F740C6C9BF39DF9772BBAE68CA79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:03:a9:ba:b0:a6:b2:8f:60:de:1b:18:3f:5c:
7b:ae:cc:16:3d:74:f9:5e:38:c6:06:bb:1e:5e:1d:
81:3a:d4:20:e1:48:e7:a5:ef:44:39:24:b8:f9:87:
28:ad:83:73:3b:da:f0:4a:54:88:85:88:dd:a6:49:
84:2e:0e:83:a4:e9:55:fe:d2:fd:7d:78:10:44:d8:
de:b1:b0:24:5f:55:f7:27:d8:ef:14:21:ab:e0:3a:
9c:f6:94:e4:a9:63:76:cc:b3:24:7c:b1:e7:23:df:
93:65:3a:f7:50:3d:c3:56:70:e6:de:e5:3d:6a:d4:
bf:53:52:af:14:21:d2:8e:bb:fb:ef:a3:0e:46:49:
80:bd:e5:e9:96:51:b2:e8:d5:0e:22:59:e4:9b:f8:
c2:30:73:18:fc:94:de:53:a3:df:23:70:e2:1b:a6:
a8:55:13:64:20:ec:f9:b3:f3:f6:c4:e8:cb:6c:87:
d6:ee:8d:00:eb:a6:65:85:1b:de:e5:df:7c:77:d5:
c8:52:8a:23:43:7d:2b:33:d7:52:f6:a4:9c:71:cb:
2c:4c:71:39:86:85:3d:91:4d:c3:1b:fa:55:8b:ba:
82:69:17:21:39:db:89:2e:fe:1b:ed:bd:dd:10:56:
96:9c:0b:6c:1e:07:e4:9a:02:ea:51:73:4a:56:c1:
5e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:8B:A8:9C:5E:38:F7:40:C6:C9:BF:39:DF:97:72:BB:AE:68:CA:79
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8ouonF4490DGyb8535dyu65oynk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.62.0/24
Signature Algorithm: sha256WithRSAEncryption
75:8d:6a:04:c0:02:31:20:f8:79:a3:50:95:74:6c:ee:a6:dc:
d9:f5:22:f1:6c:ef:9c:10:b2:4b:93:c2:ef:f9:bc:b0:2b:ac:
22:89:7e:b2:af:2e:85:3e:83:cf:d1:ee:2a:51:32:2d:02:da:
e7:48:e3:b7:57:48:f7:dd:eb:e5:de:c5:4e:2e:61:07:a8:49:
3e:40:94:3f:31:5f:4d:2f:51:9a:44:b3:a6:fa:f8:3f:9c:79:
b5:37:f7:a6:a2:01:3b:c0:e1:11:bc:a8:2c:bd:01:d3:69:a4:
67:57:f9:11:ea:db:8f:36:a4:3e:5f:e0:c6:a9:4f:3f:d7:86:
01:c8:33:de:6c:23:c5:37:56:98:83:48:ae:8a:86:d0:dc:0e:
a9:95:cd:ef:98:fc:33:b4:0d:4f:61:0a:b7:ae:92:56:2a:6f:
2e:fe:d5:ef:34:5e:4a:ff:da:48:33:c9:25:c2:29:d4:3f:ec:
05:49:55:46:8f:b3:ef:2b:36:7d:51:51:1d:df:d5:7f:79:ae:
b0:37:db:62:59:e1:63:ea:da:5c:e4:79:0e:57:8a:87:e8:e2:
75:fe:58:be:4e:bb:d6:0b:84:ca:36:96:07:cb:82:e1:36:4a:
4a:f5:b8:6c:7b:6f:9f:77:60:a9:ff:26:e0:95:1d:b7:59:5e:
33:07:35:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org