Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BGOvp7WzYRYp-E2SdeHK9Ufkc2E.roa
File: BGOvp7WzYRYp-E2SdeHK9Ufkc2E.roa (raw, json)
Hash identifier: khsb8iv9mnm7KWVD+W4va825P0HsH/PESlY77I4Ahow=
Subject key identifier: 04:63:AF:A7:B5:B3:61:16:29:F8:4D:92:75:E1:CA:F5:47:E4:73:61
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0FCB
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BGOvp7WzYRYp-E2SdeHK9Ufkc2E.roa
Signing time: Sun 07 Feb 2021 12:36:05 +0000
ROA not before: Sun 07 Feb 2021 12:36:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24163
IP address blocks: 49.158.208.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4043 (0xfcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:36:05 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0463AFA7B5B3611629F84D9275E1CAF547E47361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ab:31:23:14:d1:87:18:ea:b7:5e:8e:6f:34:
4d:10:77:a1:74:ba:03:76:90:2f:51:52:cb:f2:bf:
e6:e6:52:45:41:39:58:a7:e2:aa:93:d7:dd:d1:45:
b4:1b:86:db:a1:97:1c:8d:04:7a:3b:a8:6c:15:2b:
46:b8:45:da:88:1f:24:31:1d:5a:09:44:dd:19:a0:
91:f5:0f:bc:78:99:c0:6d:90:0c:bc:41:c9:91:1b:
ed:d4:32:2e:41:ab:4a:d9:ce:6a:15:1b:5f:67:9e:
d7:d8:f9:7f:d5:8c:36:2f:a8:84:4f:eb:65:fe:cb:
f9:e5:52:58:b2:63:14:07:80:cf:36:96:b4:d1:17:
20:7c:e8:0f:f4:a5:e9:68:8e:d2:30:bd:e0:f1:85:
9f:cb:36:b3:ec:33:16:83:27:e3:64:7f:79:8b:65:
6c:18:47:25:6b:f9:f4:2e:26:ab:61:9a:b5:d9:4a:
5a:d7:c7:b2:e7:df:14:45:27:7e:81:ee:18:41:c9:
6e:1b:b6:dd:56:6b:31:bc:9e:fb:bd:c9:eb:e8:71:
4b:0b:ca:f7:06:59:1c:7c:02:02:11:c8:a4:4b:09:
06:f5:87:18:68:77:63:ae:ef:1e:c6:a0:1d:a0:36:
01:48:ec:42:d2:15:88:ef:0f:c7:ca:39:53:66:03:
22:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:63:AF:A7:B5:B3:61:16:29:F8:4D:92:75:E1:CA:F5:47:E4:73:61
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BGOvp7WzYRYp-E2SdeHK9Ufkc2E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.208.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:dd:cb:5b:2d:44:3f:3a:65:45:9b:cf:59:d7:99:73:f5:09:
b2:88:2b:e9:99:6e:6e:4d:0b:bc:dd:41:1a:12:ac:9c:c7:11:
1c:07:84:6d:f6:69:af:98:4f:8e:d3:03:2b:e1:9b:47:d5:25:
3a:54:99:b0:eb:d6:0f:dd:bc:a5:6f:cf:bf:d6:ec:de:a1:81:
1c:58:46:2f:62:22:f9:08:ff:cb:c2:9a:83:e5:15:0d:b8:2a:
ad:2a:f9:fa:11:6c:56:22:fa:e8:2b:86:73:cb:52:1f:f7:dc:
0d:23:25:f5:24:d8:82:b2:92:62:e6:22:8d:ea:c7:87:ac:75:
d1:45:34:dc:0f:9a:4e:06:94:8f:17:f0:a7:a4:63:50:b0:ef:
3f:77:69:72:c8:52:36:be:81:f5:be:a2:c0:63:23:2a:f7:4a:
69:0b:7d:d7:62:e4:6e:4a:38:74:b2:4a:89:d7:01:c0:2f:1e:
52:07:03:cc:04:04:82:c0:42:fe:78:61:59:e5:03:19:e9:dc:
cd:99:ea:69:5c:9c:3b:c3:30:eb:76:e8:8c:8f:fa:e5:e4:43:
31:37:c8:9c:15:01:09:ba:f5:a4:93:51:7d:5c:77:54:fd:ad:
3e:24:bd:1f:55:f6:2e:3c:dd:c5:b4:dd:c5:b3:48:5f:88:57:
34:f8:28:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:46 2023 by rpki-client on console-fra.rpki-client.org