Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DMB3zvsmOQdLxn09PUT8gg8f7-g.roa
File: DMB3zvsmOQdLxn09PUT8gg8f7-g.roa (raw, json)
Hash identifier: EqWkrt+jZqevnv8QEc2RScAlw7xJ0pEVLeuAOI3/Who=
Subject key identifier: 0C:C0:77:CE:FB:26:39:07:4B:C6:7D:3D:3D:44:FC:82:0F:1F:EF:E8
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0FED
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DMB3zvsmOQdLxn09PUT8gg8f7-g.roa
Signing time: Sun 07 Feb 2021 12:36:41 +0000
ROA not before: Sun 07 Feb 2021 12:36:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 49.159.168.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4077 (0xfed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:36:41 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0CC077CEFB2639074BC67D3D3D44FC820F1FEFE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:38:3f:4f:9b:2e:81:c2:f1:ab:a7:8c:c6:95:
38:c4:02:c7:31:30:64:d7:da:0f:18:de:80:1d:73:
c7:29:29:90:94:64:e2:3e:61:a4:de:c3:ed:61:9a:
42:1c:c0:0a:3b:a1:53:f8:80:c1:b1:cb:55:8d:47:
32:c2:3a:e7:b5:22:d1:5b:0c:2a:67:36:04:2b:0b:
2b:5e:6a:71:88:e9:6b:16:2a:df:85:8f:cb:1c:0f:
86:56:f1:23:db:b4:39:fc:71:93:c7:12:57:5e:32:
8f:f1:b3:75:4e:70:2a:34:4e:99:0b:4e:49:b1:21:
b6:d3:08:52:9c:c3:8f:ff:a7:af:3c:4c:77:75:97:
b6:6b:15:5d:c8:75:86:e1:4c:06:b6:df:2e:5f:4a:
de:5b:5d:07:77:9b:0f:01:fd:50:51:ae:b2:26:26:
0b:be:8a:ef:40:fc:15:e1:36:1e:9e:02:75:18:db:
31:32:47:d4:1e:90:f0:c8:02:0c:58:a8:99:7c:56:
8c:e1:3c:1a:af:f1:ae:a2:79:5c:64:ae:60:bd:88:
76:c1:64:86:a9:43:52:ef:6e:08:33:ea:0a:22:77:
ba:06:ed:d4:1f:c5:15:01:07:f5:fa:c4:0a:8f:e4:
24:dc:5d:3a:e7:8e:1f:6b:a0:81:1a:95:aa:15:06:
d5:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:C0:77:CE:FB:26:39:07:4B:C6:7D:3D:3D:44:FC:82:0F:1F:EF:E8
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DMB3zvsmOQdLxn09PUT8gg8f7-g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.168.0/21
Signature Algorithm: sha256WithRSAEncryption
3d:ba:ca:62:92:e3:a9:3a:48:8d:7d:b4:7f:57:07:78:7e:a6:
61:98:10:47:73:45:05:5b:8f:04:4d:94:73:3b:f5:87:34:62:
92:43:b2:37:a8:82:85:d8:37:38:db:fa:d2:66:4e:40:68:30:
a4:11:d1:84:11:13:f6:9d:74:50:73:c2:22:c6:d9:13:55:3a:
d0:39:86:84:78:7b:0f:a5:c1:2e:14:2a:3f:34:12:e8:83:e1:
ea:ff:80:5a:89:1f:24:e9:de:93:a8:b2:e8:2d:79:02:d4:f2:
12:9d:59:29:a8:da:d9:25:16:bf:b9:81:84:01:c2:18:50:03:
2e:25:49:e9:88:22:a7:a0:2e:24:7d:2c:28:19:2f:3a:be:a0:
d8:20:41:9d:2c:62:8d:4d:7c:dc:1c:77:17:f2:24:08:df:07:
eb:df:5b:e0:e6:34:d6:54:a3:4a:0b:77:e6:9f:c6:4d:60:fa:
89:bd:8c:4a:d8:3c:c9:00:34:a9:e9:c2:f7:63:44:80:f1:38:
f6:c7:13:e6:14:3a:6e:86:07:05:dc:7d:82:6c:c3:2c:d8:bc:
cb:58:64:22:99:ce:f7:d2:6d:98:a1:c4:c9:2a:76:37:cd:1f:
8c:e2:b3:87:cb:7f:cc:dc:cb:6a:f7:7b:ce:bc:7b:b3:ca:47:
ca:4f:90:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:45 2024 by rpki-client on console-ams.rpki-client.org