Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DRMWYY4mN-UPW_mJ_FdVXaG3Wkw.roa
File: DRMWYY4mN-UPW_mJ_FdVXaG3Wkw.roa (raw, json)
Hash identifier: +R6Q9uURWZIfImkVv1kbuaEWCFBIuZairtYN1+LKrjI=
Subject key identifier: 0D:13:16:61:8E:26:37:E5:0F:5B:F9:89:FC:57:55:5D:A1:B7:5A:4C
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0FB1
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DRMWYY4mN-UPW_mJ_FdVXaG3Wkw.roa
Signing time: Sun 07 Feb 2021 12:35:36 +0000
ROA not before: Sun 07 Feb 2021 12:35:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 49.158.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4017 (0xfb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:35:36 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0D1316618E2637E50F5BF989FC57555DA1B75A4C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:21:99:c8:f7:73:83:bf:da:41:28:c7:f3:bb:
a3:c8:0b:71:c9:fa:c3:d6:0b:1d:07:75:3c:f3:bb:
b9:6c:06:01:3a:90:9c:42:ec:c2:26:97:a7:97:e5:
76:b4:94:8d:36:7a:68:e2:00:df:72:4b:f4:76:bf:
b6:9e:48:a4:d9:d7:b0:85:0b:d9:29:c7:cf:41:89:
e8:d8:00:71:a7:89:b2:6c:21:b3:93:3d:5f:b0:b3:
ee:a9:bd:4b:3d:f7:f6:18:2d:56:1c:7b:4b:1a:54:
f7:08:fc:32:ec:b6:73:ef:e0:fd:1e:89:e6:2b:4d:
5c:cb:f0:ac:77:06:d4:0a:32:b9:11:5e:e3:a4:31:
31:a8:25:4a:1d:5f:94:54:d9:d1:09:44:3d:30:6c:
32:a7:ba:b0:b9:da:1f:3d:df:9f:97:3f:83:b0:c2:
3f:c1:7c:98:cc:70:af:e3:2a:5a:dd:f5:d1:bf:87:
b6:bc:55:a8:11:1a:5e:08:26:d6:26:db:bb:ae:2a:
d5:a4:a3:31:b0:93:db:53:de:22:5e:8f:97:2f:a6:
7b:10:7b:62:1f:c6:a0:a0:26:04:69:e4:ac:16:79:
20:41:d6:6d:cd:96:7c:55:0e:cc:1c:a2:28:34:35:
2d:bd:3d:19:86:b0:80:14:e5:0e:2f:61:fe:54:b4:
93:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:13:16:61:8E:26:37:E5:0F:5B:F9:89:FC:57:55:5D:A1:B7:5A:4C
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DRMWYY4mN-UPW_mJ_FdVXaG3Wkw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.146.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:5d:cd:7c:bc:34:a1:19:50:87:44:1c:90:77:c3:dc:19:01:
ed:85:d4:39:2f:cc:1b:33:3a:8a:62:55:63:cd:35:36:a7:4e:
1b:7a:58:8a:1e:9d:a9:6b:03:5a:08:dd:f9:64:57:a4:7d:d6:
8e:c7:fd:7d:c9:76:0d:3f:e7:e8:ea:21:44:26:dd:24:ea:b4:
45:50:cb:29:91:55:62:a9:e3:9e:22:ec:35:58:01:df:0b:43:
73:05:15:e3:02:62:9f:db:9f:94:6d:fb:52:47:36:d9:32:a9:
16:5d:0e:40:22:3f:be:78:0e:51:08:18:79:98:5d:ae:e6:03:
9a:5b:91:45:00:7c:19:5d:a4:1f:51:2b:a0:c5:cb:ba:51:5a:
90:82:b0:36:fe:7f:ab:eb:a9:12:3d:f8:17:04:b3:d0:ab:d3:
e5:ae:12:18:91:44:c7:de:2d:3b:ec:5b:24:46:df:b3:23:3f:
48:7c:72:20:88:34:17:94:6a:1f:c6:47:99:82:dd:1c:f6:bd:
93:3e:d3:ed:53:07:db:f9:47:cc:70:5b:e8:bd:50:a6:1f:11:
4c:72:00:51:0f:64:d1:ab:f9:6f:47:b3:01:9a:6a:13:a0:75:
15:dd:69:c5:ee:72:16:8e:f9:07:1b:90:c1:ff:37:aa:c8:02:
91:68:76:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org