Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DfI4OljdKNRWCkdk1UfXjXPoKWc.roa
File: DfI4OljdKNRWCkdk1UfXjXPoKWc.roa (raw, json)
Hash identifier: M7rWn8r1B8f/Zw2uMKD1aAmECAPIORd4Dwmm82lbl0g=
Subject key identifier: 0D:F2:38:3A:58:DD:28:D4:56:0A:47:64:D5:47:D7:8D:73:E8:29:67
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 13B8
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DfI4OljdKNRWCkdk1UfXjXPoKWc.roa
Signing time: Wed 19 Jan 2022 05:34:57 +0000
ROA not before: Wed 19 Jan 2022 05:34:57 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 49.158.176.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5048 (0x13b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Jan 19 05:34:57 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0DF2383A58DD28D4560A4764D547D78D73E82967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:99:f6:0f:78:72:36:e8:7b:db:e9:b5:20:55:
8a:24:cf:14:92:27:0f:71:bc:1f:2d:f7:59:0c:3c:
96:53:e6:eb:24:a5:f5:a2:65:e8:44:99:f0:1b:24:
6d:d5:91:c2:8b:17:90:b3:93:34:16:9b:a2:69:a3:
73:6b:5b:8a:2b:05:1d:84:c6:92:a6:10:b8:e9:53:
81:9b:6f:00:26:26:ef:9c:fa:16:80:af:d8:44:16:
6b:99:e6:19:43:f8:39:8b:8f:35:c5:e4:39:f5:f4:
ab:34:69:58:7d:65:c5:c5:33:a1:c7:94:95:b6:38:
fa:c6:fa:a0:ce:34:70:53:d5:e3:03:33:ba:f3:76:
7c:f2:99:65:18:50:86:6e:04:76:22:87:1c:54:8c:
36:a3:95:4c:67:96:13:ba:2e:6d:52:14:dc:cc:75:
13:f3:96:dd:7d:15:bc:18:d4:7d:81:0a:e0:3c:eb:
34:8e:a9:6f:db:f2:6b:de:2f:fc:54:ae:ca:47:53:
08:61:37:83:22:11:0d:23:86:12:69:b7:9d:35:5a:
dc:90:79:1d:2d:be:ef:79:81:67:5b:b9:30:a6:24:
09:88:25:4f:81:12:05:57:56:c2:3c:8e:36:a5:2b:
66:9a:13:bc:9a:15:a4:b0:5d:47:cd:0c:d1:13:80:
cb:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:F2:38:3A:58:DD:28:D4:56:0A:47:64:D5:47:D7:8D:73:E8:29:67
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DfI4OljdKNRWCkdk1UfXjXPoKWc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.176.0/21
Signature Algorithm: sha256WithRSAEncryption
1e:04:37:20:bc:be:89:fd:f4:f9:e1:83:d0:83:cf:d3:2a:81:
ac:0d:54:64:51:7e:c6:b6:8b:bd:44:69:17:fc:1c:74:49:5b:
92:fd:16:61:5a:29:71:c2:f6:b3:06:2e:8d:3b:e7:90:31:d8:
50:e1:ac:55:dd:4f:88:21:52:8f:be:52:69:83:5a:6f:72:a3:
c8:94:af:f1:f7:86:6b:0d:22:14:ad:38:b8:2f:6a:5d:9f:88:
d5:8d:4a:e7:dd:c6:f3:2a:59:d9:4d:3e:9a:64:65:4a:ef:f1:
34:72:09:c7:5b:30:39:81:a0:5b:36:e5:3c:2c:e2:38:70:33:
31:a6:d9:38:5f:08:8a:da:f7:19:d5:09:6d:bf:b4:15:d0:2e:
dd:c0:08:93:81:d2:8f:c9:c5:b0:11:e5:01:1e:b9:d8:c2:59:
15:a5:a2:72:d8:dc:39:51:b9:f5:14:43:11:d8:84:98:92:df:
5c:d9:64:5f:53:d1:04:19:f8:bf:84:7d:1e:8c:29:84:fc:fb:
c4:87:cc:7e:29:1c:85:93:3a:40:12:0d:6b:b0:90:46:46:c9:
9f:27:94:37:e2:37:b8:e9:1c:2f:4b:62:ac:03:70:16:37:0b:
e9:dd:ee:72:92:c6:9e:a6:5f:16:29:ac:62:4e:9b:8d:74:76:
11:00:40:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:46 2023 by rpki-client on console-fra.rpki-client.org