Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JFjVSExjDYdyTk5o7ys2p7KB5SQ.roa
File: JFjVSExjDYdyTk5o7ys2p7KB5SQ.roa (raw, json)
Hash identifier: wF5dUBqMOBdbcBXdd11J4mt3f6ajESX1Gf17sBq1sWY=
Subject key identifier: 24:58:D5:48:4C:63:0D:87:72:4E:4E:68:EF:2B:36:A7:B2:81:E5:24
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1244
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JFjVSExjDYdyTk5o7ys2p7KB5SQ.roa
Signing time: Wed 29 Sep 2021 02:54:23 +0000
ROA not before: Wed 29 Sep 2021 02:54:23 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 114.198.176.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4676 (0x1244)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:23 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2458D5484C630D87724E4E68EF2B36A7B281E524
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:dd:2f:0b:a9:eb:c0:03:79:58:28:8f:45:35:
5b:15:ca:46:fa:97:f5:b5:61:28:f0:2d:b9:a6:70:
fe:0b:3f:0d:8c:e3:59:60:52:2e:29:b4:24:34:42:
61:a3:74:10:24:89:66:6f:65:6c:82:24:d7:bf:00:
e1:ae:04:3c:92:a8:ae:40:5b:15:bd:8a:ad:a0:5e:
6d:74:26:c1:82:63:b1:d5:4e:22:12:37:da:75:8d:
31:74:0d:6e:f8:fe:69:cf:26:cc:30:b9:79:5d:72:
30:5f:3a:10:92:fa:fd:2e:bf:f8:74:dd:89:6c:07:
10:b4:c3:a4:f9:bc:e0:87:29:80:6f:48:b9:76:f2:
c7:6c:15:d0:a5:4b:fc:99:cf:b0:b1:99:f3:ed:5c:
fb:33:e4:a6:e0:19:a9:6f:b7:24:d8:68:e9:84:cb:
d4:92:b5:e7:70:ad:36:d6:09:26:c5:8a:f6:2b:db:
e8:3a:55:09:9d:43:42:d9:54:da:3e:3b:26:89:35:
4e:d7:b4:bf:85:f2:20:ae:d7:43:c5:0a:89:8c:63:
d1:44:14:08:17:5d:a6:45:84:08:bc:be:2f:6c:f2:
fa:79:6f:73:1b:b6:e0:4d:66:e7:af:6a:4d:6b:e6:
88:b1:e0:4f:e8:c1:74:1c:30:98:b3:fe:42:2c:01:
68:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:58:D5:48:4C:63:0D:87:72:4E:4E:68:EF:2B:36:A7:B2:81:E5:24
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JFjVSExjDYdyTk5o7ys2p7KB5SQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.176.0/21
Signature Algorithm: sha256WithRSAEncryption
64:51:6b:ec:0d:ec:08:ea:2d:41:da:92:07:8b:76:25:ea:86:
04:04:d3:a7:85:0b:a2:5d:1f:9b:5c:0e:5a:59:d4:27:01:c7:
af:b1:36:4a:16:61:92:08:98:47:ec:6d:a4:48:55:32:7b:0b:
23:57:96:ca:ae:fd:b0:0f:f2:0f:ea:23:7f:04:94:33:ec:23:
0a:f0:e9:32:18:2f:c6:b9:47:f1:41:0f:7b:39:15:92:4c:0e:
30:ee:45:53:b6:80:a3:a6:81:d1:b8:33:60:46:e9:3e:db:06:
e7:52:78:78:e0:b0:43:53:55:c2:05:a4:a9:22:03:25:66:f0:
bc:ea:ee:b2:24:57:81:17:36:48:bb:1d:f2:2c:fa:51:0d:3d:
ab:aa:15:a7:9d:32:63:c9:67:74:84:3d:84:2e:a4:52:63:dd:
81:8c:85:c8:76:84:c3:71:7d:b6:93:ac:52:06:0b:51:4a:6f:
41:73:54:d0:99:a6:d5:0f:44:57:fd:d9:d8:88:40:9f:da:75:
31:8b:56:f4:c4:e0:b1:0a:de:3a:0b:d9:0a:57:f3:e8:b9:72:
01:8a:9e:92:05:89:48:df:88:16:9a:87:b4:34:36:89:ac:71:
f8:6f:52:39:1f:85:7d:e1:37:76:76:b4:45:f7:0d:d9:08:52:
30:48:51:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org