Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MSXGh7F-WPAZnelKgMfDoGyICRY.roa
File: MSXGh7F-WPAZnelKgMfDoGyICRY.roa (raw, json)
Hash identifier: Uv3fv0KX6hKoT+4yAm99uwfy47Xs7jv5SSNOswu4ENg=
Subject key identifier: 31:25:C6:87:B1:7E:58:F0:19:9D:E9:4A:80:C7:C3:A0:6C:88:09:16
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 19A8
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MSXGh7F-WPAZnelKgMfDoGyICRY.roa
Signing time: Sat 22 Oct 2022 06:07:32 +0000
ROA not before: Sat 22 Oct 2022 06:07:32 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.159.168.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6568 (0x19a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:07:32 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3125C687B17E58F0199DE94A80C7C3A06C880916
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:27:c5:fa:ec:c3:34:3e:f2:fd:99:2d:f1:67:
95:18:a5:a0:32:26:25:a7:93:ac:e4:18:9a:fa:5d:
da:8b:19:99:13:92:ef:cb:4d:76:2c:40:69:33:fc:
56:0a:32:75:09:0f:2a:77:0b:6e:cf:bc:71:e6:60:
a3:5e:28:63:46:0e:09:ce:40:93:9e:8b:a7:2d:ff:
90:1b:6e:3d:6f:aa:34:5e:2b:61:a9:6a:f2:89:cf:
1a:cd:3c:2a:4c:a8:bc:c1:d9:da:06:45:5e:bb:0f:
75:36:e4:2b:9d:19:4c:6e:f4:02:d3:fe:90:1c:51:
20:f1:4f:80:3c:fb:3f:0b:bd:aa:15:b9:c5:dd:75:
67:af:9b:f2:95:3c:64:95:93:a4:60:07:6d:48:e5:
77:0f:54:c2:95:4a:84:77:e2:2d:c9:49:53:26:f3:
a3:6a:6f:35:fb:4a:9f:d3:9d:6c:23:dc:53:ae:03:
15:fb:d2:5f:13:fe:02:2a:ef:bd:6b:63:95:e6:e9:
2f:fd:4d:a5:1f:56:a3:f3:36:37:5e:8f:1b:25:e8:
84:85:ee:2d:f5:27:ab:1b:e4:36:31:cd:12:1d:58:
09:f4:84:35:90:d6:2e:b6:7c:02:93:21:22:11:6a:
92:98:31:d9:fe:74:95:51:8d:1a:f4:8c:31:7b:a2:
b9:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:25:C6:87:B1:7E:58:F0:19:9D:E9:4A:80:C7:C3:A0:6C:88:09:16
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MSXGh7F-WPAZnelKgMfDoGyICRY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.168.0/21
Signature Algorithm: sha256WithRSAEncryption
2e:3f:de:44:b8:b3:c2:a8:9f:fc:a8:9a:87:ef:6d:6b:a1:13:
9c:42:7f:1e:94:25:b9:d6:a3:61:d9:f0:da:ca:32:a5:52:78:
02:e0:d3:ab:9c:ba:fc:e0:52:61:41:3e:e4:01:40:c3:eb:52:
16:c9:5a:5d:1c:a8:bd:75:d9:22:c9:99:51:da:08:c9:19:c0:
e5:1b:5a:cc:1b:59:e6:ee:2e:5e:d3:9c:21:1f:af:83:87:a6:
dc:27:66:3d:a6:fa:65:44:c5:48:98:33:d1:76:be:49:b7:2f:
a0:20:33:25:14:f3:39:36:6b:98:7e:1f:4e:8e:48:a6:a7:34:
48:58:51:0d:1a:71:29:b5:ea:b1:ba:24:03:ab:15:50:6a:59:
20:6b:8a:98:d7:70:3e:6e:9f:68:0c:4b:41:da:54:7a:2e:3c:
65:37:93:7f:fb:dd:ee:11:85:0c:ba:00:62:80:be:31:10:47:
aa:f9:cd:0b:7b:52:0c:9b:fb:e2:da:6f:70:f4:c5:28:ef:d9:
7b:6d:36:23:57:06:c2:ef:29:c7:9c:eb:e2:51:cc:df:cb:87:
c8:46:04:6c:a7:fb:9a:6a:75:58:24:30:d5:b9:79:53:b9:95:
f6:b9:71:15:96:f8:54:99:c9:89:28:82:fa:f6:5f:a2:c8:99:
53:ad:6a:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org