Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OAoX6J62_sUCfdDFR6SBGW3VJIY.roa
File: OAoX6J62_sUCfdDFR6SBGW3VJIY.roa (raw, json)
Hash identifier: xC9HPfShKkg+gLY+q+z3fDLyAgYnyREDCWH4NE/fToY=
Subject key identifier: 38:0A:17:E8:9E:B6:FE:C5:02:7D:D0:C5:47:A4:81:19:6D:D5:24:86
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14B5
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OAoX6J62_sUCfdDFR6SBGW3VJIY.roa
Signing time: Tue 23 Aug 2022 09:22:04 +0000
ROA not before: Tue 23 Aug 2022 09:22:04 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 49.158.208.0/21 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5301 (0x14b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 23 09:22:04 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=380A17E89EB6FEC5027DD0C547A481196DD52486
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1f:a2:ca:48:d7:23:46:c6:7f:4c:a3:05:e4:
48:80:22:85:c2:96:ab:fd:54:10:ea:ce:8c:da:21:
0a:67:79:58:ec:e1:3d:fd:7c:75:6b:0b:9e:a3:a9:
0e:08:cd:96:82:48:15:2e:af:20:21:82:eb:b8:17:
7d:8d:d4:e3:1e:01:e7:19:f2:09:82:f5:71:3d:b3:
79:a3:e9:21:6d:7e:5d:e6:6c:15:27:62:2d:7b:6d:
00:33:5e:18:54:1c:7a:b6:c8:0d:90:6e:25:ce:2e:
eb:66:56:bd:83:dc:37:5b:9a:cf:23:86:45:33:a7:
6e:b1:c5:12:38:e3:35:30:e6:49:e4:fa:8d:d1:97:
70:ff:d6:ec:8a:68:ec:80:25:f6:a2:e8:25:78:41:
f8:c2:d9:c0:00:b3:a0:05:67:d5:c3:bd:6d:c8:2e:
bf:0e:ee:04:88:c2:a2:a1:42:f2:76:8c:ee:6a:b1:
7c:c7:e3:d4:87:ef:61:b2:dc:67:8c:83:33:d7:a4:
8c:80:61:74:e5:c3:b5:79:40:02:da:73:c9:d0:61:
f3:85:7d:cd:d9:6b:35:80:45:af:4d:05:99:8e:d9:
d9:7b:75:9e:53:29:7a:bd:04:d9:a8:32:4a:c7:34:
95:ad:e2:6b:2f:60:f5:01:33:e3:f5:cf:e1:42:09:
b8:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:0A:17:E8:9E:B6:FE:C5:02:7D:D0:C5:47:A4:81:19:6D:D5:24:86
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OAoX6J62_sUCfdDFR6SBGW3VJIY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.208.0/21
Signature Algorithm: sha256WithRSAEncryption
54:83:b9:59:ca:38:cb:bf:9f:ed:b6:c2:d3:fc:26:5e:e0:6d:
b1:66:ef:95:07:70:e9:09:df:ef:9b:58:f4:ad:92:61:24:9d:
b1:80:8a:46:a8:4f:ca:e7:9f:23:e7:49:80:66:4d:96:99:42:
16:31:11:51:13:b1:d1:c1:70:f4:fe:60:51:55:43:a5:fc:19:
8f:88:94:c9:8d:f4:91:5b:11:71:cc:83:49:eb:66:52:36:35:
e5:ce:34:eb:cc:c3:92:f5:20:1e:12:55:9a:73:f7:2f:77:bb:
62:c6:4e:91:6a:88:05:03:22:ee:8f:f5:a8:68:6d:f8:57:24:
c1:53:a0:84:42:3d:16:89:14:e4:1d:3d:b7:ea:75:23:b7:97:
d1:bd:68:1f:85:81:ac:79:ca:13:f9:ac:96:de:05:7f:e9:10:
d0:ea:b2:f7:e1:d3:d5:e8:b9:22:d7:a7:23:1f:e3:d0:33:66:
7c:13:26:87:ff:68:02:3c:f8:bc:9b:41:7a:32:ff:94:59:5e:
9e:2a:5e:9e:ea:0c:07:d9:1b:47:03:9e:9f:d5:08:04:24:5b:
5a:af:47:66:65:47:90:c0:7a:7f:82:aa:50:0a:72:8c:e6:e6:
55:90:78:d0:5a:1c:c0:73:5b:2d:26:ec:90:e0:87:96:79:c4:
c5:bf:b9:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:48 2023 by rpki-client on console-fra.rpki-client.org