Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/aPcDQmw0CfUF6Us8xGKhcAxG1s4.roa
File: aPcDQmw0CfUF6Us8xGKhcAxG1s4.roa (raw, json)
Hash identifier: f7vtd3VCOL7k3/tqNVDnsoYt7I1pPjigGrODdcYc+Kk=
Subject key identifier: 68:F7:03:42:6C:34:09:F5:05:E9:4B:3C:C4:62:A1:70:0C:46:D6:CE
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 19E4
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/aPcDQmw0CfUF6Us8xGKhcAxG1s4.roa
Signing time: Sat 22 Oct 2022 06:12:32 +0000
ROA not before: Sat 22 Oct 2022 06:12:32 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.159.96.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6628 (0x19e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:12:32 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=68F703426C3409F505E94B3CC462A1700C46D6CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d6:f1:6a:48:57:88:94:e8:a6:60:4f:df:e8:
98:c7:b5:8a:3e:0a:be:da:fb:f5:52:c6:4c:e0:12:
50:cc:54:19:06:a0:2d:73:79:c7:13:89:33:f4:69:
30:32:a7:49:42:80:9a:86:fc:30:79:62:17:ab:0f:
7d:af:97:52:ca:b8:9f:38:af:36:e9:ca:78:10:d8:
bc:b4:08:c9:08:29:fe:1b:20:82:25:3b:ad:2e:a1:
4b:d6:04:4e:a4:1d:14:95:b7:f3:b1:cc:bf:9a:b5:
b9:85:f3:fb:4f:49:0e:b2:e7:fc:56:a9:05:d0:a0:
9e:b2:71:3a:95:0a:5b:7e:b5:ca:ac:3b:fc:44:bf:
e1:af:4f:eb:fd:2f:1c:27:72:72:79:83:10:f9:f7:
42:46:f1:1e:c9:e7:1d:ec:1e:65:a6:23:66:d0:91:
fb:2e:3c:3f:cc:05:dd:ac:07:6d:1e:a4:14:21:02:
1f:c2:00:c9:05:46:5a:17:4d:08:a5:88:c8:a5:a6:
d1:0d:86:b5:68:1a:5a:0d:43:47:32:1d:38:1c:27:
31:f6:a9:7d:b0:bd:66:96:a7:bb:34:81:1e:03:59:
31:52:c8:27:8d:07:3a:09:5a:4f:ee:58:26:d0:f8:
df:bc:d2:22:8d:12:b7:6c:78:de:d7:7b:67:4f:98:
16:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:F7:03:42:6C:34:09:F5:05:E9:4B:3C:C4:62:A1:70:0C:46:D6:CE
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/aPcDQmw0CfUF6Us8xGKhcAxG1s4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.96.0/21
Signature Algorithm: sha256WithRSAEncryption
41:ae:32:0a:be:0d:d2:c1:02:4f:09:a0:34:64:15:5a:ad:76:
e9:71:92:88:d6:29:81:e6:8e:26:fb:74:96:43:db:1d:d9:df:
57:12:d8:d7:39:9f:23:bd:df:eb:4a:04:9b:ac:4a:af:62:c6:
a6:75:14:15:5e:78:e2:e1:92:66:1a:75:65:9d:45:4c:e7:83:
e6:65:fe:eb:cf:c0:db:7d:a1:1c:e9:62:b6:48:67:6b:bb:92:
5a:c6:d7:ae:30:7b:dc:1a:04:a6:42:fb:da:02:fa:e8:b6:f7:
c6:65:0b:d8:5e:47:ea:27:97:3d:76:41:51:4d:4d:02:c6:01:
0b:13:3a:3f:bb:1c:17:b0:f2:af:f1:3d:8a:31:97:a7:31:36:
5b:d5:cc:71:78:92:65:52:7b:a2:32:4c:5a:f6:2f:27:7b:1e:
b1:94:50:d2:62:6f:58:ea:bc:85:a0:23:87:ab:78:63:61:be:
4c:11:50:c1:38:6d:62:02:c0:5e:b4:ad:f8:60:89:bb:89:93:
58:c8:56:81:62:3b:1f:0e:37:3d:c7:49:e7:a5:3d:95:6b:28:
6e:80:be:fa:ab:f9:45:f1:2a:ed:b0:47:4d:b8:9b:d4:db:db:
f4:3f:6f:ed:e4:63:40:1c:60:1e:2a:db:41:59:0a:d8:e3:39:
a1:81:43:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org