Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/e8Z4vHc7Nfdxy6pUtkchIEx7xRU.roa
File: e8Z4vHc7Nfdxy6pUtkchIEx7xRU.roa (raw, json)
Hash identifier: 1eQjTs+o0dXrBgX3KwJkzd5Kc7dn0809jny7QxluK7o=
Subject key identifier: 7B:C6:78:BC:77:3B:35:F7:71:CB:AA:54:B6:47:21:20:4C:7B:C5:15
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/e8Z4vHc7Nfdxy6pUtkchIEx7xRU.roa
Signing time: Thu 15 Sep 2022 02:35:27 +0000
ROA not before: Thu 15 Sep 2022 02:35:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 49.159.96.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:35:27 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7BC678BC773B35F771CBAA54B64721204C7BC515
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:75:7a:fa:3d:f7:24:ae:43:97:41:5a:98:3e:
47:b3:a3:0f:31:19:f3:79:66:5b:45:70:89:1c:ad:
3d:03:84:0d:d2:82:89:03:c4:6b:45:1d:d6:b2:ec:
d0:b1:c9:f9:e0:70:1c:8c:72:e2:a4:55:cf:07:20:
8d:8b:d4:67:2f:d7:c7:d3:e2:ad:de:a2:69:0d:12:
93:52:39:13:61:e2:8c:ff:19:1b:9f:a1:94:d1:ba:
4e:3e:24:65:1d:f4:6c:63:69:7f:8b:17:f7:31:48:
42:98:ab:90:16:34:5a:35:d5:4e:43:51:89:47:e2:
81:f2:27:ae:48:c5:69:bc:26:72:60:46:11:da:f2:
ed:99:1d:d8:e8:fd:59:b8:73:a0:57:63:a7:d6:b0:
d5:59:a2:32:dc:76:38:de:3c:65:cd:0d:99:fa:90:
24:cc:be:59:cb:1a:02:9d:7b:be:fd:5b:b2:11:f8:
62:31:ca:5d:99:7f:95:ef:ce:62:e0:d9:c6:84:75:
a9:bd:8b:d4:dc:ed:51:99:0a:bd:d6:1a:3c:83:f7:
3e:19:f2:cc:eb:34:d2:53:2b:3c:60:1a:da:78:28:
9e:25:4a:b7:8f:79:f8:24:75:2c:d5:1a:aa:be:90:
37:58:c0:a9:b4:e4:83:5c:33:94:79:01:00:4e:92:
9b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:C6:78:BC:77:3B:35:F7:71:CB:AA:54:B6:47:21:20:4C:7B:C5:15
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/e8Z4vHc7Nfdxy6pUtkchIEx7xRU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.96.0/21
Signature Algorithm: sha256WithRSAEncryption
2c:b9:cd:44:0b:01:3b:23:61:f0:79:87:d0:3e:e4:aa:fb:5c:
bd:7d:a4:f5:2c:2d:a6:8a:63:a0:87:36:dc:10:bc:54:39:13:
ed:23:cd:08:61:1b:26:6b:c6:21:7d:fc:02:62:92:3e:30:c5:
9e:91:e0:d0:75:d4:39:93:88:c1:86:2b:89:78:62:03:03:57:
3f:53:5d:9c:37:e2:8f:d7:2f:44:17:23:b2:a8:8c:67:17:e4:
a5:48:67:6d:b0:ac:ff:78:04:3c:94:68:39:b2:7f:c1:b8:69:
9e:c1:e3:ba:a1:07:e4:64:f1:d0:61:31:ed:5e:f6:bb:fc:f1:
d3:47:3a:e9:5e:b7:31:52:4b:71:ee:e3:a3:e7:21:11:67:f5:
f9:44:2f:a1:6d:d7:9d:2c:c4:0b:1f:2e:4b:13:1a:b1:3f:af:
28:e3:7f:ce:70:6f:a7:2a:c6:29:bf:b9:7e:89:8b:f5:ce:ba:
5a:ba:03:ad:0f:2e:cd:bb:46:24:e5:2c:6b:7e:66:68:e8:30:
bf:17:6e:d5:e7:89:e0:56:ff:ad:1a:cf:f8:27:af:43:43:25:
1b:f7:ab:32:22:a5:c5:fe:9b:37:d8:5e:7c:d6:76:63:28:8d:
87:e0:d4:a3:7f:7c:e4:eb:53:f3:6e:6d:71:8d:61:40:41:65:
ae:82:88:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org