Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/fbhDsxCh4fW2PUmXvuSef6kZBmQ.roa
File: fbhDsxCh4fW2PUmXvuSef6kZBmQ.roa (raw, json)
Hash identifier: iiabMr4+U3LYVspqpmPJA/jz2qirglrIFp03/Db84DI=
Subject key identifier: 7D:B8:43:B3:10:A1:E1:F5:B6:3D:49:97:BE:E4:9E:7F:A9:19:06:64
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/fbhDsxCh4fW2PUmXvuSef6kZBmQ.roa
Signing time: Thu 15 Sep 2022 02:36:25 +0000
ROA not before: Thu 15 Sep 2022 02:36:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.158.232.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7DB843B310A1E1F5B63D4997BEE49E7FA9190664
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:81:6f:de:eb:97:49:5a:2b:17:7f:ac:69:2f:
68:53:f3:de:e8:0c:12:05:52:73:b2:dd:25:31:6f:
ee:27:ce:c8:b9:4c:c9:51:b5:55:27:ed:4a:09:d4:
3c:1b:72:e1:54:b8:cb:10:7e:80:6e:9d:2e:03:23:
70:c7:b8:78:ec:38:24:37:c7:27:ec:de:04:a4:43:
a1:1f:77:55:31:f8:02:65:97:88:53:20:7f:20:0f:
5e:a2:dc:08:47:33:ff:98:ec:9a:ec:7c:01:5b:f8:
40:16:9b:f6:57:76:4b:77:72:56:7f:e4:84:b2:1b:
bb:df:07:20:80:33:cc:2e:96:84:93:60:61:75:b0:
e1:43:b3:8e:4f:10:a0:f7:46:ae:88:1c:d2:8a:de:
40:e2:25:48:86:4a:a6:f7:e7:62:57:c7:06:f4:e8:
c4:07:b3:5c:00:8c:3e:9f:db:f6:cb:fe:65:f9:63:
bd:c5:87:72:b7:92:98:2c:80:e5:d1:13:a9:e4:dd:
fd:b4:81:64:18:9c:bc:22:1b:a3:0a:a7:07:90:39:
81:dc:e0:60:7d:01:b0:75:c7:fd:46:d3:af:85:35:
91:7a:d6:ca:51:c3:06:19:f3:0b:28:51:2c:8b:b2:
7e:fe:96:5d:fe:e5:76:70:45:ba:91:de:34:c8:a0:
44:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:B8:43:B3:10:A1:E1:F5:B6:3D:49:97:BE:E4:9E:7F:A9:19:06:64
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/fbhDsxCh4fW2PUmXvuSef6kZBmQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.232.0/21
Signature Algorithm: sha256WithRSAEncryption
28:c0:9a:7c:35:ff:ca:78:10:00:75:bd:3d:17:5f:de:4f:95:
4e:b5:35:20:34:fd:1d:b1:d5:41:9e:cf:db:f7:4c:53:d0:e1:
59:15:84:2c:5c:96:d8:31:53:e9:7f:ed:05:1b:38:bf:85:f5:
18:44:a1:fa:8b:2b:54:04:3f:73:a8:b6:df:78:23:48:41:dc:
e6:0e:93:da:40:66:62:81:b8:94:96:c9:9a:51:36:81:5c:91:
c3:56:0e:64:3d:58:ab:97:dc:f9:1c:72:54:28:5d:fc:c3:6a:
fa:58:0e:12:61:ee:51:dd:e3:e0:c1:49:b2:12:91:c4:d1:d0:
02:0e:b5:f7:d7:4b:ce:2b:3c:05:d7:31:9e:2b:51:ec:50:05:
1e:06:f9:30:1d:9a:a8:69:22:8b:a5:34:8c:95:52:c9:42:c0:
61:a9:d1:8a:96:6b:4a:ff:90:a1:f3:56:7d:5f:12:ce:7e:c3:
79:f3:00:d0:eb:63:9e:5e:48:a9:fe:d2:30:df:bc:82:c8:8f:
1b:69:78:25:c9:bc:ae:6b:23:53:09:01:77:95:bb:3f:51:4d:
29:b3:21:76:24:7e:a0:d6:70:9f:66:1e:08:39:fe:3c:ae:4e:
b0:4f:d9:53:6b:a7:5f:bb:60:4f:da:f2:e9:4f:06:ce:a0:2a:
b1:42:9e:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org