Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jJNs3JF3wIQ7_4bXOdUwFLYfIbw.roa
File: jJNs3JF3wIQ7_4bXOdUwFLYfIbw.roa (raw, json)
Hash identifier: ZuqmardLHS5tORgB6wDE6MjIEop1z/DLE7PfPPViNKM=
Subject key identifier: 8C:93:6C:DC:91:77:C0:84:3B:FF:86:D7:39:D5:30:14:B6:1F:21:BC
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1A48
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jJNs3JF3wIQ7_4bXOdUwFLYfIbw.roa
Signing time: Thu 27 Oct 2022 02:41:32 +0000
ROA not before: Thu 27 Oct 2022 02:41:32 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 114.198.166.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6728 (0x1a48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 27 02:41:32 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8C936CDC9177C0843BFF86D739D53014B61F21BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:64:86:a1:aa:a1:7e:fd:4d:7c:08:0e:8a:d1:
6f:fc:e1:69:41:84:fa:e2:c3:82:d3:b0:f7:41:ac:
db:51:ff:2e:6a:d2:fd:60:47:d5:36:b4:af:23:5a:
0a:e6:52:3a:e0:56:b7:c7:60:4c:ba:ba:0c:10:0d:
c8:2d:1e:31:a2:7e:67:99:d4:af:c0:10:d9:c5:59:
60:33:39:0a:14:1f:00:f6:dc:ea:b1:2c:51:08:d9:
d6:21:2a:7e:2d:65:21:7c:83:b4:02:a3:d2:e6:62:
fe:60:0b:2b:b0:87:90:b7:44:21:f4:d2:9f:85:de:
d7:ea:2e:db:cd:b0:5e:fd:f5:ab:01:76:0a:a9:0f:
a0:35:c0:ad:64:9f:57:c4:55:08:8e:81:60:e0:32:
a5:61:39:a0:ac:70:ff:5e:27:68:07:b4:b3:aa:07:
89:56:3f:91:b3:56:75:82:11:c0:98:58:b1:79:74:
4c:0e:e3:fe:10:64:c6:e4:d8:8a:f5:ac:0e:66:cd:
74:3f:47:01:30:b1:6d:7c:1a:5e:2d:9d:07:84:d1:
f8:cc:36:23:ce:6e:bb:cd:c0:d5:b9:f4:e5:65:7f:
ca:ab:c3:69:16:1d:b4:0e:08:d7:ae:2a:49:0a:6a:
ef:d7:4f:82:72:30:ad:d6:94:df:78:25:c2:7f:2a:
7d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:93:6C:DC:91:77:C0:84:3B:FF:86:D7:39:D5:30:14:B6:1F:21:BC
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jJNs3JF3wIQ7_4bXOdUwFLYfIbw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.166.0/23
Signature Algorithm: sha256WithRSAEncryption
99:a2:86:e3:a4:3b:f0:78:83:11:5d:ca:69:22:7f:e1:66:a3:
38:ed:bf:40:91:c8:de:e1:e1:4d:95:49:72:c4:72:b7:94:a2:
21:e5:48:a8:f7:d6:cc:cb:d4:e2:d6:1b:1d:01:e8:06:f3:a3:
41:85:b1:e3:21:db:56:35:5d:53:64:d3:c8:10:53:40:f2:a9:
95:b0:e4:f9:df:98:e2:d1:d7:32:be:68:4e:09:0a:b6:e2:ef:
3e:72:45:61:94:b3:4b:7a:59:76:be:0a:d6:95:cd:1c:9d:bd:
18:47:fd:ff:ef:53:ce:10:c4:b4:81:fd:bd:86:55:66:1f:56:
6c:2e:5c:48:fe:ca:a5:c5:f5:33:5a:72:44:9d:31:57:3e:c3:
d2:c4:10:b2:32:0d:a5:49:67:51:29:4a:20:e7:1c:06:b5:3c:
d2:cf:49:28:97:cd:9a:66:7e:e0:81:97:97:65:ce:6e:9e:42:
bd:4d:5d:9d:9b:ef:74:43:de:13:82:23:45:00:64:6a:a0:4e:
23:96:8a:ec:0f:d2:43:2a:e4:11:8f:de:e2:41:b6:1a:99:a2:
31:d6:a8:10:ab:4d:7e:f0:c4:5b:7f:70:bd:cc:c3:3d:41:fb:
d8:9d:25:94:72:2d:7d:a7:20:93:da:95:2c:02:14:5d:ed:e1:
28:7c:ac:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org