Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xcIutBMbb-isAwaI1hTA1HdRW7Y.roa
File: xcIutBMbb-isAwaI1hTA1HdRW7Y.roa (raw, json)
Hash identifier: EbjxVI04hS0SsxtTq+yj6p4aBDyDnoT45BoKSifF8Bw=
Subject key identifier: C5:C2:2E:B4:13:1B:6F:E8:AC:03:06:88:D6:14:C0:D4:77:51:5B:B6
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1ABE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xcIutBMbb-isAwaI1hTA1HdRW7Y.roa
Signing time: Thu 22 Dec 2022 06:07:40 +0000
ROA not before: Thu 22 Dec 2022 06:07:40 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 114.198.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6846 (0x1abe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Dec 22 06:07:40 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C5C22EB4131B6FE8AC030688D614C0D477515BB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:e1:f4:42:2d:ff:bc:2d:93:81:27:6b:11:e1:
26:ef:43:bc:b0:7a:d3:3d:da:67:b2:fa:75:22:de:
88:a9:58:6e:62:09:59:27:c9:b3:bf:2f:70:f2:bc:
c9:b2:1e:6a:c4:8d:0a:9b:05:95:e5:5b:21:f4:73:
39:0e:aa:23:5c:ec:f1:7c:59:8c:c9:6a:80:96:18:
87:85:7a:5f:47:71:04:cf:c5:ef:a2:c4:fc:c9:ab:
c3:0e:51:cc:d2:9a:a5:cb:dd:6e:de:c0:bf:a7:17:
2c:d2:dd:b4:35:41:32:f0:52:d0:a7:89:8b:81:96:
92:a9:e4:a9:de:43:56:0d:a9:36:6a:fa:cb:39:8e:
3e:fb:a1:6d:32:9b:f6:94:a7:bc:3b:e3:9e:47:11:
5f:7c:2c:a9:bd:8e:8d:51:93:b1:86:3c:06:7a:bd:
fa:41:7a:d0:c7:e9:ff:a7:7e:87:dd:fe:1a:9b:15:
d8:2b:07:fc:82:21:3c:bd:a2:a9:89:42:5b:28:06:
2d:b2:e5:4a:d9:46:e4:35:26:c1:ce:b0:6b:07:69:
82:3d:51:3f:0f:4a:78:62:0c:19:67:bb:7a:84:a2:
ff:8e:f9:96:26:a0:85:98:74:39:b2:21:22:65:d9:
77:c7:ae:ee:9e:2e:5e:be:f3:62:ab:fb:ac:8a:af:
db:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:C2:2E:B4:13:1B:6F:E8:AC:03:06:88:D6:14:C0:D4:77:51:5B:B6
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xcIutBMbb-isAwaI1hTA1HdRW7Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.176.0/20
Signature Algorithm: sha256WithRSAEncryption
09:b7:7b:7c:35:21:c0:35:13:aa:00:7f:de:29:36:9c:16:99:
2d:ef:36:0e:ba:09:6e:c8:a9:35:21:eb:a4:49:ed:6e:8f:5a:
50:5d:e3:32:30:91:09:5f:b7:42:ea:f1:9c:69:31:91:82:e2:
30:e9:cf:0e:ca:f4:ed:53:ed:28:a3:34:1b:e7:e3:e5:f7:30:
09:54:ef:57:34:b7:7b:78:76:c4:8a:2f:82:d1:88:21:db:ff:
04:d4:69:8b:89:89:3e:bf:ae:4f:d2:c0:ac:56:e3:78:ff:86:
2c:a4:95:e5:ff:4a:a6:52:2b:89:61:12:6d:91:c7:4f:f6:28:
7c:50:bc:4b:2e:18:7f:9c:98:56:59:e2:91:b0:7e:c0:88:bb:
e5:47:7c:17:58:ea:ac:18:49:08:f3:c6:6a:49:09:04:48:e7:
bb:b6:15:9b:91:5e:1b:c5:3e:81:6e:e7:26:7f:1e:79:c6:e9:
00:88:e4:01:8b:64:4d:52:b9:e5:7f:2a:0c:b5:a3:cf:e8:eb:
b5:fb:70:d1:f9:1d:15:10:48:26:03:1f:50:1c:a9:41:c7:81:
ef:bd:47:1f:cd:62:5f:46:7e:63:34:7d:65:18:cf:e9:81:6c:
9a:d6:6e:37:33:a7:6a:d7:bc:e7:74:ea:c7:ab:2f:17:eb:6e:
8f:d7:01:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org