Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/zfLP2-Sw7hoR0dUZqf5XuzLXehg.roa
File: zfLP2-Sw7hoR0dUZqf5XuzLXehg.roa (raw, json)
Hash identifier: Vv8mkFhRGovy1ZY8wAap0PGZfw6bi3RAKxIDp2pjFKc=
Subject key identifier: CD:F2:CF:DB:E4:B0:EE:1A:11:D1:D5:19:A9:FE:57:BB:32:D7:7A:18
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1903
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/zfLP2-Sw7hoR0dUZqf5XuzLXehg.roa
Signing time: Sat 22 Oct 2022 06:05:59 +0000
ROA not before: Sat 22 Oct 2022 06:05:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.159.128.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6403 (0x1903)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:05:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CDF2CFDBE4B0EE1A11D1D519A9FE57BB32D77A18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:4c:3a:a8:bd:06:db:5e:e8:83:e0:4f:c6:0c:
ef:69:26:3d:21:3c:83:c2:12:e1:d8:55:ba:93:f5:
2d:d1:27:71:aa:e6:b3:60:33:c7:54:34:2e:ef:6f:
3e:84:97:4c:cd:7c:84:3f:eb:c6:c3:a5:1c:18:cc:
b0:ad:0f:2a:14:da:fa:01:75:1d:bd:37:65:62:88:
22:64:41:d5:75:be:d2:96:10:8a:74:36:88:f9:aa:
5e:c4:f2:75:99:65:09:4d:b5:87:43:13:f3:58:b9:
8b:8d:c9:41:22:8c:7d:c4:5a:cd:fe:8f:b6:03:5b:
e2:f9:b0:7b:7c:09:33:a7:4e:46:31:41:53:e6:54:
58:56:31:9f:16:4d:67:41:cd:43:4b:f3:b1:47:60:
9e:78:a1:8d:a3:a7:3d:d5:d2:f0:2b:bc:44:c1:c6:
12:ca:8e:c5:75:30:e9:97:0b:02:1c:33:77:7d:b9:
c1:27:07:d1:1b:2b:b8:0a:ae:a2:c4:ad:72:bc:5e:
d8:54:2c:b7:aa:db:36:23:2a:7d:20:99:f1:28:5d:
e5:ca:2b:17:ea:1d:31:05:40:39:84:73:29:01:16:
c0:a3:c2:0d:ab:e7:9d:fe:3a:e7:0d:39:fc:92:03:
37:cf:ef:4b:33:78:e2:ca:41:d0:1b:11:70:4b:8c:
4e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:F2:CF:DB:E4:B0:EE:1A:11:D1:D5:19:A9:FE:57:BB:32:D7:7A:18
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/zfLP2-Sw7hoR0dUZqf5XuzLXehg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.128.0/21
Signature Algorithm: sha256WithRSAEncryption
39:9a:75:05:08:1a:51:bf:ca:89:ff:82:93:b6:43:ec:56:09:
d8:3b:8f:5d:25:69:b4:53:47:4a:aa:8f:f3:00:25:d0:fb:a8:
75:e0:6f:f9:e0:0f:a4:c6:80:42:a2:92:7d:6e:f3:d4:f1:5c:
6d:3b:21:18:78:6a:52:5f:8a:e9:f5:3a:b1:91:40:36:65:cd:
78:bf:ba:a7:bd:5f:c8:ee:60:fa:d8:5b:c7:d7:82:a0:4f:cd:
00:1c:ae:87:35:fe:8b:92:75:41:1a:2c:30:aa:93:f6:bd:41:
8e:6b:a7:1d:3b:e4:c1:22:c5:ee:43:95:b4:1d:1c:65:c9:7b:
61:60:17:16:0b:8c:13:f2:82:69:5c:cf:52:9f:da:64:cd:87:
43:e3:e9:8a:9a:dd:d5:99:08:9c:82:22:88:0e:40:6a:7e:c9:
55:53:19:ae:64:88:60:0d:00:77:7c:02:04:c8:6a:ab:81:a4:
d5:81:65:49:11:62:39:b5:0b:5d:85:9f:59:10:18:b8:72:66:
41:66:ab:cd:01:5f:89:a6:dd:1f:45:0b:33:a4:c9:66:29:57:
49:6d:da:0d:31:2a:d5:ac:38:13:4b:0b:bc:55:64:f4:08:3f:
c6:01:53:c6:2d:a9:52:6d:34:87:8c:a4:49:c2:98:c6:80:71:
c2:d1:4d:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org