Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/glaQiboBlkN5gE-huziHD2drPPg.roa
File: glaQiboBlkN5gE-huziHD2drPPg.roa (raw, json)
Hash identifier: Eo6EQhKQd+3i1lk1exb7RB4i4HuROCS6aY+hyXe1DPg=
Subject key identifier: 82:56:90:89:BA:01:96:43:79:80:4F:A1:BB:38:87:0F:67:6B:3C:F8
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1934
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/glaQiboBlkN5gE-huziHD2drPPg.roa
Signing time: Sat 22 Oct 2022 06:06:14 +0000
ROA not before: Sat 22 Oct 2022 06:06:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24165
IP address blocks: 122.100.96.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6452 (0x1934)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:06:14 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=82569089BA01964379804FA1BB38870F676B3CF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:7f:3d:5e:5a:31:f2:d4:1e:13:d4:55:f8:b0:
01:8b:d5:5f:b5:70:4a:7f:41:0b:9d:8d:95:97:1d:
6f:6c:ac:a6:6a:4d:d5:dc:12:27:fd:5d:ef:0b:fa:
31:7f:3a:f8:89:32:01:4c:cc:0c:f2:6d:df:fb:ea:
77:2d:c3:ed:e7:4f:e5:05:83:94:ab:fb:4a:89:02:
ad:b3:ea:13:26:42:33:bc:4a:35:c9:8b:10:9c:45:
9a:c4:9c:32:ea:87:94:06:5a:45:5c:ba:0a:ef:66:
7b:63:41:56:ae:f7:94:c3:ca:ac:6c:80:4a:3b:51:
80:ed:1c:f7:75:cb:de:e4:3a:6c:00:b4:ed:90:1a:
10:a1:ed:92:a2:a8:da:bc:de:4d:be:8d:f9:96:1a:
cd:67:72:c8:be:90:12:f9:ca:70:7f:de:55:29:cc:
cf:ce:30:9a:2a:8c:56:b9:8c:02:da:6f:af:b4:67:
dc:48:4f:40:89:47:e5:a4:f8:92:42:d9:4a:d4:4e:
be:c7:4c:2f:d9:ae:78:51:f1:00:47:eb:d4:34:80:
02:91:57:cb:83:78:52:8c:f6:91:ba:73:fd:c7:8f:
c4:6c:bd:03:c8:e7:b7:f8:14:b0:6a:21:17:60:2e:
6a:87:9f:4f:f9:c2:4f:88:2f:85:01:e5:43:63:3a:
85:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:56:90:89:BA:01:96:43:79:80:4F:A1:BB:38:87:0F:67:6B:3C:F8
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/glaQiboBlkN5gE-huziHD2drPPg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.100.96.0/21
Signature Algorithm: sha256WithRSAEncryption
37:da:b4:66:ba:24:49:b9:c0:5b:f2:7c:0a:bf:d2:a2:ec:7a:
b9:5d:8c:33:84:eb:5e:8a:d1:3d:f6:22:69:23:b4:64:a7:4b:
2b:d3:cc:d2:78:70:cd:89:d6:f9:7f:c6:5c:1a:24:03:65:12:
10:44:c6:84:13:0c:e2:67:6b:57:29:4b:54:ef:38:99:84:a9:
8d:53:d8:c2:1e:0e:ed:32:3d:d4:93:89:3a:78:04:98:e5:dd:
d3:97:6d:3b:16:89:82:8a:3f:a7:96:1c:21:0e:11:6c:05:b1:
bf:83:e7:b5:0e:18:1c:8b:43:d0:75:0d:78:92:1f:04:15:03:
c2:4e:25:67:aa:d3:f7:79:57:dc:e4:aa:68:30:67:85:da:d1:
fc:37:b1:14:a6:fa:76:a2:80:e7:45:10:47:e1:29:c7:b7:5c:
a6:57:5d:50:3c:36:b0:f9:11:4e:c5:c1:0f:cc:b5:e6:69:25:
9d:69:61:9b:46:19:32:67:a5:3e:3f:e4:7a:3b:6c:5a:7a:15:
1a:26:9f:dc:f8:d1:64:5c:81:cf:ad:8b:3f:93:1d:0b:7b:61:
c1:77:b7:12:7c:a4:fe:03:0d:b7:ff:e8:ee:fe:85:a4:33:ac:
d7:88:63:cf:be:61:58:62:53:bf:99:0e:18:49:66:7d:42:54:
51:6c:5b:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org