Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/05x1145rFuRm3STVuaMaCQu0IX0.roa
File: 05x1145rFuRm3STVuaMaCQu0IX0.roa (raw, json)
Hash identifier: HszAV+8fDs+AiU0Rc92rOLWZiw4hf0aXHWdWrzsKLNM=
Subject key identifier: D3:9C:75:D7:8E:6B:16:E4:66:DD:24:D5:B9:A3:1A:09:0B:B4:21:7D
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12B0
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/05x1145rFuRm3STVuaMaCQu0IX0.roa
Signing time: Wed 29 Sep 2021 02:54:51 +0000
ROA not before: Wed 29 Sep 2021 02:54:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 49.159.120.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4784 (0x12b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D39C75D78E6B16E466DD24D5B9A31A090BB4217D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c3:a0:15:e8:d5:c5:22:ac:1e:59:3b:f5:73:
ef:6f:f9:a6:7b:1e:ba:31:26:f5:15:11:ad:26:cf:
d6:37:a8:ad:3b:b8:6f:e8:0f:ed:08:b9:13:0e:a9:
a9:1e:31:68:88:06:2d:85:e4:56:9e:ec:53:31:5e:
a4:35:56:21:6a:20:09:8a:2c:f7:f1:46:f6:4f:95:
e7:01:2e:e6:41:0e:89:e2:29:a6:c9:e5:d2:4d:76:
29:db:db:c7:d4:f4:c4:c6:22:7a:8d:86:37:47:21:
3b:0e:a5:91:95:13:1e:d8:b3:d6:97:22:5f:c9:56:
22:d8:4d:a5:13:b4:12:ee:21:a3:a2:dc:4b:54:6e:
13:9a:fe:5e:cd:67:33:08:d5:74:80:51:b1:30:87:
03:cf:4b:36:a1:2f:3d:a2:b1:99:2c:eb:ac:09:1c:
3a:a6:5b:22:89:bb:7b:76:c3:72:0b:21:63:03:84:
5a:7f:0c:b2:70:df:f4:74:10:e4:f8:db:70:d8:e2:
e1:05:e9:0c:d3:ca:0d:c2:9c:90:6b:17:fb:83:43:
64:09:93:95:15:98:27:7c:46:b0:1b:cf:c1:3a:6f:
dc:d0:74:0e:a8:22:71:f5:ff:31:33:ca:9f:92:cc:
2d:91:e2:a8:6c:95:53:4b:40:9b:ee:18:f8:f3:9a:
5d:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:9C:75:D7:8E:6B:16:E4:66:DD:24:D5:B9:A3:1A:09:0B:B4:21:7D
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/05x1145rFuRm3STVuaMaCQu0IX0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.120.0/21
Signature Algorithm: sha256WithRSAEncryption
50:6a:92:15:be:f6:d5:16:c9:c4:2a:08:6a:34:42:40:db:11:
c3:a9:eb:14:79:81:02:89:62:1c:5b:cb:05:d3:4e:79:1a:ff:
fd:f4:24:03:bc:02:10:03:ff:ef:5c:66:f0:56:ad:a3:5c:31:
74:ab:37:65:17:7d:e0:c9:6c:d1:ae:2e:ee:62:0d:6a:29:68:
99:38:e8:cd:01:38:dd:ef:39:a1:2e:4d:41:d1:ec:55:d8:3c:
22:62:5f:d9:ba:35:ae:a6:15:2e:c2:e8:ce:a1:8c:62:02:2d:
16:be:06:52:18:24:68:c1:35:92:64:25:59:2e:90:59:91:4a:
ae:a0:1b:29:3b:05:6b:86:aa:bc:b3:10:fb:ab:b0:1c:be:8c:
64:7d:5b:b0:86:34:df:30:91:a2:da:3c:8d:e4:b5:56:d1:94:
cf:bd:ba:bb:47:92:5f:b2:fa:55:07:be:51:a2:1b:02:e2:61:
24:50:eb:2a:a5:6a:10:7b:67:37:07:ad:5c:51:21:df:6a:15:
23:71:52:57:10:ca:e5:c6:00:1b:cf:05:91:6b:c4:cb:8a:1c:
50:3a:43:4f:7e:94:de:51:1d:51:71:9c:d9:e0:de:35:14:b0:
8b:dd:d0:56:65:89:4b:ec:62:3f:1b:2d:b5:79:f4:cf:5b:7f:
e9:c7:0e:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:03:16 2025 by rpki-client