Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/43v6Li3zRSW9Wsry0iudWzg8tZU.roa
File: 43v6Li3zRSW9Wsry0iudWzg8tZU.roa (raw, json)
Hash identifier: Vd36KHMRYWtpPqToFftzY00f1V+UGdpIL5ch5SHzZnI=
Subject key identifier: E3:7B:FA:2E:2D:F3:45:25:BD:5A:CA:F2:D2:2B:9D:5B:38:3C:B5:95
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 110B
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/43v6Li3zRSW9Wsry0iudWzg8tZU.roa
Signing time: Sun 07 Feb 2021 13:03:16 +0000
ROA not before: Sun 07 Feb 2021 13:03:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 115.165.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4363 (0x110b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 13:03:16 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E37BFA2E2DF34525BD5ACAF2D22B9D5B383CB595
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:2b:1d:d8:e6:ca:2f:4a:99:7f:c2:e2:c7:83:
25:0c:9f:30:99:07:09:54:4e:20:42:37:d9:d2:29:
3a:e2:65:22:9b:41:38:79:c0:72:5f:1b:b6:0f:30:
01:43:d1:23:f0:92:4c:f2:6c:40:f5:ff:7e:cb:bb:
12:73:29:3c:e2:d1:75:33:5d:ad:9b:0e:c7:32:3b:
c9:08:3a:20:ba:52:f5:55:95:d2:41:52:67:c0:f0:
9e:38:1e:a1:63:ea:68:82:01:07:92:5d:ed:76:4a:
ff:1a:3f:2c:6c:77:d4:9a:34:85:3e:48:11:ba:59:
f3:7c:1d:e8:12:78:f3:5a:9b:77:a1:6f:e8:37:ce:
5a:3e:d8:37:e8:7d:6a:71:3f:40:25:40:d5:ae:ca:
e2:d3:33:e4:97:f0:8c:a1:a1:74:ef:1b:19:58:e5:
24:71:95:d2:c6:c6:00:fa:39:16:27:1c:ad:68:69:
4d:b4:75:2b:2b:5e:49:e8:fa:58:0d:a9:0f:6b:76:
19:f2:f4:d0:46:e8:75:33:2c:09:14:22:a2:ca:f8:
fd:0a:fa:6a:64:3d:12:89:98:45:18:4f:5b:04:98:
7c:66:86:41:a4:97:fb:d9:82:8f:29:17:97:88:e0:
bc:64:11:68:e0:1a:b8:c1:ed:ed:f6:3e:64:4a:4f:
7d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:7B:FA:2E:2D:F3:45:25:BD:5A:CA:F2:D2:2B:9D:5B:38:3C:B5:95
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/43v6Li3zRSW9Wsry0iudWzg8tZU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.165.236.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:9b:e5:7a:ae:d7:11:23:2f:83:88:9a:ab:e3:be:b4:d9:3c:
d1:61:e2:18:9b:cf:54:23:09:76:c2:74:ec:bf:bc:d4:9e:06:
42:98:b2:dd:e4:a7:07:c6:d7:c4:94:06:ab:3c:d2:bc:11:17:
ed:d8:2a:cf:ac:41:a9:7c:fc:21:68:4d:61:5f:1a:e4:a2:10:
66:89:17:49:f4:e8:a2:41:a1:d1:be:b3:65:cf:d6:8c:f4:8a:
60:00:4e:b0:a0:00:bb:0b:80:8b:f1:be:9d:27:d9:f0:a6:b7:
b2:84:41:60:5d:00:37:3f:8c:70:60:31:f9:f6:02:93:5f:ae:
e0:9d:95:af:2b:ff:6d:05:0e:66:5b:4b:1a:00:62:c2:4c:84:
de:0f:e8:c1:a1:17:11:44:e2:89:5c:e1:f4:26:93:7a:46:60:
d8:7f:84:79:2d:ce:03:8a:d4:2f:9a:12:c7:b1:d2:e6:71:f3:
ce:f7:28:64:6f:f6:8b:fd:cf:de:cf:c3:08:52:4b:d2:8b:ed:
d3:b2:12:9a:0f:18:18:5e:74:e9:3b:34:fb:86:34:1f:58:6e:
70:b1:84:99:e3:17:b9:c0:2f:05:9c:b2:c7:2b:52:7c:4d:6c:
2d:a5:6b:b0:90:09:5c:d4:89:9c:9a:0d:8c:44:30:2c:8d:3a:
6c:c6:b7:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:46:24 2025 by rpki-client