Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/J3sbjciKzeKHBlwpsjorLaJ4ZPw.roa
File: J3sbjciKzeKHBlwpsjorLaJ4ZPw.roa (raw, json)
Hash identifier: Jj4OqxxoYfpTHU3DHBf+lpWsVjXMKeEH6oxsRF1RV7k=
Subject key identifier: 27:7B:1B:8D:C8:8A:CD:E2:87:06:5C:29:B2:3A:2B:2D:A2:78:64:FC
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 18E5
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/J3sbjciKzeKHBlwpsjorLaJ4ZPw.roa
Signing time: Sat 22 Oct 2022 06:05:50 +0000
ROA not before: Sat 22 Oct 2022 06:05:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.159.104.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6373 (0x18e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:05:50 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=277B1B8DC88ACDE287065C29B23A2B2DA27864FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:57:c4:03:0f:5e:34:56:b8:6e:cc:e4:f3:f5:
da:8d:4c:37:32:18:ef:24:cc:52:2b:eb:bf:b4:98:
08:8c:ba:eb:de:e2:19:7c:9b:27:33:de:94:5d:76:
f3:df:d2:e3:7e:6c:7e:a1:9a:1d:91:25:1b:69:b0:
f7:7d:6d:92:aa:c4:74:89:e0:50:87:46:fd:eb:9c:
ab:ec:18:ed:6c:85:2e:b9:b8:55:a3:28:d0:f1:e2:
9e:82:7a:d6:27:54:f6:47:af:ce:f9:63:96:03:b1:
b3:28:b6:1f:2f:49:ff:00:15:58:7a:d6:71:72:9a:
8f:58:97:0d:f8:86:3f:bb:c7:63:8d:1a:e5:38:61:
07:cd:ce:82:a1:a0:74:5d:a7:dc:86:c9:3b:30:28:
85:58:4b:f9:43:8d:40:03:8c:5c:2b:a3:82:a0:64:
f7:da:03:37:43:c2:58:92:ad:be:ce:f8:f2:f4:0c:
ee:ad:72:59:2f:39:d1:2b:39:09:55:77:fd:0f:2d:
40:6b:0c:f7:85:40:c7:20:fe:39:2b:e3:51:51:03:
69:57:e8:78:f2:a0:d2:7c:cb:e9:b7:fc:50:1a:c8:
86:7f:8b:66:86:0f:23:5e:ae:0f:c7:09:09:85:61:
c6:f5:8e:e5:e9:5a:07:7f:59:3d:8c:d3:28:c7:5d:
bc:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:7B:1B:8D:C8:8A:CD:E2:87:06:5C:29:B2:3A:2B:2D:A2:78:64:FC
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/J3sbjciKzeKHBlwpsjorLaJ4ZPw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.104.0/21
Signature Algorithm: sha256WithRSAEncryption
77:e5:6c:4a:c4:7f:96:77:74:55:08:5e:4f:bd:42:c7:75:f4:
61:2f:b4:92:31:9a:ef:aa:a3:97:21:df:89:02:1e:82:5b:73:
e7:41:b7:2f:51:61:03:d3:48:01:dd:a7:0d:01:5b:e9:3c:02:
c0:14:bc:43:96:12:68:27:5a:24:3f:b1:19:11:78:cc:fc:8a:
e7:b7:1e:f3:e3:36:ee:45:e5:73:8c:53:ea:86:24:b4:a7:66:
26:9e:0a:d6:d2:b5:0c:17:bc:af:11:dd:be:6b:39:19:c9:27:
89:97:a3:8d:6e:d5:c5:ad:7f:7b:53:c0:28:e9:9f:64:54:7b:
6f:ed:1f:ab:de:4d:fe:48:98:cc:1f:9c:eb:99:04:38:7e:c6:
3b:d0:d6:e7:31:8d:73:17:7a:b1:f6:fa:5d:33:b3:ff:b0:c2:
f2:14:1e:28:1f:16:28:61:08:c7:4c:ba:6b:a4:bb:43:ba:8a:
be:6b:1a:3d:ed:36:8a:de:17:18:57:c1:36:95:fd:bf:6b:46:
d0:25:07:47:f9:f8:ad:bc:0a:46:61:f3:a3:7f:d6:5d:88:14:
fb:3d:d2:9f:80:c3:68:b1:9a:45:4d:90:b0:4e:f2:f3:f0:70:
cc:79:a7:24:18:80:5b:a3:60:1e:f6:80:86:55:58:d3:75:50:
12:25:52:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:41:58 2025 by rpki-client