Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OU4L2OTlqB1GOXaIUa5rRpVeSJg.roa
File: OU4L2OTlqB1GOXaIUa5rRpVeSJg.roa (raw, json)
Hash identifier: WEYS1tzn5CCzBo6MfydX2hyz60ut9g5Yt7cO6XhGa9c=
Subject key identifier: 39:4E:0B:D8:E4:E5:A8:1D:46:39:76:88:51:AE:6B:46:95:5E:48:98
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 130D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OU4L2OTlqB1GOXaIUa5rRpVeSJg.roa
Signing time: Wed 29 Sep 2021 02:55:18 +0000
ROA not before: Wed 29 Sep 2021 02:55:18 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 123.0.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4877 (0x130d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:18 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=394E0BD8E4E5A81D4639768851AE6B46955E4898
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:a6:91:35:f9:6b:29:18:4b:6d:37:8c:f8:49:
53:08:8e:a3:28:aa:5c:e9:e6:52:8d:19:66:65:d5:
ce:80:d7:ed:64:5a:a7:36:72:b7:10:0a:3a:ed:64:
73:33:d7:df:5e:e3:e1:27:b5:5c:e2:07:5e:80:f8:
b2:3d:1e:3a:8d:bc:31:a9:fb:22:4e:da:36:0e:c5:
fd:fe:9d:63:57:cf:4a:09:40:86:b4:5c:80:df:d6:
68:20:c0:ee:34:cc:be:50:a2:f8:3a:28:5e:f8:ee:
7f:15:f7:97:99:03:ac:54:02:05:a1:e0:9d:e5:aa:
c9:f1:07:3e:19:17:4c:e8:9e:ed:1f:c7:f9:2d:2c:
28:08:50:7e:77:78:91:05:72:56:62:3e:09:ac:94:
12:08:bb:7f:1a:c5:8c:45:7a:98:b5:19:30:ae:e4:
7f:5e:b8:4c:29:00:ff:34:0f:04:13:82:51:a5:30:
7f:43:25:b1:09:43:74:cc:f4:49:04:44:db:21:66:
76:b1:8f:55:6f:33:17:fd:20:5e:d4:3d:1f:8a:db:
94:b0:c1:8f:ab:7f:a5:44:f7:52:05:5b:b3:af:a8:
be:e8:38:f6:53:e9:2e:8a:00:cc:51:83:28:dc:0a:
e2:09:ea:e3:be:63:af:b7:d4:13:8a:de:d7:cf:76:
52:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:4E:0B:D8:E4:E5:A8:1D:46:39:76:88:51:AE:6B:46:95:5E:48:98
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OU4L2OTlqB1GOXaIUa5rRpVeSJg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.0.46.0/24
Signature Algorithm: sha256WithRSAEncryption
55:eb:b8:e0:00:f2:c1:0e:f4:fa:cf:c1:27:62:3b:ee:56:87:
ed:99:90:a6:a8:4a:88:ee:d6:e3:ed:9c:9b:81:30:9c:9c:a0:
39:fb:d7:2f:48:c4:7d:ac:ba:f5:97:81:c8:8d:8a:53:8e:d0:
d0:a0:55:c5:08:60:f2:ab:3d:cb:e1:a7:be:59:6a:f4:94:58:
3b:a8:00:67:d9:0b:13:16:40:ca:c4:21:03:3f:d0:a8:2f:2a:
a8:67:d5:2b:5c:34:6f:94:74:be:cd:bc:16:f4:af:a5:2f:d8:
2e:88:b4:45:24:7c:bd:b5:0c:c7:98:9e:dc:e9:65:04:05:5c:
aa:93:89:8f:3c:a8:ad:0d:bc:47:e6:e9:c6:6d:5f:06:36:96:
89:bd:aa:b5:ac:c8:af:15:b4:8a:c6:46:44:43:38:d7:13:33:
4d:0a:74:0d:1f:28:18:4d:60:07:ef:ef:32:d9:1a:df:73:b1:
4a:d5:ca:80:7b:8d:d6:76:bf:57:80:dc:23:26:b6:05:f4:f6:
be:58:a8:d4:e2:7f:29:b0:1d:27:40:45:85:d4:38:b6:98:ed:
61:3c:a8:59:6c:eb:fd:8b:13:5f:45:e9:f6:88:b7:4f:34:89:
e6:2b:fc:07:41:93:52:69:76:d3:d1:7f:27:ca:51:38:50:ba:
88:17:c7:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:36 2023 by rpki-client on console-ams.rpki-client.org