Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/cUlf8WYuWol4fIkXFIQd6TB2MFY.roa
File: cUlf8WYuWol4fIkXFIQd6TB2MFY.roa (raw, json)
Hash identifier: +yM/rs4zrFdhPlg88jtNSzcb3Kw3nzSBFSB3f77JZto=
Subject key identifier: 71:49:5F:F1:66:2E:5A:89:78:7C:89:17:14:84:1D:E9:30:76:30:56
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 156C
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/cUlf8WYuWol4fIkXFIQd6TB2MFY.roa
Signing time: Fri 21 Oct 2022 09:47:56 +0000
ROA not before: Fri 21 Oct 2022 09:47:56 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 49.158.192.0/20 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5484 (0x156c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 21 09:47:56 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=71495FF1662E5A89787C891714841DE930763056
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ca:7f:f6:40:93:bc:75:49:c6:d7:c9:bc:63:
35:5b:4c:f5:e2:59:69:4f:ea:19:f8:9f:79:40:f9:
0d:8d:5e:16:b8:79:91:6c:02:76:51:27:6e:9c:7a:
d7:fd:c5:85:1a:b3:ea:8d:f4:95:74:c7:1a:03:cc:
e1:45:83:50:e7:30:6e:4e:75:81:50:9c:01:93:4d:
a9:7d:e1:c7:f6:0f:59:ca:f2:19:41:a9:d7:35:fe:
dd:df:bf:a9:d1:00:6e:a8:31:ac:bc:3b:23:19:ba:
85:95:f5:fb:fc:57:40:7f:5c:95:68:0c:57:da:23:
34:37:2a:c3:b3:65:06:1b:7c:81:87:83:cb:e0:d5:
f0:1e:05:e0:6c:cf:32:65:42:08:e0:8e:1f:14:72:
19:c6:68:f6:0a:10:2b:41:fa:fb:a0:66:5d:66:ab:
72:8a:7d:74:80:bc:85:31:2a:9c:bd:a5:3f:62:ce:
18:d5:53:ed:96:94:bb:3f:ea:f7:4f:fa:23:60:f9:
20:7f:cd:e5:04:5e:70:40:b5:03:fe:7c:3c:5b:fb:
31:47:b9:b7:93:7e:d5:4d:8e:0f:ac:0c:db:01:b7:
02:70:ad:84:eb:83:98:96:55:53:ff:64:96:45:d2:
4e:67:77:1d:b0:05:0d:e7:e4:a5:65:e8:c4:1b:97:
36:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:49:5F:F1:66:2E:5A:89:78:7C:89:17:14:84:1D:E9:30:76:30:56
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/cUlf8WYuWol4fIkXFIQd6TB2MFY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.192.0/20
Signature Algorithm: sha256WithRSAEncryption
81:14:e9:92:ba:0a:d8:da:1d:06:75:f6:aa:34:85:11:13:a5:
23:a0:c0:7a:fc:e4:b4:f5:3c:b9:55:83:b0:24:d6:9c:a3:4b:
59:d6:e9:a0:78:3d:e3:27:46:cd:4c:5f:21:2b:0e:be:4b:78:
5f:39:74:61:7a:0f:90:51:46:30:bc:b1:af:8e:d1:34:d1:69:
fa:b3:e8:0b:53:80:8f:6a:4c:cc:6b:ae:f3:3f:a8:3e:d1:4e:
ed:16:bb:dd:6e:c4:e8:cb:05:cb:fa:c8:da:34:31:6c:0f:45:
87:92:88:d7:89:19:66:e2:01:c8:8e:d2:94:55:a1:61:44:a4:
05:30:9b:b3:59:e5:dc:b0:0a:1d:c1:37:45:1e:04:7d:3b:ee:
b8:8d:ce:0d:9b:cb:97:16:6f:9b:6e:2b:47:b2:25:ff:be:fa:
9b:75:98:bc:49:42:88:e8:c6:33:fc:1d:a3:30:e6:46:1a:63:
a1:f3:6a:5f:b5:67:e8:0f:0c:40:fd:6d:d6:94:e6:d4:fc:18:
80:21:82:e5:0f:66:2d:29:1a:5b:6c:e0:5b:3b:17:9b:75:cb:
3d:96:c2:fb:c3:54:90:8b:9a:b4:4f:6f:21:2b:98:66:9d:ac:
f3:2f:3d:2c:fa:04:ed:ba:f3:94:c6:8a:4f:7e:db:56:bd:dc:
1b:74:8a:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:56:14 2025 by rpki-client