Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dFnL9c0K-geF7fct3qh0334wtHw.roa
File: dFnL9c0K-geF7fct3qh0334wtHw.roa (raw, json)
Hash identifier: vN8dsWcbHt2OhJA5igAUnvkcMePLQHQ2ADF/T9ONRiw=
Subject key identifier: 74:59:CB:F5:CD:0A:FA:07:85:ED:F7:2D:DE:A8:74:DF:7E:30:B4:7C
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0AA0
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dFnL9c0K-geF7fct3qh0334wtHw.roa
Signing time: Tue 29 Sep 2020 10:07:25 +0000
ROA not before: Tue 29 Sep 2020 10:07:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 122.254.48.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2720 (0xaa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:07:25 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7459CBF5CD0AFA0785EDF72DDEA874DF7E30B47C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f9:b8:bb:55:cc:e5:6d:4b:85:9a:21:78:bf:
9b:2e:c5:86:a9:15:ed:ec:7b:d1:18:17:53:5b:18:
cc:db:2f:c0:b3:82:1b:a4:4d:f2:11:d4:8c:0a:73:
fe:69:d4:a7:42:a9:53:50:df:c9:ac:80:74:e5:e4:
0c:ca:ee:f3:64:62:f7:cf:17:33:9b:0c:3a:06:2d:
93:82:f9:70:91:40:6a:3e:25:ff:bc:a2:a1:d1:50:
03:8e:53:44:3c:d5:da:88:04:ed:ee:4e:fa:89:f0:
a9:42:c9:63:bf:be:8b:44:f1:f5:81:2b:a1:04:cb:
e7:d4:a3:0e:cc:f2:81:bf:ef:86:16:7f:55:e8:1d:
2c:86:b6:bb:db:6b:eb:02:a1:62:18:c3:58:ca:2b:
09:64:f4:df:32:13:b9:c3:e2:0f:95:7f:e7:5e:0f:
04:c0:a9:2e:21:48:4e:22:28:e9:d9:8e:89:b7:3c:
10:8a:ac:c4:11:8b:d0:65:35:db:c2:ed:9f:54:05:
30:f7:f9:91:17:51:68:00:6e:f5:cb:ff:9e:04:f0:
5f:cc:ec:1e:cf:0b:ce:2e:26:1f:b8:79:e3:e6:67:
26:ef:f1:f7:5e:23:77:61:c6:5a:86:13:3d:00:80:
e5:61:1b:0c:23:c1:7c:a5:b3:5d:3b:16:96:37:0c:
c2:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:59:CB:F5:CD:0A:FA:07:85:ED:F7:2D:DE:A8:74:DF:7E:30:B4:7C
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dFnL9c0K-geF7fct3qh0334wtHw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.254.48.0/21
Signature Algorithm: sha256WithRSAEncryption
13:03:41:cb:cb:f5:62:40:8a:6d:c3:11:e2:08:31:d9:d9:bd:
a5:ec:7d:2b:c8:5f:f3:7b:0f:85:77:78:de:c5:6e:9e:b3:90:
d9:3b:b9:be:3b:4e:b3:d2:5e:c8:fc:a0:d9:ad:94:16:2f:0c:
85:f9:ce:4d:67:6e:34:17:93:6b:5d:87:af:0f:f1:a6:51:49:
3e:32:93:8d:71:c2:3e:20:cc:87:10:ff:f3:a3:03:b1:6c:50:
17:c5:76:95:7b:35:d1:0a:df:09:3f:a4:7d:03:6c:9b:93:74:
e8:b9:76:53:79:ea:83:6e:2a:de:f7:fe:58:fa:20:6a:13:3f:
0d:80:d1:de:e8:ff:b9:5c:2f:9f:42:d4:ae:ba:84:6c:7a:59:
6f:d9:0a:f4:ae:d6:e7:44:7d:4b:60:b9:30:36:72:0e:df:0b:
ae:d3:ac:36:cf:f4:65:db:ed:38:3c:cc:16:4f:b3:02:ef:22:
99:e9:37:84:b4:ec:ee:9b:c9:56:a6:93:7b:59:7a:41:02:b7:
e5:58:bc:08:fb:5b:5f:74:a7:c7:90:dd:d4:2c:04:3d:a2:ff:
36:8b:9c:d9:35:20:66:6d:d2:c3:fc:2d:e2:ba:6d:90:20:85:
8c:9b:7a:e5:d4:25:b7:dc:05:9b:c4:7e:5f:1e:9c:aa:68:d7:
6a:b8:aa:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:59:20 2025 by rpki-client