Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hCw6UztGsjbJJETMynJnRb3e2us.roa
File: hCw6UztGsjbJJETMynJnRb3e2us.roa (raw, json)
Hash identifier: xlZRwwI/vdpzpO7fHBIMhpzEjRukUyQi5ogYgtKhKAo=
Subject key identifier: 84:2C:3A:53:3B:46:B2:36:C9:24:44:CC:CA:72:67:45:BD:DE:DA:EB
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hCw6UztGsjbJJETMynJnRb3e2us.roa
Signing time: Thu 15 Sep 2022 02:36:32 +0000
ROA not before: Thu 15 Sep 2022 02:36:32 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 119.77.132.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:32 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=842C3A533B46B236C92444CCCA726745BDDEDAEB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c1:31:1c:42:6a:47:0e:37:97:24:10:91:8b:
b0:6f:83:b5:f6:f2:59:88:e8:87:3a:a0:f5:37:3f:
ac:47:41:cc:a2:2d:a4:ec:37:87:ca:9c:10:6e:b8:
05:df:d7:96:a6:a5:30:a0:e7:86:b5:d3:90:d8:66:
aa:c8:c3:ba:48:9b:45:0e:1e:32:7e:25:0f:00:4d:
0c:e7:59:44:a8:be:14:ae:8e:d3:92:71:e1:70:b3:
c2:85:cd:30:f7:dc:bf:3e:ba:e6:37:65:e6:fd:b4:
55:c3:6c:47:71:72:a1:ff:eb:ba:fd:bd:fd:a2:27:
1a:88:8c:a3:4d:d4:c4:54:de:e9:94:87:2c:93:dc:
54:4a:bc:d0:d6:4b:d3:26:35:71:68:f1:da:cb:22:
3d:08:0c:45:f9:18:0e:3f:9c:58:2b:87:e0:fa:b5:
13:ab:ae:cf:81:d0:1c:9a:e7:00:a4:70:26:1d:e3:
ac:a6:88:06:b1:89:9f:cb:f3:22:23:22:f2:70:c7:
ee:49:6e:38:7e:3d:3a:da:67:df:cd:cc:5c:ec:95:
89:1c:d7:3b:2a:c5:f0:d9:f7:23:fe:d1:9a:1c:37:
cc:7e:51:89:0d:19:39:ed:e9:69:43:97:90:c5:0d:
e8:47:85:38:d0:0e:7b:64:8f:86:57:1d:05:ce:1b:
d7:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:2C:3A:53:3B:46:B2:36:C9:24:44:CC:CA:72:67:45:BD:DE:DA:EB
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hCw6UztGsjbJJETMynJnRb3e2us.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.77.132.0/22
Signature Algorithm: sha256WithRSAEncryption
32:11:e4:36:08:76:60:2d:c3:5b:b3:d0:ee:56:fb:9a:cb:3b:
1c:b0:49:7b:a3:df:95:f4:6c:92:47:f3:f4:01:38:52:57:bd:
1d:d4:0f:55:4d:20:93:ae:73:8c:3a:95:9d:91:89:7a:de:ac:
e1:54:0c:69:67:f1:78:c7:e9:85:41:70:7e:f7:4b:fa:8b:76:
c5:2e:c6:f4:e5:45:b8:42:0e:c3:72:00:ef:11:84:36:7e:e4:
4c:6d:9a:4e:3a:73:ec:b2:8e:1b:f6:60:9d:49:11:65:e7:5f:
8d:5b:01:92:2c:65:79:4c:e4:fd:b3:b4:30:29:db:c9:50:14:
38:16:9e:7c:38:14:6e:ed:a7:f1:f7:f9:7d:09:6c:f0:5d:76:
80:ea:16:e6:bb:e1:91:54:d2:c4:95:e7:cf:6a:6d:cf:e7:cf:
70:5b:cc:76:01:6f:c7:9a:8c:ee:5c:f6:6e:b0:33:9d:32:5f:
73:d5:35:c7:1d:17:45:f7:8b:4b:23:7d:d1:da:db:2a:52:c4:
c6:83:34:93:ee:41:8c:67:20:0c:6e:d6:e8:e9:7f:c6:ed:2b:
4b:e0:1a:b1:94:bd:f9:9e:3c:ca:7a:8d:5f:f1:86:88:a2:88:
7f:c3:e7:05:84:3f:e8:59:d9:d1:26:4a:63:55:88:a6:da:45:
e4:c8:61:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org