Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/mJs063k0JwMVUw1xDJlZMTQmDYM.roa
File: mJs063k0JwMVUw1xDJlZMTQmDYM.roa (raw, json)
Hash identifier: YLAAEqixABNwOi/59fosNkj6k0z6oPnvG2QaPAuvkiA=
Subject key identifier: 98:9B:34:EB:79:34:27:03:15:53:0D:71:0C:99:59:31:34:26:0D:83
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 18E9
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/mJs063k0JwMVUw1xDJlZMTQmDYM.roa
Signing time: Sat 22 Oct 2022 06:05:52 +0000
ROA not before: Sat 22 Oct 2022 06:05:52 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 123.0.48.0/20 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6377 (0x18e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:05:52 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=989B34EB7934270315530D710C99593134260D83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3b:0d:bb:1a:30:93:0f:9e:40:37:ad:f3:94:
7f:01:27:9a:fb:91:93:cf:2b:5d:a2:d0:47:ab:cd:
46:bf:9e:91:eb:ae:75:86:f6:c8:32:81:9d:f7:6d:
48:02:df:53:d1:21:51:a4:12:8f:c0:50:96:a1:41:
94:73:64:9b:35:ec:dd:1b:c7:0c:ab:40:30:6c:b6:
ce:63:e2:2e:a2:83:a3:3e:2d:90:a9:52:b2:42:54:
be:f0:e4:cc:80:8c:02:7a:30:18:3d:3b:76:ff:e3:
36:ce:2a:71:a6:ce:3f:6f:5b:16:b7:a8:5f:4d:8b:
96:63:c3:a2:98:d6:b6:f5:71:e5:a2:f3:0e:10:56:
ab:4a:d1:ac:89:34:58:37:4a:6f:01:9a:3d:63:51:
f0:4e:9b:74:ac:29:c5:b7:17:27:b6:d4:c0:24:56:
ee:1e:db:1e:e8:f8:d7:d1:15:46:65:9c:b0:e8:8e:
0c:b3:ab:e2:04:8d:4d:f2:92:f8:a7:d2:52:5c:34:
05:a1:ec:1b:61:0b:81:4a:2f:8a:a7:81:94:23:c8:
ee:eb:00:80:16:97:96:d7:86:10:28:dd:a5:4d:52:
a7:29:5e:63:c4:23:18:ff:5b:8e:0e:d4:3a:33:b5:
0b:b8:8c:23:ed:0d:e6:98:f0:da:f2:9d:dc:18:8b:
23:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:9B:34:EB:79:34:27:03:15:53:0D:71:0C:99:59:31:34:26:0D:83
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/mJs063k0JwMVUw1xDJlZMTQmDYM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.0.48.0/20
Signature Algorithm: sha256WithRSAEncryption
90:79:fa:59:2d:b9:08:a4:fa:8b:fd:08:a8:cf:c4:1b:f8:cc:
f3:6a:7e:85:1c:37:a1:7f:0d:fb:ea:b8:90:6b:b0:51:18:15:
93:d1:2d:93:57:95:83:ba:02:7f:be:99:dd:b6:e9:24:5a:14:
2e:92:f5:e5:15:42:d2:81:73:97:05:db:43:89:0d:49:59:21:
19:ba:51:21:c0:1e:6b:f0:64:6d:02:ef:a2:10:29:a6:b7:72:
9a:e1:b4:7e:c5:d9:c7:d1:aa:8d:76:db:1f:b3:ce:eb:85:28:
b6:d5:53:41:5c:1b:40:c5:dd:c5:70:77:eb:ff:71:55:9c:ee:
a7:b6:3c:96:0e:1b:14:60:91:e7:e9:7b:70:73:19:d1:1f:e0:
ed:4c:53:2a:74:20:70:0a:37:14:ef:a4:09:1c:1e:3b:97:3c:
12:59:a7:cb:fc:de:f7:13:20:f5:bc:b0:72:a1:c1:b7:e9:05:
04:df:ef:51:e3:5a:c2:e9:f4:87:51:38:0b:e0:3b:20:9e:07:
62:ae:4e:74:56:12:79:24:b8:20:26:d2:6c:21:aa:74:3e:3f:
85:00:86:d4:14:c3:a4:ea:bd:bd:05:e7:7f:27:3e:5b:81:76:
30:db:76:3c:b5:4c:2c:b8:65:a5:d5:a2:3d:dd:39:23:64:0a:
74:0c:bb:76
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICGOkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjEwMjIw
NjA1NTJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDk4OUIzNEVCNzkzNDI3
MDMxNTUzMEQ3MTBDOTk1OTMxMzQyNjBEODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCsOw27GjCTD55AN63zlH8BJ5r7kZPPK12i0EerzUa/npHrrnWG
9sgygZ33bUgC31PRIVGkEo/AUJahQZRzZJs17N0bxwyrQDBsts5j4i6ig6M+LZCp
UrJCVL7w5MyAjAJ6MBg9O3b/4zbOKnGmzj9vWxa3qF9Ni5Zjw6KY1rb1ceWi8w4Q
VqtK0ayJNFg3Sm8Bmj1jUfBOm3SsKcW3Fye21MAkVu4e2x7o+NfRFUZlnLDojgyz
q+IEjU3ykvin0lJcNAWh7BthC4FKL4qngZQjyO7rAIAWl5bXhhAo3aVNUqcpXmPE
Ixj/W44O1DoztQu4jCPtDeaY8NryndwYiyPzAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUmJs063k0JwMVUw1xDJlZMTQmDYMwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL21KczA2M2swSndNVlV3MXhE
SmxaTVRRbURZTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7
ADAwDQYJKoZIhvcNAQELBQADggEBAJB5+lktuQik+ov9CKjPxBv4zPNqfoUcN6F/
DfvquJBrsFEYFZPRLZNXlYO6An++md226SRaFC6S9eUVQtKBc5cF20OJDUlZIRm6
USHAHmvwZG0C76IQKaa3cprhtH7F2cfRqo122x+zzuuFKLbVU0FcG0DF3cVwd+v/
cVWc7qe2PJYOGxRgkefpe3BzGdEf4O1MUyp0IHAKNxTvpAkcHjuXPBJZp8v83vcT
IPW8sHKhwbfpBQTf71HjWsLp9IdROAvgOyCeB2KuTnRWEnkkuCAm0mwhqnQ+P4UA
htQUw6Tqvb0F538nPluBdjDbdjy1TCy4ZaXVoj3dOSNkCnQMu3Y=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:42:18 2025 by rpki-client