Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oSOEh0YiAXBHzQ05-7zBunbunG8.roa
File: oSOEh0YiAXBHzQ05-7zBunbunG8.roa (raw, json)
Hash identifier: C8XANvQR1H+sBhlepHnNkggV7uWinq1J0vbaiWPHixw=
Subject key identifier: A1:23:84:87:46:22:01:70:47:CD:0D:39:FB:BC:C1:BA:76:EE:9C:6F
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 173E
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oSOEh0YiAXBHzQ05-7zBunbunG8.roa
Signing time: Sat 22 Oct 2022 05:33:12 +0000
ROA not before: Sat 22 Oct 2022 05:33:12 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 122.254.36.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5950 (0x173e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 05:33:12 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A12384874622017047CD0D39FBBCC1BA76EE9C6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:26:1e:aa:fc:e5:c8:c9:a5:97:58:23:62:ee:
a0:be:28:9d:0f:1c:fd:78:ff:8c:26:5e:10:9a:21:
93:6b:b2:32:ac:b7:0a:11:71:63:49:fd:21:b8:7d:
03:86:50:17:2e:57:23:1e:eb:09:86:8b:40:ec:f4:
2b:d2:e3:11:c1:db:07:ff:d1:5f:39:51:a2:58:7f:
03:df:89:7f:64:cf:04:5f:66:ef:bf:8c:b4:c1:87:
ee:d6:5d:21:fa:4c:6e:17:df:5b:2a:fa:9f:dd:e9:
ab:1f:0d:f8:69:2c:ea:d8:b1:65:f6:8b:0d:6b:3d:
bf:44:16:51:0f:e4:14:bf:8c:32:a4:e7:a5:37:37:
0c:5d:f3:a7:00:92:47:ea:f5:70:95:69:6b:f7:76:
98:59:5b:81:aa:54:bd:55:f0:48:50:03:b2:8c:5c:
09:be:cb:cb:c4:0a:af:5c:b6:cd:f1:94:9d:3f:15:
f8:97:d3:79:29:dc:95:91:fd:45:bb:b1:a8:da:b7:
cc:20:f8:53:03:ec:3e:b2:c5:48:ae:12:b7:6f:9b:
59:3b:57:92:18:9d:91:14:a4:2c:1c:78:cd:2a:f2:
cc:60:7b:38:9a:22:91:79:74:a3:f2:52:44:58:85:
e4:96:d5:5e:a5:7c:78:16:9f:39:2f:f1:6f:e8:b2:
1c:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:23:84:87:46:22:01:70:47:CD:0D:39:FB:BC:C1:BA:76:EE:9C:6F
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oSOEh0YiAXBHzQ05-7zBunbunG8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.254.36.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:ea:fc:80:cf:fe:e2:c2:6f:19:23:f0:f0:25:25:82:11:63:
f0:0f:44:a6:64:c5:9d:d3:4f:e1:7a:20:13:f2:e1:85:90:6b:
bf:43:11:b3:19:b6:34:cb:07:fa:15:90:5d:2e:ca:f5:21:39:
94:7a:fe:ea:21:11:31:8c:e0:35:68:8b:83:42:b8:b0:3d:ae:
00:28:78:7a:ca:66:e0:b3:55:3b:87:83:b7:cf:2f:bf:ec:6a:
7a:77:6f:80:0e:c2:e1:67:6a:04:0d:0e:d8:c8:d2:43:5f:a5:
48:6b:47:a9:f7:04:1d:4f:14:19:ec:f3:08:4f:e6:f9:78:b9:
15:84:06:b4:43:01:50:7f:bf:11:38:25:11:e1:4e:6a:2b:99:
a0:9e:6d:7f:e2:2b:3b:29:fa:73:d1:43:1d:f6:f3:4c:84:bf:
b0:e5:3b:fa:b6:d5:46:f3:fc:c3:c4:07:97:88:c2:a3:92:b2:
82:2b:da:8b:4b:56:56:1a:d7:ef:6c:3d:bb:ea:51:ab:29:de:
80:e0:e9:0b:e5:9f:a6:1b:a7:56:dc:9c:e9:0c:a1:a4:7e:9d:
14:10:58:a2:b7:8f:d0:b4:bc:dd:08:b9:10:06:cc:86:a8:9d:
3d:1b:f4:5b:2d:8d:96:cd:2b:87:8d:b3:5d:e5:20:e3:0c:55:
9c:71:d0:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org