Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/r67DSfxJAiJMRsjIkmI2BX_xLeM.roa
File: r67DSfxJAiJMRsjIkmI2BX_xLeM.roa (raw, json)
Hash identifier: sZDp/QREv0DoyJiR6bUCT2HcrZ2rHYMt4OfhPNK14Kk=
Subject key identifier: AF:AE:C3:49:FC:49:02:22:4C:46:C8:C8:92:62:36:05:7F:F1:2D:E3
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1EBD
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/r67DSfxJAiJMRsjIkmI2BX_xLeM.roa
Signing time: Fri 01 Sep 2023 10:16:24 +0000
ROA not before: Fri 01 Sep 2023 10:16:24 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4662
IP address blocks: 122.100.64.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7869 (0x1ebd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:16:24 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=AFAEC349FC4902224C46C8C8926236057FF12DE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b4:e1:25:62:98:b7:51:75:46:d3:66:6f:ee:
79:4a:fb:dd:59:86:7e:16:0e:65:dc:0b:f7:4e:76:
42:e8:49:82:cf:92:3c:d3:21:18:80:84:a3:70:e5:
35:22:2a:53:9b:aa:2a:c1:98:6d:65:0f:32:3d:a2:
ab:52:92:1a:00:82:7f:23:3f:67:76:d5:e5:9d:99:
8d:1c:d3:32:a5:bd:10:e3:b8:d0:05:a4:c5:fb:ef:
c6:13:74:9a:df:f9:f8:3c:9a:5e:9b:a1:23:24:2d:
cc:5e:d5:ea:1c:80:b5:a8:ce:6f:37:d0:e3:33:f1:
0b:ae:cf:bb:e4:a1:68:18:b8:82:fb:95:41:11:88:
76:fb:9f:8e:57:09:91:c6:93:af:c0:17:91:76:d4:
70:48:6c:6b:fa:cd:dd:b9:2c:82:ea:02:80:80:40:
0e:3a:d1:a7:ba:7f:c3:1d:2a:fd:cc:5c:f2:75:ac:
f2:9b:a0:eb:45:8d:05:78:2f:6d:43:da:8a:66:cf:
51:f8:41:d2:20:f7:bb:fe:fa:04:0a:b5:2f:7c:2e:
40:59:f9:86:72:0c:a7:ad:51:14:aa:b3:56:ec:89:
98:3a:a2:fe:9c:9f:98:a3:8e:95:98:e9:f9:82:d1:
e5:15:36:18:c4:09:01:d7:bc:3f:0a:b7:cc:b2:b7:
84:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:AE:C3:49:FC:49:02:22:4C:46:C8:C8:92:62:36:05:7F:F1:2D:E3
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/r67DSfxJAiJMRsjIkmI2BX_xLeM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.100.64.0/18
Signature Algorithm: sha256WithRSAEncryption
3d:f9:c1:7b:42:d0:14:43:48:e7:af:59:64:cd:4b:84:08:18:
bd:75:72:c9:00:a1:4f:a5:50:aa:76:6a:52:5d:37:7b:ea:0d:
65:4f:c3:a7:32:78:73:17:65:a1:c5:c9:aa:82:3a:49:76:14:
b2:d9:01:72:08:31:60:4b:b1:05:35:09:5f:91:e9:e9:93:0b:
fd:3a:41:74:43:2a:1d:66:86:0d:2b:2a:a1:e4:59:1a:5a:90:
b1:e7:a6:4e:5c:d9:fb:97:4e:e2:fc:ab:ec:cb:81:48:fa:c1:
55:d3:86:d7:ea:50:60:04:e5:b3:41:e4:10:ec:71:25:6c:62:
41:25:9c:28:d1:1f:bc:b0:b6:95:b0:b8:6d:bf:1b:38:eb:81:
8a:85:0c:cb:5a:53:96:a1:20:87:15:0f:60:03:10:87:6a:0f:
8e:49:77:0e:8d:13:a3:e1:22:d8:92:5e:5a:43:21:19:eb:37:
59:f2:9c:5c:5c:97:a4:44:9d:f1:8f:57:22:35:38:2c:c5:60:
15:ba:51:17:07:23:be:a6:e3:f8:65:9f:a9:6d:89:ea:c6:ff:
88:b0:e2:d2:5a:43:75:97:b7:9c:b4:26:7e:e3:1b:5b:97:9b:
a1:16:01:6f:4f:59:11:25:33:0c:c7:23:ae:38:14:dd:d2:70:
87:b4:4c:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:02:02 2025 by rpki-client