Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/sbl7Kx3ha9cxn_-VCVoA3A9qGlo.roa
File: sbl7Kx3ha9cxn_-VCVoA3A9qGlo.roa (raw, json)
Hash identifier: rqWN18aGu4eGa3/B5huElp9a/DH2jK9+hU4xE3xl7FM=
Subject key identifier: B1:B9:7B:2B:1D:E1:6B:D7:31:9F:FF:95:09:5A:00:DC:0F:6A:1A:5A
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1D5A
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/sbl7Kx3ha9cxn_-VCVoA3A9qGlo.roa
Signing time: Fri 01 Sep 2023 10:14:42 +0000
ROA not before: Fri 01 Sep 2023 10:14:42 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 49.158.44.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7514 (0x1d5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:14:42 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B1B97B2B1DE16BD7319FFF95095A00DC0F6A1A5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:08:0f:09:4d:69:42:72:05:67:2b:33:f3:ca:
7a:2e:d6:7a:f3:ac:46:f9:d6:11:ce:5a:10:2d:df:
32:c7:b5:35:33:0b:c6:f7:3d:90:7d:ac:e7:d7:26:
1d:c4:85:82:89:2b:b1:a8:68:b4:72:3b:ec:b2:15:
3d:32:cb:cc:6a:8a:61:1c:6f:d8:eb:dd:53:0a:6a:
08:4e:7a:ab:0a:8c:a0:3e:90:f7:a6:de:64:9d:90:
12:73:6e:8b:18:71:d4:d8:d9:f9:22:58:72:36:91:
6b:cd:c1:73:0a:0e:51:1d:c5:58:86:75:dd:67:57:
5a:ca:f9:d1:f7:9c:ed:84:cc:68:46:d0:8f:93:d8:
55:0f:7f:c0:4b:c7:31:77:ed:c4:e4:ca:1e:62:1c:
85:41:cd:9f:dd:5f:38:dd:83:b8:62:a2:e3:2d:39:
ea:c5:ba:69:fa:c1:6d:0f:8f:7e:26:7b:f0:11:3e:
72:61:ba:97:d1:e5:b8:8f:f9:97:e0:07:4b:1b:ad:
da:08:c5:4f:9b:7f:d5:81:4d:16:24:7b:e2:e4:1d:
e9:f1:7d:e6:94:ba:63:60:36:2d:30:56:28:01:04:
de:61:b2:d3:49:ff:f5:f3:18:66:ce:a2:54:ef:6b:
df:ec:b2:25:5b:de:81:0e:e5:90:99:c1:7f:69:d2:
d8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:B9:7B:2B:1D:E1:6B:D7:31:9F:FF:95:09:5A:00:DC:0F:6A:1A:5A
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/sbl7Kx3ha9cxn_-VCVoA3A9qGlo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.44.0/22
Signature Algorithm: sha256WithRSAEncryption
52:f0:6e:36:42:73:1d:17:95:5c:0f:03:15:b7:9a:ea:6d:70:
e3:34:42:80:e0:81:d4:6f:fb:50:72:73:ee:f5:b7:62:c5:2f:
9f:16:82:aa:97:c4:25:7b:6b:5a:7c:27:ac:0c:79:e1:dc:32:
15:24:c8:ea:8a:00:9b:15:4b:d1:ec:ff:e8:3e:43:24:37:27:
39:a8:40:9c:7a:2b:2f:92:f5:60:a2:d0:44:4c:c5:0a:33:d2:
17:04:f1:30:34:b2:5f:21:98:cd:14:c4:1f:d0:95:88:9f:cd:
2e:03:60:06:7e:0a:92:1a:36:d9:b2:87:e9:21:44:87:4c:af:
f8:29:d3:b7:e6:81:cd:30:e0:09:fc:21:64:66:c3:bc:43:05:
00:d4:27:33:6a:ca:a3:84:9a:2d:c5:e6:e1:40:be:b1:d2:19:
a5:12:40:a8:7d:21:2e:b5:47:57:80:68:17:53:44:46:9b:74:
dd:70:cf:f5:94:65:02:d3:ae:e4:ca:d9:9d:34:84:e7:b7:25:
d4:9a:c5:06:08:f9:7a:10:fa:c8:0a:c3:18:80:b5:f4:5f:9e:
cb:20:e6:96:b1:7f:3c:6a:06:43:c0:e5:2b:9b:70:95:5b:10:
c9:d3:a8:16:c6:57:da:5b:9b:c9:bd:e3:79:b2:7e:a4:c2:3e:
a1:c2:18:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:47:13 2025 by rpki-client