Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/suRkLGxTKd0w-sMRBJ4ZAWFMfeY.roa
File: suRkLGxTKd0w-sMRBJ4ZAWFMfeY.roa (raw, json)
Hash identifier: VEfh9EDE1GCp2LsKF3JmoHeS6lLbtDRQAi78W4YI12k=
Subject key identifier: B2:E4:64:2C:6C:53:29:DD:30:FA:C3:11:04:9E:19:01:61:4C:7D:E6
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 19AA
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/suRkLGxTKd0w-sMRBJ4ZAWFMfeY.roa
Signing time: Sat 22 Oct 2022 06:07:39 +0000
ROA not before: Sat 22 Oct 2022 06:07:39 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 49.159.176.0/20 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6570 (0x19aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:07:39 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B2E4642C6C5329DD30FAC311049E1901614C7DE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f9:8e:2f:83:83:6b:33:32:26:85:ad:c2:d5:
2a:0e:a5:52:78:61:bc:3d:69:88:4f:03:da:c2:5b:
2f:2b:1b:40:2a:1f:92:fd:69:31:97:cf:cc:40:b7:
0b:4a:58:fe:ab:62:82:d6:7d:16:55:46:3c:cd:ba:
4d:72:3b:04:34:67:84:49:0d:66:b8:d6:68:b9:f2:
01:32:5a:38:de:dd:d8:15:b3:fd:78:49:07:ae:99:
55:d3:d1:d7:de:73:ae:8e:c4:98:42:88:e7:5c:dc:
7d:12:1d:53:77:69:71:cb:b5:a4:bd:d4:0f:a7:21:
b9:03:8f:91:48:af:0c:3f:2f:90:a9:63:4c:50:dc:
32:a0:8a:d3:50:52:e5:27:c0:57:c8:b9:41:94:e9:
15:99:e6:a6:0f:b1:6a:63:b5:d5:9f:6f:af:31:3c:
92:79:9b:0a:00:1d:74:05:68:3c:79:46:68:26:36:
37:39:c0:c6:38:ec:11:63:4d:73:f0:de:e6:cd:ec:
eb:16:3f:a2:8b:60:94:5f:d2:ef:1a:69:a0:6d:bd:
bb:21:21:e0:d0:18:8d:66:98:61:d4:90:e5:5a:ec:
03:06:7a:93:60:bb:71:b5:74:04:c2:e3:2f:f6:99:
bd:a2:23:49:db:cd:1b:9e:86:ec:a6:99:32:e8:a8:
80:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:E4:64:2C:6C:53:29:DD:30:FA:C3:11:04:9E:19:01:61:4C:7D:E6
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/suRkLGxTKd0w-sMRBJ4ZAWFMfeY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.176.0/20
Signature Algorithm: sha256WithRSAEncryption
77:6c:1b:42:d3:0c:29:d9:73:52:b8:42:e3:0d:2f:e0:24:37:
8e:ef:aa:8d:19:70:25:28:39:0e:ba:92:fd:8a:a5:1e:cd:03:
f0:7b:dc:2e:c8:11:8b:b7:bc:72:33:c6:00:dc:b5:28:7c:96:
da:2b:88:bf:b6:30:ef:8f:fd:d1:ad:b3:6d:13:a5:06:5e:56:
ea:39:5a:d8:0f:a6:a9:ec:da:5f:d8:18:6c:60:18:33:bd:50:
77:6f:2c:44:3d:30:39:d3:db:13:a8:6f:e5:9a:81:15:5e:c5:
f6:34:31:0d:d0:20:61:e0:7d:7d:1f:80:7d:43:2c:4b:cb:3d:
b6:37:04:2d:67:f3:02:06:eb:62:5e:b1:2f:2f:92:2d:ec:67:
64:fb:eb:6f:d0:f9:68:16:06:95:51:48:4f:e7:b3:20:05:0f:
01:4e:d8:39:42:59:5e:5b:5a:25:91:4e:6d:9f:45:cf:43:6d:
11:5c:f4:12:a8:13:b9:f9:6c:35:40:53:6d:3c:75:c7:e1:cf:
be:a0:f7:9c:71:d7:2c:35:6d:ca:9f:fe:fc:55:f6:97:b0:b1:
7e:db:65:13:1a:a0:7d:b0:b7:34:63:1f:6f:2f:bf:03:f4:c7:
c0:d0:52:e5:9e:65:b8:4c:c8:63:94:b1:28:0e:71:0e:a5:2c:
67:0b:e4:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:55:42 2025 by rpki-client