Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/tkPqIg--oqdTrkN-o9mi5gGeadE.roa
File: tkPqIg--oqdTrkN-o9mi5gGeadE.roa (raw, json)
Hash identifier: TBK6ItJuaJ+qmRdiEVdsGHU+thLR2743y5jHRzbTcqA=
Subject key identifier: B6:43:EA:22:0F:BE:A2:A7:53:AE:43:7E:A3:D9:A2:E6:01:9E:69:D1
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1DF5
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/tkPqIg--oqdTrkN-o9mi5gGeadE.roa
Signing time: Fri 01 Sep 2023 10:15:30 +0000
ROA not before: Fri 01 Sep 2023 10:15:30 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 49.159.80.0/20 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7669 (0x1df5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:15:30 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B643EA220FBEA2A753AE437EA3D9A2E6019E69D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:69:b7:30:7e:d2:17:e7:be:89:28:26:65:4e:
f6:20:d1:57:12:ff:d0:04:16:4b:42:37:75:ee:4c:
3c:cd:35:7b:d5:ea:04:99:20:b9:1d:68:1c:39:77:
e0:01:af:cc:f0:27:09:87:c5:bf:9b:f0:d1:2f:ec:
fc:c3:51:71:4d:00:9b:c1:70:60:75:7e:0b:02:37:
ef:3b:4a:e5:f0:59:eb:0c:63:73:b7:1e:ee:51:bb:
e4:94:55:47:c0:bb:e0:87:ed:bd:54:d8:63:ca:f5:
ee:3f:d5:29:0b:95:34:67:8d:aa:5f:16:e2:14:61:
c3:13:cf:32:e8:97:52:ff:86:96:3c:5b:72:83:1f:
61:2e:d9:c7:c0:20:86:7d:85:5d:ec:74:58:06:e5:
39:2c:42:ac:49:59:83:6c:ac:57:72:80:e1:c1:4f:
21:4e:ad:e7:cb:12:44:ea:43:7e:b5:a3:f5:80:fd:
d8:9d:8b:99:a4:1c:cf:57:e8:d6:74:82:9b:d3:55:
1d:8d:1b:ad:78:17:76:40:40:dd:92:98:52:2f:a2:
60:94:63:39:40:80:1a:d9:86:dd:7f:4a:b3:b1:e5:
fc:27:50:31:3f:a9:47:2e:da:d1:5f:98:c3:21:bf:
82:e8:91:84:b2:ee:cb:d0:45:9f:ce:ca:82:98:90:
da:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:43:EA:22:0F:BE:A2:A7:53:AE:43:7E:A3:D9:A2:E6:01:9E:69:D1
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/tkPqIg--oqdTrkN-o9mi5gGeadE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.80.0/20
Signature Algorithm: sha256WithRSAEncryption
3c:88:7d:5f:76:79:e5:8c:68:8f:e7:a1:9e:8b:73:a0:68:ae:
12:58:cc:ea:9b:c7:87:a0:e4:1d:36:8a:79:0d:29:1c:02:29:
49:a8:9b:fd:0b:da:6d:4a:37:7a:95:8e:75:17:a8:13:8e:2d:
18:7d:d5:43:46:57:75:dc:89:46:98:9a:b7:09:a1:d3:df:a2:
8d:83:03:df:27:d2:c8:ff:ff:51:ea:31:20:e1:80:d9:e0:e5:
10:3c:f0:58:d1:8b:d2:79:d8:fe:27:d1:e9:ef:b6:45:63:9e:
c6:1d:94:60:71:69:1b:d2:30:73:8f:62:ef:5b:a2:01:81:23:
39:e1:9c:c7:fb:d0:2d:a4:0a:ee:f9:36:df:7f:ff:3c:09:31:
b2:82:aa:c7:7f:e8:f3:e3:3f:08:cc:19:95:42:69:05:13:a9:
24:a2:b2:95:ce:a8:3b:a7:d2:ec:8a:9e:31:61:80:d9:72:b2:
3b:f1:c8:4b:5d:0d:f0:f2:a2:15:98:b6:53:6f:f3:68:ef:65:
f2:5f:a2:ef:20:08:21:61:18:41:30:4f:4c:98:78:0e:c2:49:
a9:0e:ba:5d:9b:75:56:87:c4:b4:ec:83:54:1e:6b:dd:61:43:
92:a7:b3:a6:89:dc:6a:54:e1:7b:d4:d3:7d:08:be:da:72:b0:
09:66:47:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:45:45 2025 by rpki-client