Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/u0NWD1wFk7c7wOKi0dYeFcSCSNQ.roa
File: u0NWD1wFk7c7wOKi0dYeFcSCSNQ.roa (raw, json)
Hash identifier: 8im9IhaSj+phVvAN6oOswP+pCvTUmcnd2DlOUKRJIL0=
Subject key identifier: BB:43:56:0F:5C:05:93:B7:3B:C0:E2:A2:D1:D6:1E:15:C4:82:48:D4
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/u0NWD1wFk7c7wOKi0dYeFcSCSNQ.roa
Signing time: Thu 15 Sep 2022 02:36:35 +0000
ROA not before: Thu 15 Sep 2022 02:36:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.158.140.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:35 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BB43560F5C0593B73BC0E2A2D1D61E15C48248D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:1c:12:2b:44:a0:8f:fa:1c:0f:8d:c9:e7:fb:
3e:85:77:83:87:1a:d3:96:f8:d6:fb:6e:1a:8d:f6:
46:e7:5c:eb:05:26:f0:be:74:c2:0f:f2:64:8d:a9:
ba:3f:36:58:43:b3:9a:0a:e6:22:a3:1c:9a:06:ed:
e5:ad:a5:11:5d:c9:c0:94:6a:6d:4f:f6:5d:b2:8b:
3f:28:a1:d4:e8:b8:ae:ca:92:57:56:f1:d0:43:0e:
81:ae:4f:90:fc:7a:fd:bd:52:6b:06:40:eb:27:c0:
a5:74:da:09:49:75:a8:fe:34:2f:45:a3:4c:0c:d8:
3e:85:74:33:aa:85:c0:b1:d4:74:60:ad:7f:80:2d:
a7:44:5e:2d:e1:6c:2a:6f:4f:e7:f9:3c:dc:3b:14:
bc:91:ae:a0:7b:33:79:f1:36:35:dc:79:70:40:f8:
53:53:cf:c2:fc:2f:e3:73:73:18:7a:d8:73:13:2f:
2f:8b:e2:f7:f2:4b:5c:18:9f:f0:57:58:a3:8a:7c:
61:37:69:b7:a1:db:26:e0:7f:3e:e6:ae:86:b5:cc:
4f:0f:71:eb:20:9e:e5:a5:b0:bc:94:d8:95:66:d8:
16:80:02:45:0a:21:88:0e:2d:cb:01:ec:0a:5a:9e:
db:01:e5:95:a5:84:c1:51:d5:b3:e9:45:28:2f:c5:
ab:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:43:56:0F:5C:05:93:B7:3B:C0:E2:A2:D1:D6:1E:15:C4:82:48:D4
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/u0NWD1wFk7c7wOKi0dYeFcSCSNQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.140.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:35:59:c7:3a:8e:de:ef:92:2b:cc:11:88:7a:7d:cf:2e:3b:
77:ba:84:07:43:91:48:bb:ee:f5:6f:55:6e:23:b2:d2:73:b4:
28:96:d1:14:14:8c:bc:60:80:42:af:4e:03:44:47:7f:99:6d:
96:51:0d:a1:d6:e7:f7:41:9d:ae:8f:00:4f:2e:98:ca:a1:6a:
7f:72:1e:cb:68:01:3a:d3:12:f8:6f:a8:96:27:3a:00:fa:90:
11:a6:19:37:59:83:9c:03:ce:8b:2c:2a:3b:b3:57:60:22:4b:
de:7d:60:9c:b4:f6:bd:30:d9:a3:64:bc:38:2d:01:1e:da:1f:
33:d1:7e:27:40:44:e0:06:54:fe:96:a7:41:5a:70:00:f2:18:
28:2e:80:ce:01:53:88:a8:4c:4a:8a:5e:53:c2:92:0a:4d:6f:
7e:c5:f6:dd:78:5c:37:27:60:56:fb:47:12:40:f1:c7:22:e5:
2c:e9:13:ad:bc:39:23:b5:55:cb:80:a6:3c:d8:9e:d1:15:9f:
54:40:4a:d5:17:2a:b9:62:0c:91:65:be:2e:39:32:c8:d4:ca:
67:df:67:a9:f5:62:67:49:e2:6b:39:70:d5:38:de:a3:ce:7d:
65:f4:0d:37:e8:72:9a:ec:12:be:be:2d:8f:2f:18:8a:81:8c:
b5:b8:6f:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:50:13 2025 by rpki-client