Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/wtoj1ww9HWQv0WJy0G7lN4C-fFo.roa
File: wtoj1ww9HWQv0WJy0G7lN4C-fFo.roa (raw, json)
Hash identifier: PLFl5WV/OTW2ilkUKRZ60EwUGttZX9VDcmdLc5GxRn4=
Subject key identifier: C2:DA:23:D7:0C:3D:1D:64:2F:D1:62:72:D0:6E:E5:37:80:BE:7C:5A
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1AE4
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/wtoj1ww9HWQv0WJy0G7lN4C-fFo.roa
Signing time: Thu 22 Dec 2022 10:16:56 +0000
ROA not before: Thu 22 Dec 2022 10:16:56 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 114.198.164.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6884 (0x1ae4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Dec 22 10:16:56 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C2DA23D70C3D1D642FD16272D06EE53780BE7C5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:08:c8:92:4b:0f:91:5a:1c:6b:06:df:b5:ba:
8a:31:cb:81:3f:32:1f:7e:c3:a0:27:d5:07:4e:53:
67:77:ef:fb:63:10:2b:19:10:96:4b:d1:fe:ac:ee:
fa:a4:79:eb:3e:31:b4:e3:01:51:59:c4:0d:21:90:
74:95:d8:8f:64:25:6d:06:04:e2:51:8e:97:c3:19:
b8:e3:38:aa:70:b1:3f:22:94:73:d6:f4:5a:b3:34:
58:81:41:4c:cf:fd:be:d5:9b:5f:20:c8:85:6e:49:
02:ef:9b:e2:94:b6:f6:c0:b1:c4:55:cd:c2:60:1f:
bc:2d:1d:ce:e1:c5:75:fe:9b:af:9a:1a:90:8f:f0:
14:3b:3e:84:9d:c7:23:2a:3e:10:00:00:e0:e5:22:
21:31:08:78:87:0f:f4:30:1b:39:bd:ca:ca:96:a7:
16:74:3b:39:ff:f6:3d:10:3a:6c:1d:d5:c2:2d:5b:
84:b9:a8:d0:e1:6e:94:7d:62:d3:12:5c:77:18:84:
24:4e:3f:f9:c2:29:e1:5e:40:b6:e5:12:bf:7d:91:
8f:25:fc:82:23:59:5a:47:9b:0d:92:71:1a:85:63:
54:28:bd:19:bf:c2:2d:3e:ee:7b:1e:a7:53:68:6b:
ab:32:9c:04:7b:7b:da:8c:23:b3:4a:35:a7:6d:b6:
cc:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:DA:23:D7:0C:3D:1D:64:2F:D1:62:72:D0:6E:E5:37:80:BE:7C:5A
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/wtoj1ww9HWQv0WJy0G7lN4C-fFo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.164.0/24
Signature Algorithm: sha256WithRSAEncryption
33:42:01:3a:22:21:ba:11:f7:c1:09:47:c7:6f:51:40:3a:9f:
fe:78:0e:b5:27:f5:99:bc:c5:c4:42:d5:1a:70:c1:c3:d8:93:
5a:d7:16:5f:fb:fd:87:db:0f:c8:11:f0:46:bd:8e:55:ee:3e:
bf:a8:23:3d:9d:3d:0e:63:81:13:a6:7c:ef:3f:aa:bd:b5:07:
51:34:41:88:bc:98:e5:70:7e:ba:d8:61:21:6b:91:4e:4c:9c:
b5:cf:87:e3:c6:c4:02:75:f0:02:b4:6a:9d:63:d4:6e:28:a1:
15:56:c2:a5:ba:c5:98:ee:12:46:15:9b:85:d1:a4:62:80:53:
f6:46:0d:b4:56:77:b3:2e:16:ef:e4:b5:d9:43:67:fe:45:17:
d0:a3:37:34:07:66:8a:f1:79:87:ae:54:6f:e6:fa:4d:e8:63:
19:32:ff:88:aa:81:fb:32:3e:f5:2a:b7:24:b9:d5:27:1e:5f:
26:92:49:be:af:48:53:91:dc:9f:82:a2:33:6f:2f:d4:10:06:
af:76:8e:df:cf:0a:d8:c4:d7:b3:fc:50:78:13:fc:3f:06:51:
8a:46:02:04:f6:37:de:ae:40:7e:a2:46:8a:32:49:9e:ee:30:
a3:9f:19:3e:36:5f:c1:bb:00:2d:a3:ac:39:ab:ba:0e:97:95:
e7:e2:e2:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:00:42 2025 by rpki-client