Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/y3CQjcVc_QrJ5UfTzQqu0k2HT_w.roa
File: y3CQjcVc_QrJ5UfTzQqu0k2HT_w.roa (raw, json)
Hash identifier: HH92FN0ByDwVRA3KSlBU0YUtYovVQ0+17M4tnY9iphU=
Subject key identifier: CB:70:90:8D:C5:5C:FD:0A:C9:E5:47:D3:CD:0A:AE:D2:4D:87:4F:FC
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1238
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/y3CQjcVc_QrJ5UfTzQqu0k2HT_w.roa
Signing time: Wed 29 Sep 2021 02:54:20 +0000
ROA not before: Wed 29 Sep 2021 02:54:20 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4662
IP address blocks: 61.60.208.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4664 (0x1238)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:20 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CB70908DC55CFD0AC9E547D3CD0AAED24D874FFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ba:f2:5e:3b:af:2c:e5:91:04:68:bf:39:d6:
ec:e0:a4:24:5d:32:b9:ea:66:f5:24:d4:52:e4:3b:
c4:f6:63:12:16:4a:13:21:bc:77:ff:34:dc:82:0a:
0f:07:39:fd:7c:f4:b1:55:6e:d0:50:a8:bd:6e:5d:
19:59:b7:bf:98:62:d5:8f:e2:13:4d:ce:08:30:c6:
0e:4b:54:8c:5c:c6:cb:74:67:e5:5c:6c:3a:18:56:
ae:1d:e7:f8:c1:0e:b3:c9:07:d8:35:ca:3d:5e:97:
9f:eb:92:49:a7:a1:61:d9:44:3b:38:94:49:6a:d5:
f7:c4:58:45:01:12:fc:c6:bd:f2:71:12:2a:ff:3e:
bb:5b:16:dd:18:eb:aa:ef:bc:d4:71:81:f5:a6:0d:
d4:e7:c5:74:74:12:35:ed:6f:ca:f8:4e:22:2b:6e:
0e:c9:2e:68:6b:84:a2:ac:e2:ea:0d:25:8c:e7:3f:
7e:e2:86:a7:ba:07:2f:41:10:88:2a:0d:33:ad:d5:
cd:72:fa:46:e0:dc:f0:14:83:7b:2f:63:a6:4b:b0:
05:8a:fa:f8:64:98:73:67:2a:51:49:61:17:9c:8c:
31:c0:eb:04:19:b2:27:77:d4:75:39:32:14:aa:81:
15:ac:18:4b:7d:32:bc:30:6f:b1:04:e2:ca:bf:e8:
01:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:70:90:8D:C5:5C:FD:0A:C9:E5:47:D3:CD:0A:AE:D2:4D:87:4F:FC
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/y3CQjcVc_QrJ5UfTzQqu0k2HT_w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.208.0/20
Signature Algorithm: sha256WithRSAEncryption
56:e5:90:3c:1f:47:2b:0d:6b:8f:12:55:83:6e:ed:26:f4:56:
a1:6f:49:57:49:34:1a:2b:5e:c2:dc:b6:2b:59:1a:f4:79:4d:
33:8d:da:61:ae:4f:5c:04:88:00:d6:88:98:db:2e:58:11:b7:
00:e7:53:39:17:1f:7d:a4:64:90:6c:93:ab:38:2b:68:f7:e8:
a1:b6:01:0f:c0:bd:e6:a9:96:69:23:d3:42:9c:93:8c:7c:23:
1f:ce:52:da:f8:c0:2e:95:e9:76:8c:09:58:fe:46:2a:3a:33:
08:61:5a:bb:4d:84:68:89:9b:41:fd:e4:5d:06:95:ca:0e:eb:
96:2f:bb:b6:9f:96:71:83:df:a3:df:74:f3:59:29:cd:e7:9f:
75:14:3f:b2:86:b3:d5:79:b3:39:dd:9d:d1:91:fa:b7:91:3b:
6a:42:01:36:d4:91:fe:9c:92:43:c5:a5:c8:29:21:fd:80:0a:
d4:ee:9e:c7:9a:56:6c:64:29:34:0f:97:af:e6:7d:44:6b:bd:
68:47:dc:2e:ca:28:47:e5:98:05:1f:ba:5e:89:89:d3:cf:c1:
90:38:4f:29:57:2a:89:1d:76:10:89:55:d5:d5:7c:ca:6a:bb:
e5:b8:e1:df:34:50:ef:d0:af:90:b8:7e:60:c9:be:72:d8:cb:
85:82:e5:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:41:11 2025 by rpki-client