Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DSa10znDYh_5CHobvG4ZgvPVczI.roa
File: DSa10znDYh_5CHobvG4ZgvPVczI.roa (raw, json)
Hash identifier: h2dr9M259fHqanpLEpVbdewfHOlKCF/wJoyopXsiwFE=
Subject key identifier: 0D:26:B5:D3:39:C3:62:1F:F9:08:7A:1B:BC:6E:19:82:F3:D5:73:32
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1A66
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DSa10znDYh_5CHobvG4ZgvPVczI.roa
Signing time: Thu 27 Oct 2022 03:07:28 +0000
ROA not before: Thu 27 Oct 2022 03:07:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 180.218.160.0/21 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6758 (0x1a66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 27 03:07:28 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0D26B5D339C3621FF9087A1BBC6E1982F3D57332
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:c3:96:a9:81:bd:dd:6a:00:ad:44:b1:7c:bb:
a5:6b:e8:70:20:c0:99:d3:d6:98:b4:e7:c3:e5:e0:
f8:19:32:9d:c4:ee:85:53:3c:c1:5c:d8:71:0b:69:
c0:57:b9:e1:48:5a:ac:3b:7d:98:a3:6d:22:c2:35:
42:2e:0e:32:11:f7:d7:c3:a0:7a:89:8e:55:18:b2:
a4:70:a8:e2:f2:59:af:53:ff:94:a0:00:8f:87:00:
5c:e8:4a:6e:9e:b5:13:2d:ef:61:47:64:57:9f:6a:
e5:58:d0:a5:ea:d0:76:cf:be:b2:3b:2f:45:6c:33:
5a:96:54:f1:bf:46:2f:91:b9:43:4c:72:93:2f:12:
78:33:de:9d:e2:25:cf:62:74:64:3e:51:2f:72:20:
91:ac:ba:44:ea:90:9e:0d:a2:56:f4:45:cc:64:11:
9c:1f:28:81:2a:1b:5c:de:4f:15:af:e6:d3:c5:5c:
f1:0b:ba:d7:40:50:24:5f:37:e2:69:66:0d:1e:1e:
0a:e5:20:00:57:b6:44:40:1b:b8:85:0f:50:fb:e9:
91:12:75:90:4c:32:6e:be:92:07:06:ab:0e:9b:6f:
50:86:78:4c:58:41:fa:42:08:16:a2:2f:d9:7d:fe:
fd:d1:a5:5d:aa:75:c9:69:26:18:71:be:3c:11:c7:
a9:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:26:B5:D3:39:C3:62:1F:F9:08:7A:1B:BC:6E:19:82:F3:D5:73:32
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DSa10znDYh_5CHobvG4ZgvPVczI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.160.0/21
Signature Algorithm: sha256WithRSAEncryption
7b:08:cf:50:a7:a9:b6:45:bd:73:cc:66:1a:21:2f:b9:33:7e:
a8:5a:88:84:2c:db:3c:2a:40:39:22:f8:ea:c1:89:26:32:c9:
4b:97:83:cc:16:49:16:f9:14:30:69:c9:2e:ad:1f:7b:7b:0b:
39:b9:78:e2:a8:53:1d:0e:18:1a:31:c6:2d:e0:e4:fa:3f:f0:
3f:de:ac:be:d0:1c:2b:e9:26:22:a4:49:72:0f:a0:b8:ff:fe:
e6:fe:88:61:55:ff:6e:b8:ae:c2:13:2c:47:18:80:20:40:87:
1a:3a:26:c3:11:89:98:cb:83:a1:df:d5:0f:16:51:a6:6d:5f:
23:9a:f7:22:47:17:4b:27:b4:e9:a5:11:5d:42:d3:c0:9f:e0:
5b:cc:61:8c:62:cf:1d:d2:d1:34:6b:a6:07:3d:27:cb:14:45:
2c:26:4d:f0:06:44:d4:91:75:e2:c6:cb:54:56:8e:f5:3b:c0:
79:46:b5:92:8a:b0:30:8e:5c:de:5c:c1:1e:83:23:6d:ba:b8:
30:12:73:2a:9d:e3:a1:c8:90:52:fb:dc:f0:f9:c6:0e:a7:1c:
61:57:14:d3:61:32:60:ca:4e:73:f6:46:55:bb:c2:b9:9f:fe:
3d:4e:ef:19:2f:8b:f6:14:f1:76:55:b3:f5:b2:fe:7b:9f:5a:
05:92:7e:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:45 2024 by rpki-client on console-ams.rpki-client.org