Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GgWcEzVGG2ExtmCg7e8hZqzRvIQ.roa
File: GgWcEzVGG2ExtmCg7e8hZqzRvIQ.roa (raw, json)
Hash identifier: d/34+U6mQZKYbRbxTFKOgtU/ioG/Vl5zBdBiX9tpdhQ=
Subject key identifier: 1A:05:9C:13:35:46:1B:61:31:B6:60:A0:ED:EF:21:66:AC:D1:BC:84
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GgWcEzVGG2ExtmCg7e8hZqzRvIQ.roa
Signing time: Thu 15 Sep 2022 02:36:33 +0000
ROA not before: Thu 15 Sep 2022 02:36:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 180.218.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:33 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1A059C1335461B6131B660A0EDEF2166ACD1BC84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:58:f7:c2:22:b2:6c:09:1a:63:1a:b6:77:9d:
b6:f8:85:07:1d:0e:2d:19:61:22:70:2d:31:a3:24:
39:42:12:ab:31:c0:f7:9b:da:1e:81:6a:e9:a1:68:
a2:4a:70:81:fe:88:87:68:ce:f7:fc:85:9d:fd:2d:
08:42:69:d8:93:1b:0c:28:0c:f4:59:c4:b1:d2:af:
5e:9d:e0:e5:22:3e:7e:ad:e8:af:44:a2:26:cf:89:
cd:ef:da:b4:7a:19:df:17:fe:f3:bf:f8:0d:d1:a9:
2c:e6:17:ed:b5:56:34:f2:bc:aa:5f:42:b4:5a:ed:
8d:d7:24:f3:07:3a:c1:16:88:5f:11:75:a9:9d:6b:
83:40:7b:45:ed:ff:e0:e8:e8:ac:36:ad:fa:aa:78:
58:f8:71:86:75:6a:17:6b:04:d6:c0:ca:2a:93:65:
e8:eb:0a:74:04:6f:5e:cd:56:38:7c:2c:7d:a6:f7:
73:0f:6a:c8:70:0d:a8:66:1d:8b:88:d6:c5:79:41:
8f:9e:39:ab:90:eb:bb:77:f3:72:fa:0d:22:3e:c6:
0d:1d:9d:f0:3d:ad:09:90:18:eb:4e:5b:9b:d3:c0:
9b:27:3c:b8:6c:1c:14:0b:6d:e4:ee:4d:8b:ce:fe:
c7:02:c7:1e:93:ed:a4:b8:58:be:b4:ce:b4:bb:a0:
3a:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:05:9C:13:35:46:1B:61:31:B6:60:A0:ED:EF:21:66:AC:D1:BC:84
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GgWcEzVGG2ExtmCg7e8hZqzRvIQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.135.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:33:cc:e3:87:41:f9:29:0d:dc:d0:8d:8a:a5:04:e6:b2:7d:
ea:78:32:72:47:23:d3:4b:74:ee:b3:c0:84:a4:57:fd:6f:ff:
98:b2:68:92:1f:5c:31:ef:fc:71:2b:74:ca:fb:e4:7e:9d:0a:
df:27:63:cf:57:77:c4:0a:12:68:82:f1:9b:37:35:f2:f8:05:
b5:d6:85:ca:a0:34:25:45:79:f3:4f:94:00:f6:cb:eb:ee:7c:
a5:f4:61:54:fc:44:82:95:60:02:81:5f:64:3d:79:4a:02:30:
09:74:c3:3c:de:d0:72:5b:b1:85:dc:9d:8c:30:9d:e8:3d:85:
6b:96:82:aa:8c:79:53:3d:67:2f:a1:8a:6f:84:a2:c3:c9:4c:
85:41:b6:00:ee:92:0b:4d:fa:d8:9d:81:0c:f9:1c:38:f3:31:
bf:ec:be:76:2f:f2:86:f6:5c:5e:f3:9f:a6:53:d9:be:63:c3:
88:f8:3c:1c:48:59:d0:0a:28:35:b5:5c:b8:bc:a9:f3:41:76:
02:b1:78:1c:cf:db:1e:6f:55:7a:d8:26:af:94:6a:00:b2:8f:
dc:c7:c2:03:3d:57:c5:8f:c8:5c:02:c9:df:34:53:14:c0:c0:
17:02:2f:c8:fa:54:2f:1f:aa:52:5e:32:af:88:f9:15:85:ea:
1b:4b:a4:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org