Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Hzu7lS_deDYl8IdcYKjCYp5DkT4.roa
File: Hzu7lS_deDYl8IdcYKjCYp5DkT4.roa (raw, json)
Hash identifier: kHvmydmLZC5cpcQf3Abv5PeW3ZXr018nh8Z6sN88BeM=
Subject key identifier: 1F:3B:BB:95:2F:DD:78:36:25:F0:87:5C:60:A8:C2:62:9E:43:91:3E
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Hzu7lS_deDYl8IdcYKjCYp5DkT4.roa
Signing time: Thu 15 Sep 2022 02:35:35 +0000
ROA not before: Thu 15 Sep 2022 02:35:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 180.218.206.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:35:35 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1F3BBB952FDD783625F0875C60A8C2629E43913E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:55:4d:72:bd:61:d8:de:3f:b3:32:f1:eb:c8:
e3:bb:3f:75:bf:d4:48:b9:ac:46:18:e9:2f:28:fe:
50:63:2c:db:2c:ba:eb:b8:5b:3a:ef:1d:27:6c:d8:
4e:1a:1c:c5:83:6d:2f:99:32:c8:9d:43:bd:e4:0a:
e2:e0:90:90:c6:fe:7c:5f:d2:0d:eb:1e:26:df:d9:
c2:0f:17:2f:39:5a:9e:a4:3c:17:54:be:cb:85:04:
02:a4:75:ed:35:43:95:71:bc:7e:a8:f9:64:64:f7:
04:b1:5d:b6:24:51:d5:8d:80:2b:e0:9c:c0:3c:8e:
5e:18:8d:80:6b:0d:0d:fa:26:4f:2b:0c:17:e4:cb:
d8:72:22:ca:0a:8f:c1:01:0d:ef:46:4c:40:62:52:
f2:6f:1a:55:e3:23:7d:9d:ff:d5:56:48:dd:97:45:
04:81:ad:f6:3b:84:3a:57:5b:f0:31:33:0f:c2:ed:
6b:07:38:2d:13:aa:18:9f:43:38:4e:c0:eb:22:c3:
6a:0d:f6:49:20:75:29:48:2b:78:c3:bc:68:41:45:
a6:08:3b:a8:5c:e8:b1:6f:a1:d7:1e:40:ba:84:0e:
f4:5f:c7:fa:f3:c9:cd:07:7e:b6:70:fb:0a:c1:70:
ed:a7:74:42:7a:8d:90:33:15:bd:7d:5a:fd:8d:82:
86:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:3B:BB:95:2F:DD:78:36:25:F0:87:5C:60:A8:C2:62:9E:43:91:3E
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Hzu7lS_deDYl8IdcYKjCYp5DkT4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.206.0/23
Signature Algorithm: sha256WithRSAEncryption
06:ab:be:21:83:9d:4a:ea:ed:06:92:fe:7e:e0:a0:f3:13:97:
36:97:7f:93:03:35:4f:7e:ea:78:55:3f:27:e5:a9:3e:e4:e9:
dd:65:18:b4:4a:86:b1:fa:78:19:6d:76:4b:27:6c:f5:00:53:
d7:8e:72:d9:32:20:25:16:b5:bb:56:35:a5:a1:b4:65:34:e9:
e1:06:eb:8c:ff:6a:a6:97:3d:03:57:bf:7d:16:21:89:d9:84:
8b:a4:b7:46:4a:4f:40:08:55:6b:08:4b:90:62:fe:28:3c:15:
2f:07:99:c0:18:93:91:9e:b5:79:39:12:e2:ce:a6:a2:e3:b7:
60:a9:a6:ad:92:d9:5d:40:d3:1a:72:fe:34:77:02:5a:c9:36:
81:58:8a:1a:31:5d:5d:4f:c7:52:f7:5f:51:95:58:6f:f0:d2:
5d:da:bb:36:ce:79:bd:4f:47:f4:0a:27:d1:e2:2f:ec:c1:97:
50:ac:37:d8:cf:10:42:e5:fa:fa:13:5f:95:fd:ae:a2:61:f9:
3a:2c:6a:09:64:45:48:8d:43:b5:13:53:4f:10:03:3b:fd:04:
05:a6:7d:f7:63:0b:52:a4:34:15:2f:38:a0:a5:ce:a7:0c:a0:
60:dd:2a:ce:ff:f3:ba:27:5a:ab:b1:1b:c0:21:f9:52:b2:22:
cf:4f:6e:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:46 2024 by rpki-client on console-ams.rpki-client.org