Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KKdMFZqoXT7clSZOsE0aFOyjTjQ.roa
File: KKdMFZqoXT7clSZOsE0aFOyjTjQ.roa (raw, json)
Hash identifier: bSHcwEsE6bScZy1/c7wM8Rj0mWqMM4p+7DrjbyQrTRk=
Subject key identifier: 28:A7:4C:15:9A:A8:5D:3E:DC:95:26:4E:B0:4D:1A:14:EC:A3:4E:34
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1131
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KKdMFZqoXT7clSZOsE0aFOyjTjQ.roa
Signing time: Sun 07 Feb 2021 13:14:15 +0000
ROA not before: Sun 07 Feb 2021 13:14:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 180.218.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4401 (0x1131)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 13:14:15 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=28A74C159AA85D3EDC95264EB04D1A14ECA34E34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:cf:8c:8b:ea:fa:44:f4:fc:e3:95:f9:19:e9:
e6:f6:54:15:b5:18:32:33:80:31:8e:f6:3b:92:f2:
22:d3:a3:27:b2:66:00:b2:01:20:dd:f5:f6:9c:9d:
3e:91:2b:ec:c3:2c:df:7e:d6:bf:4a:49:c8:13:de:
38:b2:02:78:5b:b4:9b:bf:72:ab:68:c7:a9:f0:d3:
4d:8e:b6:57:82:12:8e:90:c7:9a:50:ab:13:56:86:
3b:05:85:9d:fa:3e:b7:17:e6:74:a7:ba:a3:58:ee:
ea:63:28:56:54:02:01:e4:14:83:e9:7d:4a:57:84:
4a:f0:d4:39:52:9a:60:2e:35:a0:ac:de:52:d5:50:
b6:58:83:b4:4a:07:e2:bf:40:86:b9:f5:17:6e:3e:
44:72:ed:ad:22:25:af:35:2d:91:1b:9d:59:dd:77:
e3:34:7b:f3:47:89:82:9b:54:b4:1a:84:4f:71:94:
1c:eb:a4:c4:ac:d8:0a:12:7a:dc:11:16:77:07:85:
25:88:7c:d0:7d:a4:16:8e:e4:29:29:f8:a5:df:a6:
89:8f:da:72:10:01:d8:66:22:1a:b8:85:f8:2b:cb:
f4:d9:1d:7b:d5:4e:cf:fc:1f:4c:a1:3f:75:4b:7f:
b0:9b:cf:f6:e8:4f:fe:43:56:16:ab:06:c9:f7:9d:
d8:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:A7:4C:15:9A:A8:5D:3E:DC:95:26:4E:B0:4D:1A:14:EC:A3:4E:34
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KKdMFZqoXT7clSZOsE0aFOyjTjQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.120.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:3c:1f:f3:4e:d6:60:a2:ba:47:17:82:b7:7a:fa:c8:30:f4:
ba:05:eb:11:cb:22:53:e5:5d:cc:c7:0f:ea:65:64:56:03:5b:
cc:9d:1b:cd:d8:0b:a9:b6:bb:8f:44:41:97:fe:19:24:0a:83:
4b:b1:f0:96:38:29:8b:49:dc:e6:f9:4a:07:3f:09:5a:d4:ea:
f4:c2:09:d1:73:87:72:37:04:f2:96:71:c6:ff:0e:c9:ee:80:
72:98:a9:ad:a2:9c:6e:af:c3:1e:69:ae:a3:c6:c7:27:86:49:
4c:81:4a:21:39:19:bf:cc:c2:f5:f9:8f:c3:35:96:be:39:52:
bc:49:c9:21:55:bb:e5:72:b5:25:74:21:47:65:8d:17:4c:3b:
d8:e1:4d:79:3c:86:aa:77:b8:7f:f3:1f:52:56:0c:07:c3:c5:
0c:03:e3:97:ea:ec:b0:1a:52:62:aa:d2:c5:2f:12:84:b7:a7:
2a:6a:63:a0:45:c6:77:ce:f2:f5:fc:91:d2:1a:0f:c6:89:1c:
4f:ac:6b:0c:89:36:8f:58:be:86:9f:f3:e7:9f:a0:2d:bc:18:
0a:ef:85:c0:40:85:78:37:20:eb:5b:4b:52:2c:07:74:5e:b5:
87:d6:c0:9f:5b:89:09:5f:21:df:52:e1:63:e6:6b:8f:3a:27:
bb:06:57:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org