Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KfmmbGxWZKNXPghD-fJ9hFRDTPU.roa
File: KfmmbGxWZKNXPghD-fJ9hFRDTPU.roa (raw, json)
Hash identifier: Qg5nzXJTMDZ9r9vTOWvMNgABMnxcT/trhjMw22POvFE=
Subject key identifier: 29:F9:A6:6C:6C:56:64:A3:57:3E:08:43:F9:F2:7D:84:54:43:4C:F5
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KfmmbGxWZKNXPghD-fJ9hFRDTPU.roa
Signing time: Thu 15 Sep 2022 02:36:24 +0000
ROA not before: Thu 15 Sep 2022 02:36:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 180.218.160.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:24 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=29F9A66C6C5664A3573E0843F9F27D8454434CF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ae:46:88:ba:c0:ad:2b:67:82:55:e8:ab:d4:
ec:9a:fb:ba:d0:ce:a1:96:b8:5b:5c:e8:6d:56:cb:
91:c3:84:c9:2a:bc:8c:57:df:15:c5:f1:3c:41:71:
65:60:85:25:95:ed:26:cf:3f:d0:58:35:ff:81:9a:
ac:5d:24:36:22:a0:8f:35:86:8d:ba:79:ec:08:c2:
f7:9c:6a:0e:d8:e8:8f:fb:d6:15:be:c5:69:fd:2d:
ae:5d:1b:ca:1c:da:12:d2:d2:07:c7:dc:b5:c6:0a:
e9:23:0f:9b:77:8c:04:19:55:aa:97:45:96:ac:14:
03:4f:0a:b8:c0:4b:d1:34:77:85:b3:aa:02:e3:51:
0b:de:dd:7d:cd:2f:d9:d7:22:0f:0a:2b:e2:e6:66:
25:fc:6e:1c:ee:30:92:12:b8:63:f2:dc:5f:ab:52:
14:4a:eb:7d:fa:ee:5f:fc:e5:8c:87:34:b4:d7:9f:
1f:18:55:85:b7:1b:80:5c:ae:12:1d:1b:70:04:0b:
9a:44:fe:24:86:6b:7a:97:27:c1:49:a9:8f:c7:72:
5c:03:1a:d5:30:fa:5f:1f:b1:3c:72:8f:56:8c:17:
f1:b4:b2:a0:7f:4f:10:15:bc:29:18:c2:ae:e5:c5:
0e:a9:c8:b0:6a:35:0e:29:78:a5:40:a9:37:07:67:
69:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:F9:A6:6C:6C:56:64:A3:57:3E:08:43:F9:F2:7D:84:54:43:4C:F5
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KfmmbGxWZKNXPghD-fJ9hFRDTPU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.160.0/20
Signature Algorithm: sha256WithRSAEncryption
26:31:7e:d4:a3:b5:b4:62:9e:0f:7f:0f:58:d0:be:54:e2:3c:
e5:0d:09:4e:f4:50:f4:85:e2:fe:eb:0a:3c:eb:aa:34:91:70:
23:00:29:bf:60:0d:8b:cf:f8:d1:e0:56:88:fa:c5:27:ee:7d:
d0:42:ea:f2:51:82:11:c8:4f:bf:96:07:48:28:78:a4:f5:a4:
5f:1b:54:7d:d5:fd:71:5b:b6:d5:0f:db:19:88:e9:9d:6a:09:
3b:ef:35:80:1a:96:cd:f2:8f:e3:03:69:76:68:cb:33:d3:4e:
a3:fa:34:a1:0e:8a:fb:63:ac:62:d0:a9:25:ee:06:83:aa:48:
18:ab:d4:8c:53:8e:2b:2c:2e:49:4c:c7:10:a6:62:b7:3c:7f:
c6:31:1c:a7:f1:c3:79:68:06:4c:b5:65:ce:13:c8:0b:2b:59:
df:f2:de:0f:bc:6e:08:49:dc:1d:43:67:b4:a2:3b:23:ed:e8:
e4:bc:89:65:6f:9f:8b:5d:ea:af:30:6e:8f:5c:13:9c:2a:47:
86:bf:02:7d:25:02:cd:49:09:41:32:5b:fd:91:3e:05:b5:b0:
35:d5:da:06:44:75:c0:24:d6:e8:84:de:1b:8b:37:28:54:35:
30:59:30:77:9f:20:50:e8:d7:d1:d1:e2:6f:4f:3d:46:f6:76:
3a:06:5a:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org