Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LZgL5HEe0CNBKjwxhzZ4p9NDI44.roa
File: LZgL5HEe0CNBKjwxhzZ4p9NDI44.roa (raw, json)
Hash identifier: +dj8kJeye/2IhYkYm7VZCeunJ08u6cy7CK+49PXkAzk=
Subject key identifier: 2D:98:0B:E4:71:1E:D0:23:41:2A:3C:31:87:36:78:A7:D3:43:23:8E
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 10B3
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LZgL5HEe0CNBKjwxhzZ4p9NDI44.roa
Signing time: Sun 07 Feb 2021 12:47:06 +0000
ROA not before: Sun 07 Feb 2021 12:47:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 180.218.40.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4275 (0x10b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:47:06 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2D980BE4711ED023412A3C31873678A7D343238E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:6d:19:ab:e3:52:f2:db:78:bf:5f:c1:9e:f6:
8d:25:45:1d:c0:1c:bf:28:27:15:1f:33:5a:99:39:
bf:eb:a0:9d:3b:0e:14:a7:95:39:de:88:2b:db:c9:
c1:bb:30:49:1a:ad:7d:0e:04:d5:81:53:29:56:11:
7f:ea:86:51:70:62:81:93:35:7a:ac:0f:8d:bd:ff:
27:f7:e4:8c:a3:b8:53:2f:15:d0:5a:da:bf:54:55:
6e:d8:40:e1:0d:e4:20:2b:3a:17:b5:26:37:82:f4:
2e:f4:92:a4:62:c7:1a:dc:08:63:d5:6a:e2:25:dc:
75:8e:0c:98:6f:19:de:6a:4d:26:d7:1b:28:3e:b0:
bb:d7:a2:f7:ba:86:12:b1:c9:e9:92:4e:11:7b:af:
6d:c4:8c:65:00:55:f2:ac:df:b8:31:20:9c:2c:27:
42:c3:72:43:83:27:f9:4c:1f:ef:d2:99:b0:35:9e:
f9:91:5b:68:43:94:d5:66:10:6c:b2:dd:84:52:31:
dd:45:91:ce:11:ea:c0:9d:90:db:91:2d:81:84:84:
70:4f:8e:35:cc:3c:bf:25:95:97:5d:ef:26:dc:ca:
84:f7:64:6a:d5:5a:c3:25:06:a4:0f:bd:53:3b:90:
c0:52:bf:f4:f6:8f:83:9f:19:31:c0:72:91:8e:c2:
11:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:98:0B:E4:71:1E:D0:23:41:2A:3C:31:87:36:78:A7:D3:43:23:8E
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LZgL5HEe0CNBKjwxhzZ4p9NDI44.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.40.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:d1:79:68:b4:2f:84:20:de:93:3f:ec:59:a5:ac:d4:da:89:
fb:b7:bf:58:6f:53:2f:8d:0f:2e:39:d4:3a:d0:f4:e3:df:7c:
03:c8:91:27:27:aa:d7:ff:51:0f:7d:49:7e:ba:ad:a7:9c:b3:
ce:48:4b:5e:c6:ce:09:91:96:0c:1c:c2:7f:04:f1:3a:60:dc:
c0:1a:5f:e7:18:4e:aa:bb:4d:96:53:51:fb:69:2f:07:d1:13:
ac:e6:28:2a:b7:e9:bb:d1:05:27:83:48:6c:13:45:5e:7a:41:
20:24:fd:39:d4:ef:20:05:0f:cf:3d:51:ee:ef:71:48:9f:29:
30:57:f7:66:bc:68:e5:55:6c:75:1d:42:fd:2b:50:e5:6e:8b:
8a:f9:d5:dc:c6:12:65:f4:99:6d:d0:b4:7f:8b:45:0e:5d:d9:
f4:62:1d:75:6d:57:39:d4:64:45:c4:0b:b5:89:17:36:ca:82:
e1:6f:4f:8e:c9:13:0b:ab:f1:71:0d:09:32:f7:e5:5b:2d:d7:
7b:f5:10:59:9c:05:04:0d:37:3e:77:5b:04:30:b0:c5:ea:e5:
52:24:ca:8a:4c:9f:fe:ad:dd:e6:b9:c4:c6:02:d7:87:54:5a:
7d:33:47:67:1f:66:cb:a9:f8:ba:f3:63:71:9f:4d:cd:65:06:
07:60:d2:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org