Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MG-gpvcEbOaNiQ54WBDvkQlmAL8.roa
File: MG-gpvcEbOaNiQ54WBDvkQlmAL8.roa (raw, json)
Hash identifier: 3Q5urhEFSNSE1YtjVGzHojFqgE7zCgErzhWus4riFmw=
Subject key identifier: 30:6F:A0:A6:F7:04:6C:E6:8D:89:0E:78:58:10:EF:91:09:66:00:BF
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 177A
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MG-gpvcEbOaNiQ54WBDvkQlmAL8.roa
Signing time: Sat 22 Oct 2022 05:37:48 +0000
ROA not before: Sat 22 Oct 2022 05:37:48 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24165
IP address blocks: 180.218.104.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6010 (0x177a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 05:37:48 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=306FA0A6F7046CE68D890E785810EF91096600BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:40:9c:39:3d:22:79:8a:23:1b:c1:bb:d9:b2:
bd:12:c7:9a:1a:12:5a:c1:a7:18:2e:00:2b:84:09:
db:36:b6:b8:85:e9:56:12:1e:6a:65:31:9a:6c:9d:
ec:b9:bc:7f:4e:5c:9f:cf:a7:13:ac:ad:15:bb:3b:
42:37:17:2f:f0:41:00:af:b8:ab:2d:3f:23:1b:b3:
9a:ad:26:12:14:a0:44:9d:ff:26:33:33:6b:d3:d7:
13:20:4a:60:d0:5a:49:b2:fe:fc:23:5b:fd:7f:ca:
e1:fa:e3:11:09:f2:41:cd:ed:f2:15:50:12:09:8e:
9b:b2:df:bb:5b:43:b4:9e:43:3d:74:43:d8:14:29:
43:f3:31:e4:79:f7:51:da:d0:98:3e:d4:90:9e:c6:
ee:b4:26:cf:ac:45:09:cd:fa:42:4c:99:ef:e7:bc:
d9:d1:cd:90:45:da:c6:88:3e:c0:78:cd:c8:c4:f5:
60:60:7d:20:de:99:0e:37:e7:b5:07:2d:72:51:a8:
71:da:94:55:38:c2:f0:24:ee:c9:c2:b5:6b:a5:62:
ca:c9:c7:85:4e:45:94:93:7b:ab:56:01:84:1d:b1:
0c:e6:22:3b:ca:bc:25:7b:aa:dc:53:92:38:c2:2b:
a3:88:52:d4:99:61:21:51:5e:83:03:aa:49:56:eb:
1b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:6F:A0:A6:F7:04:6C:E6:8D:89:0E:78:58:10:EF:91:09:66:00:BF
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MG-gpvcEbOaNiQ54WBDvkQlmAL8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.104.0/21
Signature Algorithm: sha256WithRSAEncryption
7d:9f:f6:0c:75:f1:76:aa:8a:3d:ff:58:3f:02:d4:0d:fa:23:
16:f6:f3:c2:d5:a5:95:e8:de:d0:48:34:6a:a7:d3:cd:ad:05:
70:98:f1:3a:17:82:cd:84:84:77:03:6c:e2:8f:b7:13:67:d6:
6b:79:f9:a4:72:5b:72:13:27:4a:d7:87:fd:82:20:f0:9c:75:
59:0c:27:7d:87:f8:cd:b9:ab:8d:18:7a:34:33:73:08:74:89:
c4:73:85:69:89:20:77:26:d8:23:45:30:2f:34:04:39:b4:7e:
f1:66:a1:04:71:3b:dc:1c:40:6c:e1:89:28:93:41:49:d5:63:
4f:2d:6c:c1:d3:b7:27:52:38:9a:98:6a:4b:3d:06:74:17:ca:
3e:22:3e:a2:78:e9:dd:b9:d1:a8:9a:82:ec:19:68:55:b9:1f:
00:55:88:f7:3d:ba:51:77:14:76:b0:18:22:56:2b:a0:ba:9c:
b6:f8:87:f5:69:3b:cb:85:45:27:1c:57:ff:fc:a7:85:6f:64:
0d:b9:cd:1c:db:2f:b1:ba:bc:44:20:7a:3d:93:b9:cb:a5:d6:
8b:00:93:68:cf:47:c6:68:8e:9e:67:cd:db:b8:9d:54:42:d4:
4e:ec:86:4b:2f:80:f8:70:6a:56:59:86:b8:75:bc:ed:a2:a8:
b4:1a:d2:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org