Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MGfuJsRdjWZVPMtvPrg3AOlnS2w.roa
File: MGfuJsRdjWZVPMtvPrg3AOlnS2w.roa (raw, json)
Hash identifier: 4s4uvLOwmyNhoVFF0BOjtJYIaKqz4f1MwfOFxlpX/ZY=
Subject key identifier: 30:67:EE:26:C4:5D:8D:66:55:3C:CB:6F:3E:B8:37:00:E9:67:4B:6C
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12F8
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MGfuJsRdjWZVPMtvPrg3AOlnS2w.roa
Signing time: Wed 29 Sep 2021 02:55:12 +0000
ROA not before: Wed 29 Sep 2021 02:55:12 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 180.218.208.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4856 (0x12f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:12 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3067EE26C45D8D66553CCB6F3EB83700E9674B6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f0:75:63:6d:8b:37:71:c7:4a:68:99:8d:e6:
16:14:a7:25:93:b2:78:17:16:5d:e4:86:f2:55:ca:
96:14:4b:dd:61:c0:d7:6a:b2:71:71:2b:7f:df:a7:
9d:b8:90:5f:50:a9:cf:c1:e6:de:da:d0:76:56:86:
2d:54:b2:02:24:d8:82:13:84:96:04:0b:ab:80:65:
a1:d7:32:34:60:c0:16:20:f8:90:77:d4:a6:0a:d8:
30:6a:e4:eb:19:82:13:3a:ac:55:46:04:4c:ae:54:
21:04:ee:59:69:38:61:8b:59:f0:be:5b:1c:b7:31:
2e:17:59:8f:3b:df:c0:82:f1:39:c5:d2:8c:eb:79:
55:3e:0e:f8:eb:90:5b:8d:44:03:48:58:45:02:17:
ad:83:f9:b9:17:84:1f:a0:a3:9b:06:3b:5d:a8:ec:
e2:ce:0f:c0:29:da:00:bd:c0:c3:92:06:eb:31:c7:
19:05:61:36:40:40:bf:27:2e:bc:d5:51:f9:93:3b:
28:fe:f7:a0:75:bf:e0:3f:90:2f:2c:79:0f:9b:55:
0d:91:83:a0:6c:6e:0c:d2:c3:65:f9:67:54:be:23:
a7:29:50:52:39:a8:9f:b2:24:75:fc:a2:ef:89:2d:
ba:d3:09:31:31:bf:a0:d2:d7:d1:40:04:1d:cb:7c:
6f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:67:EE:26:C4:5D:8D:66:55:3C:CB:6F:3E:B8:37:00:E9:67:4B:6C
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MGfuJsRdjWZVPMtvPrg3AOlnS2w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.208.0/21
Signature Algorithm: sha256WithRSAEncryption
15:5c:9b:10:c0:3b:bd:6a:67:ef:15:50:49:3b:7e:16:1d:06:
90:b9:9b:98:c4:4e:3d:fc:02:3f:11:38:f1:42:0a:67:f8:70:
a8:f7:f8:6f:a2:12:6f:be:53:39:a1:13:57:6c:5b:ab:59:41:
1c:c4:30:2f:9f:2e:fc:f9:db:23:56:b0:f5:c1:bd:65:0e:72:
b4:47:b7:79:80:d1:57:2f:6a:a7:4c:f9:fd:14:7f:b2:fd:88:
d7:fb:b8:a8:94:d1:c7:ab:4f:30:c2:d3:fb:f1:41:68:45:5d:
e4:3b:29:b1:54:fd:1d:1d:99:65:24:c9:47:f5:9a:8e:db:ce:
1d:7e:a3:84:9e:a7:07:b9:0d:3b:0e:54:ec:c5:57:01:23:3b:
0d:40:3a:39:4b:30:fe:29:57:ba:ab:5d:5f:03:0e:92:23:ec:
47:f1:0d:04:ce:d5:ed:31:58:03:80:2b:1c:77:bb:2f:97:86:
ed:10:db:f8:20:b7:e5:e0:27:22:6c:11:19:c4:b1:02:a2:00:
a2:9b:7c:d6:79:0c:ed:c5:c0:d2:bb:38:9c:fb:f7:1b:83:f7:
fd:31:eb:81:8e:f9:35:48:70:09:6e:6e:ed:d1:5f:33:d6:bc:
24:87:b0:83:e8:45:6a:43:1e:f1:9c:b1:13:d8:e4:5b:ae:4a:
98:fb:7d:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org