Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Yh5I-mL0AuLUnaTBk0JW2461_40.roa
File: Yh5I-mL0AuLUnaTBk0JW2461_40.roa (raw, json)
Hash identifier: V2XeY6l45b3t8WuKCjLwNZeYXG7h1NcPFYL6hMaszjo=
Subject key identifier: 62:1E:48:FA:62:F4:02:E2:D4:9D:A4:C1:93:42:56:DB:8E:B5:FF:8D
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0B09
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Yh5I-mL0AuLUnaTBk0JW2461_40.roa
Signing time: Tue 29 Sep 2020 10:07:56 +0000
ROA not before: Tue 29 Sep 2020 10:07:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 180.218.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2825 (0xb09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:07:56 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=621E48FA62F402E2D49DA4C1934256DB8EB5FF8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b2:b0:59:9a:ec:ab:7f:67:f1:75:4d:75:cb:
9f:61:c2:6c:e2:9b:2f:94:73:95:ef:32:f0:88:12:
f0:86:81:78:14:ff:02:76:4d:5e:77:2a:2a:70:86:
1c:35:85:1f:1e:ae:44:6b:09:b8:e5:1f:b9:54:85:
68:16:c5:50:0b:c4:50:a2:45:ae:46:9f:c5:35:09:
7b:c5:fd:9e:10:cf:9e:38:6a:6e:e4:77:02:09:d4:
f1:a6:72:31:30:1c:8b:c4:76:c2:ca:17:65:87:6e:
d8:c2:81:b2:fa:55:54:c8:c0:c9:1d:5c:39:70:13:
fa:65:0f:32:db:17:4a:1a:8b:36:d3:49:ed:33:95:
e9:10:fe:e5:fd:ef:77:9b:b5:93:d2:bb:a6:85:b3:
d7:c9:5f:7b:02:6f:38:4c:1d:2b:98:97:15:62:32:
0b:22:86:43:87:e7:70:f5:86:a7:d5:6e:b4:d3:db:
d7:b3:98:29:29:fa:d2:12:61:dd:75:18:33:d1:9b:
5f:50:2f:69:1d:a8:bd:e8:13:d9:f0:77:b5:06:2c:
cb:f9:f9:bf:fb:09:62:e3:87:0e:65:43:d9:e7:a4:
34:2d:b4:47:7c:e9:09:7b:c9:86:93:62:e4:62:8f:
15:64:24:a1:5f:7f:8b:42:a8:e1:b3:96:aa:ca:26:
ab:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:1E:48:FA:62:F4:02:E2:D4:9D:A4:C1:93:42:56:DB:8E:B5:FF:8D
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Yh5I-mL0AuLUnaTBk0JW2461_40.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.137.0/24
Signature Algorithm: sha256WithRSAEncryption
51:9d:b9:35:75:c3:b3:ea:60:af:99:e9:e5:1c:7e:22:bd:03:
bd:26:c8:35:01:7e:0c:b2:61:1e:3a:bd:36:3f:69:9f:aa:cb:
83:f7:6a:30:37:4c:b6:cc:45:d0:e9:dd:51:6a:da:8b:a9:db:
fa:cb:3b:15:88:a3:66:a4:e6:9d:f8:9b:15:42:bd:9c:a2:34:
46:17:08:cf:29:5b:94:81:7d:74:bd:74:48:aa:d4:a6:0b:86:
b4:5f:8b:3b:47:82:97:dd:94:f1:9f:70:18:25:f4:24:43:9f:
6c:88:86:24:26:a8:4a:d7:51:6d:6c:f8:6b:37:e0:e7:b7:9a:
fa:77:f9:ee:4a:8c:79:89:8a:af:88:83:06:f5:70:29:8d:87:
8d:42:55:eb:62:02:7d:9d:18:99:42:34:49:d3:8c:4f:0f:3c:
9a:1f:98:39:e0:73:74:1c:7e:ae:47:51:46:00:64:82:33:ca:
91:f3:52:77:cb:4c:ee:2f:aa:f0:a3:10:a0:e4:93:d3:91:00:
bd:75:1a:6a:c2:df:20:a3:ba:37:69:33:4d:8e:7e:ae:b9:1b:
e4:2c:96:0b:84:4d:11:de:d1:65:3e:b9:9c:2f:85:3e:59:b4:
d1:c0:2e:6e:84:d0:c3:b1:77:a9:5a:6d:d6:94:b4:da:50:74:
0c:7b:07:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org