Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/az_ofHpxxZRSZJDbVDaQXfYvMdI.roa
File: az_ofHpxxZRSZJDbVDaQXfYvMdI.roa (raw, json)
Hash identifier: tZDl6qujvIbmDnGVQqJ10bxIiwEX/M20iXDoXn6Y1bI=
Subject key identifier: 6B:3F:E8:7C:7A:71:C5:94:52:64:90:DB:54:36:90:5D:F6:2F:31:D2
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 18DD
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/az_ofHpxxZRSZJDbVDaQXfYvMdI.roa
Signing time: Sat 22 Oct 2022 06:05:49 +0000
ROA not before: Sat 22 Oct 2022 06:05:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24165
IP address blocks: 180.218.96.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6365 (0x18dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:05:49 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6B3FE87C7A71C594526490DB5436905DF62F31D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:bf:78:a2:80:77:bb:4f:f7:c6:2e:be:f2:35:
69:01:3a:67:09:dd:d8:9f:a1:b3:09:b1:eb:7c:a1:
13:2c:2d:5e:b7:db:70:18:51:29:88:b6:42:b4:3a:
20:39:1c:f8:cf:66:96:4e:ff:b2:e3:b0:5e:41:0d:
f0:a6:ce:eb:09:58:9c:37:e9:3e:b5:93:5e:c2:ef:
8f:c7:84:c8:23:c9:c5:38:df:67:c7:02:e3:44:17:
57:d8:20:2e:ee:71:95:0b:b4:c2:e3:e4:a9:10:75:
f2:39:79:49:15:bf:24:e8:34:23:4c:6f:e0:6f:93:
85:bd:13:8b:b5:38:aa:21:44:34:91:c6:74:63:97:
a3:bd:cc:b5:77:cc:ac:b7:fc:15:36:fb:45:7e:db:
73:73:17:6c:26:6d:d7:48:07:10:e8:74:e8:76:24:
6b:d4:8c:1c:e0:86:24:e8:4a:68:91:e5:60:e5:11:
ea:d3:2d:d5:a7:f7:73:48:28:a5:60:e7:9c:04:e7:
46:8f:1c:49:6a:57:39:ea:b0:ac:41:9c:40:08:e4:
20:c8:55:37:52:92:c9:c5:00:ce:4f:1d:2e:bc:ad:
fc:2b:aa:11:f4:d7:4a:0d:2a:f3:de:26:fc:18:27:
e5:c6:12:16:5b:8b:e8:9e:6d:b6:b7:b5:de:e4:8b:
14:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:3F:E8:7C:7A:71:C5:94:52:64:90:DB:54:36:90:5D:F6:2F:31:D2
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/az_ofHpxxZRSZJDbVDaQXfYvMdI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.96.0/22
Signature Algorithm: sha256WithRSAEncryption
43:46:27:89:87:73:6f:b5:09:6b:3e:d7:33:8c:fe:38:73:7c:
d5:c6:32:c4:85:2b:be:f1:a4:1e:a8:0d:a5:71:78:7b:d4:0c:
db:66:88:b1:20:ad:ca:c1:d8:1e:e7:68:9f:ed:bb:e9:fb:a0:
17:63:1b:68:12:a7:91:ca:ce:a1:fc:e9:3a:cd:6b:ef:0d:d2:
ba:fd:8f:29:14:46:7c:23:71:61:ef:f4:d0:cf:ac:90:f4:35:
7c:81:c7:f4:34:53:a0:4f:d8:b5:4c:ec:25:e8:a7:e4:30:de:
a9:ef:ef:ab:bc:3d:8a:16:cb:29:be:80:7f:a6:ac:d2:e8:4e:
90:5c:66:91:19:58:dd:70:70:25:da:4c:1b:81:89:92:a5:d2:
68:7d:8d:d0:84:40:0d:b1:4b:2d:7c:7b:04:2f:64:8f:a7:c6:
43:99:37:91:b1:4f:02:88:59:c1:b6:ff:c1:46:ec:44:d6:4a:
b5:88:1e:73:f6:a0:30:71:9a:11:03:9d:dc:f4:7e:98:0d:60:
c1:64:83:18:cc:ad:5f:16:96:fb:d3:bd:e4:ab:5f:c8:93:70:
7e:12:20:ab:12:53:cf:d0:11:a1:bb:6c:6c:fe:da:d6:eb:6e:
79:b5:49:16:2f:b8:ce:31:06:21:68:18:e4:c4:0e:bc:2d:fd:
49:d5:a2:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:48 2024 by rpki-client on console-ams.rpki-client.org