Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/tTzFsTM6vxkPhXKYFGumEk-c0oM.roa
File: tTzFsTM6vxkPhXKYFGumEk-c0oM.roa (raw, json)
Hash identifier: Vg9x7oW0612B+lVIhfi9oC8H2hdRS2xIXV4PrLDOLOg=
Subject key identifier: B5:3C:C5:B1:33:3A:BF:19:0F:85:72:98:14:6B:A6:12:4F:9C:D2:83
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1997
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/tTzFsTM6vxkPhXKYFGumEk-c0oM.roa
Signing time: Sat 22 Oct 2022 06:06:43 +0000
ROA not before: Sat 22 Oct 2022 06:06:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 180.218.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6551 (0x1997)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:06:43 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B53CC5B1333ABF190F857298146BA6124F9CD283
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:99:a9:01:f2:82:5d:37:40:3e:c6:0b:71:b5:
bd:cd:70:fa:7a:bf:2f:f4:91:46:8d:ce:2b:bd:1e:
20:34:30:ee:02:2e:8d:32:88:ef:4d:0f:16:76:c3:
d1:dc:f4:f6:88:c8:b6:07:25:be:d6:0a:15:f0:d3:
6f:b7:33:36:95:1c:fb:0f:47:57:52:73:3a:9a:e4:
5b:08:83:27:b6:a1:20:57:b7:2f:a7:82:f4:3a:6d:
48:cb:6a:39:f6:83:ab:3a:fc:62:d6:e2:18:11:5c:
ff:47:a5:2d:54:84:47:fa:9a:fd:2d:99:48:53:1e:
6e:7e:82:72:d1:00:ea:95:9e:6c:00:c8:fd:8e:3d:
ee:e0:ab:b5:c8:e8:58:5e:76:2b:d7:ba:85:80:d7:
b7:81:01:35:46:ab:64:21:ce:3a:f5:3c:ea:45:27:
37:0f:1b:f8:6c:32:84:a8:58:0f:9a:53:59:70:f7:
bc:14:09:1a:52:a1:ae:9e:43:fe:fb:96:68:30:df:
97:80:f7:5f:7f:e3:0a:57:3f:6c:b3:f1:23:f9:30:
53:40:54:2f:e9:ca:6e:5e:ce:3c:e0:bc:06:ca:de:
a2:15:f9:a8:51:58:b9:cf:ee:ea:94:df:ee:9e:b8:
87:bd:b5:71:c3:67:f4:38:89:2c:11:ef:5c:da:43:
cf:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:3C:C5:B1:33:3A:BF:19:0F:85:72:98:14:6B:A6:12:4F:9C:D2:83
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/tTzFsTM6vxkPhXKYFGumEk-c0oM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.134.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:b4:1e:c0:a0:c3:72:69:48:09:98:19:8d:dc:77:9b:3b:9a:
3d:7f:65:ef:fa:6c:1b:e6:77:4a:f4:b3:38:36:1c:8d:96:13:
fe:eb:00:2f:a2:ab:97:a0:35:cd:7d:11:c6:b0:8b:4a:c7:d5:
02:ac:64:08:0d:ab:45:eb:3f:ac:5d:1e:e3:00:ab:4d:26:93:
17:32:ff:f9:5d:c1:9a:06:18:23:33:ec:7e:fd:d1:14:aa:6a:
58:8d:d3:29:bb:74:aa:e1:02:52:e4:b3:6c:8a:e0:ce:d8:72:
59:8c:5e:c1:67:36:e8:ea:47:69:b2:38:25:e8:5a:1e:59:a2:
63:c0:55:81:ab:37:40:3d:87:55:62:29:9f:ca:32:09:ab:c5:
aa:00:8d:00:0c:bc:d5:09:76:04:e0:f7:09:fd:08:18:65:0f:
39:a5:93:6c:29:e0:e3:bd:65:df:6d:5d:7d:bc:01:32:e4:9b:
a5:f6:b7:91:7a:0d:6c:5f:4c:71:e1:20:78:1e:12:08:87:1e:
4a:2a:83:9b:c9:b6:ea:f2:c2:53:39:9e:28:36:e3:07:af:85:
aa:0f:a0:a9:9d:8b:16:1d:d6:bb:6e:c9:df:3a:2a:8b:ed:54:
ab:55:e8:38:87:b9:2b:0a:d1:30:7e:ff:af:56:e8:75:ef:4a:
d9:52:54:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:50 2024 by rpki-client on console-ams.rpki-client.org