Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yZJ5YLRpIBI2a5qlpVpqWXJWqrc.roa
File: yZJ5YLRpIBI2a5qlpVpqWXJWqrc.roa (raw, json)
Hash identifier: 1spYXI+sz+QTToEZXUb8WVcouVfGj5PemGieWKCxZ/A=
Subject key identifier: C9:92:79:60:B4:69:20:12:36:6B:9A:A5:A5:5A:6A:59:72:56:AA:B7
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12E1
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yZJ5YLRpIBI2a5qlpVpqWXJWqrc.roa
Signing time: Wed 29 Sep 2021 02:55:06 +0000
ROA not before: Wed 29 Sep 2021 02:55:06 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 180.218.48.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4833 (0x12e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:06 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C9927960B4692012366B9AA5A55A6A597256AAB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d4:fb:52:7c:27:24:d5:c4:a2:0e:b2:75:2b:
3c:3d:ae:1d:9e:3f:85:7b:ea:4a:b9:46:cb:34:96:
f6:d9:f0:9c:9e:a2:20:c5:81:2f:76:9a:c8:4d:9c:
7a:00:71:76:16:86:82:40:96:98:28:b4:92:7e:71:
3b:5e:a3:02:ad:3e:65:7a:d9:c1:38:b2:08:a6:f8:
63:27:3e:57:21:15:e8:c1:1f:f4:39:3b:bb:5a:ee:
82:13:7d:01:a4:94:ee:ba:0b:ea:b1:35:99:10:c6:
db:39:32:04:fe:b8:3d:cc:8d:1b:c4:c9:db:f9:f5:
fd:04:90:81:8c:18:cd:5b:ab:43:18:57:90:33:d6:
31:71:49:1d:76:da:f4:ba:ed:22:40:fb:c5:53:e8:
7f:f4:c3:dd:02:86:20:7f:6b:16:d3:99:7a:54:00:
ff:88:8c:06:c7:24:df:5a:55:f6:9b:c5:3c:03:d4:
57:37:6b:ec:e7:47:4a:60:22:c9:a0:be:7d:89:8a:
4f:44:b8:de:47:1c:b8:e6:5d:8b:15:e8:3b:53:29:
67:26:d8:72:39:be:ce:5b:8d:4b:03:27:68:27:d9:
75:62:25:db:ca:41:e9:19:db:4f:cd:80:b7:06:7f:
da:f5:c9:d0:52:4b:7d:ac:1d:5b:da:3a:42:e5:e4:
c5:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:92:79:60:B4:69:20:12:36:6B:9A:A5:A5:5A:6A:59:72:56:AA:B7
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yZJ5YLRpIBI2a5qlpVpqWXJWqrc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.48.0/21
Signature Algorithm: sha256WithRSAEncryption
81:bd:ff:1b:c4:18:13:4d:32:ff:c3:d7:c4:25:e2:e6:ac:d5:
74:74:f5:6b:5f:f1:17:bf:ae:43:7a:a4:25:1b:4d:7d:9d:7b:
96:47:a1:bf:b2:25:1d:c1:5d:f7:98:e1:1a:fb:15:4f:be:ce:
61:68:b8:20:eb:9e:28:5f:c4:52:48:37:0f:d7:94:27:68:87:
15:69:85:26:75:82:17:ff:e0:01:0f:26:e0:0d:6b:f0:d6:d8:
9b:3a:10:fc:af:de:61:f3:05:ec:bd:43:72:1d:23:24:1b:a9:
11:35:9e:7e:d5:18:09:33:8c:ca:96:82:f1:b1:52:bd:18:e5:
0e:37:c4:4d:b0:1b:77:75:b3:a6:e3:e5:94:58:be:d9:1a:19:
5c:12:ce:d7:ae:a9:a8:e8:f8:fe:c0:68:0a:e7:76:2a:07:05:
b3:4d:76:47:bc:8f:fe:32:d4:e4:f9:e2:5f:07:e9:86:9c:66:
67:a3:01:76:18:b6:5e:f8:7a:23:12:8c:51:fa:21:c6:5b:47:
29:31:bc:0c:37:ef:e2:73:0c:ff:58:98:dd:9d:17:02:54:a2:
7d:86:55:a8:7f:18:d0:97:25:bb:5e:58:a6:5b:a2:05:b6:fa:
6d:72:75:84:58:77:b8:bf:12:f3:13:2a:c6:81:01:13:34:f9:
5a:8f:49:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org