Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-YbPjPHCMRAwC0wJdjhMpnMfSv4.roa
File: -YbPjPHCMRAwC0wJdjhMpnMfSv4.roa (raw, json)
Hash identifier: qGVwIzPJmL6O/yJlCbAlzXcbQ3XTStYGyBNaFcICSF0=
Subject key identifier: F9:86:CF:8C:F1:C2:31:10:30:0B:4C:09:76:38:4C:A6:73:1F:4A:FE
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1D84
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-YbPjPHCMRAwC0wJdjhMpnMfSv4.roa
Signing time: Fri 01 Sep 2023 10:14:56 +0000
ROA not before: Fri 01 Sep 2023 10:14:56 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24163
IP address blocks: 180.218.108.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7556 (0x1d84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:14:56 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F986CF8CF1C23110300B4C0976384CA6731F4AFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f9:9e:07:aa:67:e4:71:48:98:d9:f0:f2:74:
c9:f1:2f:86:05:56:b6:d8:87:bc:69:74:58:3b:b4:
02:a5:f0:aa:da:22:29:28:24:26:aa:52:ab:40:67:
b9:d2:ca:bd:b1:e1:9d:11:a2:c8:d5:27:d5:a1:45:
46:d0:73:ac:bc:7e:00:dc:ba:c6:2f:52:12:87:3f:
f1:d5:5e:29:42:8c:3a:97:bb:00:e1:86:50:99:e4:
e5:5c:91:37:d2:76:ce:2b:d2:38:f2:22:c0:38:1a:
c0:b1:07:5a:54:d6:c0:9c:c3:af:4e:11:92:bb:3f:
8e:f2:ae:2a:84:54:62:9f:2d:4c:16:5e:40:a2:34:
64:6a:09:ea:bb:4a:a6:42:94:17:3a:e9:ff:0d:52:
b6:fb:9e:bc:ed:1c:c6:03:23:6b:52:64:7c:cc:ef:
0d:a5:e4:e1:6a:ba:0f:8a:65:50:cb:2c:a7:8d:c4:
63:b3:2a:1f:99:ef:c5:fd:d0:a3:c0:bd:e7:29:f4:
56:3d:05:fb:7a:9a:9f:7c:52:9c:e7:7e:49:21:58:
fe:af:f1:fc:06:19:85:ad:ca:63:0a:ad:6e:91:d3:
65:75:30:d3:4e:db:1c:c7:0e:39:92:aa:5e:e6:04:
b1:6b:36:a9:29:37:0e:1e:57:57:4c:82:09:93:ed:
f6:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:86:CF:8C:F1:C2:31:10:30:0B:4C:09:76:38:4C:A6:73:1F:4A:FE
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-YbPjPHCMRAwC0wJdjhMpnMfSv4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.108.0/22
Signature Algorithm: sha256WithRSAEncryption
11:a5:16:cb:97:d2:e5:37:c6:ed:26:9f:34:1a:9f:b7:42:0d:
3a:05:6d:04:31:7b:b8:d3:06:51:c9:47:47:30:de:22:28:56:
6c:03:2f:1f:4e:73:9d:4d:c2:c0:6f:f1:fb:fb:65:a8:f6:cf:
3a:56:43:1d:00:1e:be:53:de:10:05:2b:19:c0:06:8f:4f:e5:
22:8e:37:bc:ac:39:9a:bf:d9:b3:b5:b5:bb:c1:89:0e:29:65:
44:02:ce:14:b8:6c:fc:fc:eb:b2:4c:6d:64:74:24:b8:6e:0e:
1b:9d:3d:99:aa:a7:34:63:be:bd:46:f8:bf:d1:56:e0:52:e7:
76:1e:14:45:d1:ce:b0:7b:42:46:54:f0:cb:78:df:e1:ec:66:
2c:55:72:f9:9d:4b:52:6d:c7:b8:08:42:d4:e5:19:09:cd:64:
62:cc:e4:1b:95:56:b2:d5:c9:dd:23:42:c7:58:1c:2c:46:8a:
f7:09:ff:ca:fe:31:3a:98:a4:bb:22:37:9c:b2:25:11:ff:22:
4a:73:0f:44:e9:ab:98:1a:45:96:03:51:b2:4d:4b:58:2f:ed:
f6:b1:08:63:28:65:6c:19:4e:f1:00:09:76:a5:c1:7f:7d:83:
24:8c:b9:34:01:3b:f2:ec:d7:08:f1:dc:67:f4:38:66:82:36:
05:c4:e9:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:01:33 2025 by rpki-client