Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3X12RpaeSauT67t_89am5GIB5QE.roa
File: 3X12RpaeSauT67t_89am5GIB5QE.roa (raw, json)
Hash identifier: UrCNH1mcxfznOqhFrqB+m0mL0ljpbgmys/4VD5sttQQ=
Subject key identifier: DD:7D:76:46:96:9E:49:AB:93:EB:BB:7F:F3:D6:A6:E4:62:01:E5:01
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1D99
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3X12RpaeSauT67t_89am5GIB5QE.roa
Signing time: Fri 01 Sep 2023 10:15:03 +0000
ROA not before: Fri 01 Sep 2023 10:15:03 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 180.218.132.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7577 (0x1d99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:15:03 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=DD7D7646969E49AB93EBBB7FF3D6A6E46201E501
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:cc:1c:14:72:07:df:c4:09:9e:9d:66:ac:62:
58:49:03:05:c0:4a:2e:66:81:f7:46:5e:11:7b:d3:
4c:10:4d:a4:95:9b:ba:f7:9d:fe:b5:de:0b:55:15:
3a:1d:b5:c9:e6:77:5b:ac:58:1e:ef:74:db:74:f5:
49:ea:9c:88:08:00:f0:d4:59:56:98:e0:34:63:ba:
ab:71:86:b2:08:3c:e1:80:1c:0a:59:fa:f6:c0:1b:
b3:75:b5:1b:57:a0:90:aa:5f:1a:c7:83:c3:f6:73:
60:77:c8:2b:e0:2d:f6:0e:61:86:ed:dc:e8:52:96:
ad:ce:08:07:65:08:e8:0e:38:62:6b:c2:c3:6b:8d:
54:15:9b:82:50:7b:4c:cd:79:12:02:23:cf:4b:c6:
ea:05:56:76:37:1b:4b:88:b3:42:7d:3e:35:05:32:
0c:97:59:18:c0:27:b7:08:73:60:4a:8c:bd:68:92:
7c:c9:ca:2e:f2:48:e1:82:14:c1:eb:32:d9:22:05:
42:4c:6d:7c:81:69:0c:47:d2:ab:57:bf:10:c5:b7:
67:f9:90:cf:2a:e5:c5:7b:3b:e9:9d:1a:68:48:f0:
bb:82:07:80:a7:f9:fc:1c:84:01:20:ea:23:ce:bd:
37:18:63:8e:6d:66:4a:fc:2d:44:5a:68:60:34:ac:
79:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:7D:76:46:96:9E:49:AB:93:EB:BB:7F:F3:D6:A6:E4:62:01:E5:01
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3X12RpaeSauT67t_89am5GIB5QE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.132.0/23
Signature Algorithm: sha256WithRSAEncryption
86:98:63:7c:13:1d:6e:0d:87:d8:5c:b5:3a:11:c3:80:c1:1c:
a1:f4:ef:0a:0e:a8:40:1f:0a:95:d1:62:bb:84:da:9d:5f:22:
65:0f:6c:05:ff:c3:bc:c3:0b:77:0b:88:fe:f6:19:0c:b4:55:
0c:eb:71:27:a8:39:a8:c8:61:d7:05:92:67:05:4d:aa:f7:f9:
cb:dc:7c:db:ab:ed:4e:6a:76:12:2b:c9:0d:4f:91:bc:9f:a4:
c8:78:c2:a6:d7:fb:1f:69:60:f9:b7:88:a0:3e:b2:3f:a1:ba:
5f:5d:ff:b2:44:83:00:5c:ac:98:9b:45:a5:98:ea:72:54:72:
98:6d:ac:28:5d:e1:ef:54:75:c3:71:62:03:5a:4e:9a:54:51:
a1:1d:a5:fb:71:28:11:f2:15:eb:85:c6:8b:ca:32:b3:c0:46:
0f:44:e5:14:5e:da:a3:c5:ba:89:26:27:a4:5d:81:04:7e:65:
06:4d:54:d6:4d:80:7d:4e:a9:64:6e:7d:12:ec:cf:8f:45:b6:
f1:05:f1:7e:ca:e6:3a:32:82:1d:25:5f:b5:63:40:0f:a3:fe:
7e:65:ad:14:6e:89:ba:41:3e:7c:be:78:6f:ff:c1:e0:8a:26:
b2:e9:b4:9c:30:e7:f2:5e:a5:01:36:91:d6:0f:02:3e:cd:08:
81:47:97:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:56:08 2025 by rpki-client