Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3wR7WEAOFX9KOMITTut04NAQINI.roa
File: 3wR7WEAOFX9KOMITTut04NAQINI.roa (raw, json)
Hash identifier: vcgnFQGrgG+nF2Tsn+3CE7yWbF3/jd5QQ0X9pylkiV8=
Subject key identifier: DF:04:7B:58:40:0E:15:7F:4A:38:C2:13:4E:EB:74:E0:D0:10:20:D2
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3wR7WEAOFX9KOMITTut04NAQINI.roa
Signing time: Thu 15 Sep 2022 02:36:28 +0000
ROA not before: Thu 15 Sep 2022 02:36:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24165
IP address blocks: 180.218.104.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:28 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DF047B58400E157F4A38C2134EEB74E0D01020D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a9:67:1f:b4:68:a4:84:bc:2c:c2:6e:5f:6c:
e3:cb:34:50:d3:70:a4:64:ae:28:bf:66:cb:f8:90:
78:8a:ed:1a:8c:2c:23:ca:65:74:2a:ed:74:1d:86:
fa:79:d7:0a:4b:67:3e:7a:77:2a:d6:39:ff:b5:d4:
e9:cc:27:d4:ea:71:78:6d:80:58:99:0f:21:88:b3:
db:b1:d6:64:24:d9:dd:03:ce:aa:68:9b:15:e6:3b:
37:35:58:36:c0:de:b5:d2:3c:0f:68:e9:d8:13:66:
21:21:84:91:de:a9:dd:91:36:27:2c:dd:7d:44:30:
36:bb:80:ee:15:36:48:09:0d:d7:f8:36:a5:f8:ad:
15:e0:79:65:8d:d9:c5:ae:cb:4c:49:e2:98:e8:54:
ce:32:a6:f1:87:c4:d5:4d:37:b1:31:ad:c5:95:70:
ba:9b:a8:f5:dd:10:7f:a1:a7:86:2b:8e:47:6a:79:
cc:d7:35:78:ad:23:bd:be:25:6b:da:04:09:59:bd:
3c:e2:b9:f8:d7:e7:01:b2:bd:98:8d:c8:ff:a2:02:
9f:01:b3:a9:63:2c:51:65:9c:82:d8:b2:b3:db:6f:
3e:6a:8c:40:1a:0a:61:69:57:69:6b:be:a9:05:2d:
5e:cb:cc:ea:09:55:21:30:07:f3:38:6b:71:48:f0:
db:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:04:7B:58:40:0E:15:7F:4A:38:C2:13:4E:EB:74:E0:D0:10:20:D2
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3wR7WEAOFX9KOMITTut04NAQINI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.104.0/22
Signature Algorithm: sha256WithRSAEncryption
15:10:2e:ed:21:df:a9:52:52:f4:6b:8e:a1:5f:e7:d7:a5:e2:
78:d3:09:54:1a:5a:f4:fa:1b:1d:b5:8d:8d:10:58:17:64:04:
1d:4f:18:b7:b1:3c:3a:e3:0f:e4:5b:76:31:2b:b6:f2:37:b4:
2c:d8:07:cf:df:80:9f:bb:1e:01:fa:1f:86:d5:50:ee:e0:57:
63:2f:f8:b5:74:1f:53:0c:9f:bb:0f:77:23:96:65:f1:6e:4a:
c2:2b:c2:54:74:63:0a:2d:28:f1:b2:34:59:ef:4f:d1:30:b9:
7e:f0:97:0f:ca:9c:78:29:dd:29:35:63:17:1f:df:97:73:a1:
ae:59:0e:f2:5d:a8:e7:4e:24:56:00:3c:04:5b:3d:89:59:f4:
f9:64:10:e2:b0:a6:0d:31:7d:a5:ba:c2:47:f3:d4:30:ce:32:
b4:d5:c1:c5:33:b9:71:fa:cd:c2:e9:31:14:d6:b0:f3:ad:99:
02:37:08:3d:4c:7d:1b:a5:96:2a:d6:92:12:d8:80:70:76:e3:
ac:e8:42:08:24:27:6b:72:e8:04:7e:2a:b0:12:b4:6c:1f:62:
c3:a1:06:9f:26:23:2b:a4:86:46:42:08:5a:bf:03:0e:1f:3c:
1b:33:bd:f6:65:ab:0b:4b:b4:24:44:f0:2a:6c:95:85:23:f9:
a4:87:4a:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org