Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3xaJOG-zkcdvbg_HP7qQX_dNqVg.roa
File: 3xaJOG-zkcdvbg_HP7qQX_dNqVg.roa (raw, json)
Hash identifier: s9sidZFQEpRvlqbXsxCeNM7L9qNR3/iIEUTibhDUQek=
Subject key identifier: DF:16:89:38:6F:B3:91:C7:6F:6E:0F:C7:3F:BA:90:5F:F7:4D:A9:58
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1316
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3xaJOG-zkcdvbg_HP7qQX_dNqVg.roa
Signing time: Wed 29 Sep 2021 02:55:22 +0000
ROA not before: Wed 29 Sep 2021 02:55:22 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24163
IP address blocks: 180.218.224.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4886 (0x1316)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:22 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DF1689386FB391C76F6E0FC73FBA905FF74DA958
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:6c:b4:e5:10:1c:35:f1:ce:d8:e4:ce:9d:20:
5f:33:f0:03:49:ba:b2:21:88:0e:b0:fc:4c:70:4e:
1b:e0:3d:cb:95:bb:12:29:1c:87:2b:16:c7:a6:8a:
13:40:7e:53:ec:0f:d3:fb:fc:fb:de:12:ad:99:e6:
96:de:00:78:4a:46:b4:b8:83:0f:c3:35:04:68:5e:
93:7e:c2:01:ed:44:f2:fc:5a:99:94:e9:61:54:b3:
c5:9d:db:ab:a4:c2:b6:58:69:c1:d2:2f:df:66:bc:
1f:4c:9c:99:aa:e4:5d:fe:d1:97:96:48:4c:12:5f:
6c:2a:81:60:8f:f3:e3:14:c0:6d:c6:6f:97:00:2e:
d1:04:64:8f:58:90:85:88:3e:dc:bd:01:4a:c4:15:
bd:8a:51:ca:03:6e:f6:b6:7e:0d:ef:bf:a1:6e:17:
84:c2:f5:2f:3b:c0:2a:5d:90:da:04:6b:56:32:ed:
d3:9b:87:95:ff:ac:25:dc:01:1f:98:c4:56:a2:22:
3a:c4:62:c7:14:c0:dd:2d:25:a6:13:bf:48:c6:29:
7c:de:43:af:88:1f:aa:c6:6d:a4:88:5f:21:13:9b:
d6:28:9e:89:73:e4:e1:6f:7a:8f:9d:b7:29:b3:53:
14:57:45:4d:15:41:eb:d7:c7:de:80:b7:b8:c3:74:
0d:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:16:89:38:6F:B3:91:C7:6F:6E:0F:C7:3F:BA:90:5F:F7:4D:A9:58
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3xaJOG-zkcdvbg_HP7qQX_dNqVg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.224.0/21
Signature Algorithm: sha256WithRSAEncryption
67:ef:02:b0:26:cb:7d:4c:66:5f:08:c0:9e:6b:83:72:df:2e:
73:e9:9b:d5:88:07:ae:1b:95:1a:ed:c0:09:5f:6b:14:02:0b:
e4:22:05:08:5e:f2:9d:cb:e8:64:3e:00:68:e8:c8:b9:0c:d7:
fe:93:ab:96:8e:bf:72:02:6d:06:d0:e8:da:73:fe:ba:29:2d:
c7:f0:0d:7f:42:2a:fb:a9:62:d5:77:fb:3c:82:91:a5:02:7d:
7d:55:ec:67:a8:8e:b9:87:c1:1e:f6:00:cc:b3:0e:0c:69:de:
41:b6:96:29:43:9b:2c:d0:3d:49:51:61:47:68:64:0b:5d:8b:
d9:fe:46:29:1d:a2:d7:fc:3e:20:15:eb:7b:39:9b:f3:75:7c:
f8:07:f7:f6:23:8e:74:c4:2b:ba:92:6f:cc:99:60:1f:d2:06:
26:bb:5b:4f:28:34:5e:18:67:f8:d3:46:66:05:17:68:42:04:
36:e0:a9:29:a4:dd:dc:f1:bd:44:9d:02:25:f4:8d:87:9e:c2:
67:10:ab:e5:10:88:c1:38:a5:6c:a8:20:41:2e:d8:5f:82:de:
8a:fe:c0:ab:04:46:e0:46:cd:91:6e:80:6a:3a:af:90:9b:f9:
78:4d:55:66:51:10:20:9b:41:ec:92:21:41:2c:11:04:cd:cc:
50:1a:c0:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:33 2023 by rpki-client on console-ams.rpki-client.org