Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BQyGeJFFxvPlaroJ_JpKOD3zhrU.roa
File: BQyGeJFFxvPlaroJ_JpKOD3zhrU.roa (raw, json)
Hash identifier: Yng5LLpi2JamXEvZxlB9X4jWTReANd3L3tAmuMG3ANs=
Subject key identifier: 05:0C:86:78:91:45:C6:F3:E5:6A:BA:09:FC:9A:4A:38:3D:F3:86:B5
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 17EA
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BQyGeJFFxvPlaroJ_JpKOD3zhrU.roa
Signing time: Sat 22 Oct 2022 05:47:14 +0000
ROA not before: Sat 22 Oct 2022 05:47:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 180.218.32.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6122 (0x17ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 05:47:14 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=050C86789145C6F3E56ABA09FC9A4A383DF386B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ae:c6:57:83:d8:3e:48:1c:75:bf:75:4d:6c:
75:a6:64:26:47:14:f0:bc:a4:f8:d0:80:eb:f5:f0:
f9:7c:72:6d:bb:70:10:b9:4c:23:d9:92:e6:f6:e4:
b1:3a:15:57:d9:3d:28:f9:0e:1f:4a:b5:2d:fb:bb:
59:55:74:23:5d:48:55:2d:bd:99:56:8d:1b:e8:ea:
46:50:52:1e:60:41:8f:33:85:ed:f3:31:8b:4f:df:
e8:50:ca:42:1b:41:21:c0:85:ed:e6:b3:42:79:05:
a0:35:d5:3a:ee:40:4e:d2:aa:52:aa:bd:cf:df:89:
0e:a2:a0:1e:e9:a7:b8:f3:31:69:92:56:b7:0f:95:
f9:71:f3:81:4f:51:16:84:12:0f:2a:32:f6:78:1a:
5a:c9:27:ec:ff:5c:01:fd:c2:e8:92:54:1f:df:75:
b7:d8:91:b8:65:81:10:60:36:57:8c:53:8f:63:93:
22:df:31:9d:e0:76:fc:61:0c:6b:71:5f:d0:4f:97:
63:78:07:54:87:32:ba:24:57:35:a8:11:57:42:c2:
39:da:77:69:a8:6d:4a:29:62:77:d3:84:11:56:9b:
65:9f:0a:2a:7a:7a:6b:4c:91:ab:47:a2:28:86:54:
00:a6:47:38:4e:2e:04:f5:c0:26:c0:f6:b0:64:9a:
39:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:0C:86:78:91:45:C6:F3:E5:6A:BA:09:FC:9A:4A:38:3D:F3:86:B5
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BQyGeJFFxvPlaroJ_JpKOD3zhrU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.32.0/21
Signature Algorithm: sha256WithRSAEncryption
54:02:42:19:dd:40:91:23:6c:6f:50:f0:c3:f9:23:64:4d:05:
47:e0:41:4f:8d:c1:dc:62:3c:7e:dd:a4:48:48:b7:2c:9c:3c:
ce:a3:55:ba:d1:8a:08:b8:b5:3c:cd:ec:ac:7d:07:67:01:17:
a4:fc:01:ef:5f:92:4c:65:c1:7e:e9:cf:db:db:7f:72:99:df:
6f:5c:a5:48:fc:1a:a2:0e:3e:8e:7d:8f:46:27:33:04:62:8f:
5a:79:51:1f:df:b5:4b:78:5f:ed:ca:b3:eb:76:73:bc:29:da:
e0:0d:10:45:b3:6f:dd:e5:16:f2:91:11:0a:75:05:12:92:65:
2b:5b:3f:d9:6c:58:0b:b8:20:9a:0d:12:d6:d9:8e:9f:0f:af:
0b:a0:60:f6:6b:4d:be:29:dc:56:5f:35:16:b3:c7:49:10:12:
b6:ea:93:13:ea:ec:d8:a1:e3:3e:27:7a:e8:d7:e7:77:7d:7a:
59:ea:d7:b1:b8:c7:7e:24:b3:9b:25:ce:c3:b5:ef:35:a0:3c:
e3:f3:03:a3:a2:3f:b0:cb:dd:72:35:0c:33:df:80:02:28:25:
a2:53:70:2d:18:6f:00:1e:4a:b6:e8:f4:8c:a2:6e:08:bf:2b:
9f:5d:e2:fc:58:66:b4:44:e1:e5:0e:e9:44:e1:df:55:e3:a5:
39:34:a8:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:45 2024 by rpki-client on console-ams.rpki-client.org