Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FG9cefqkJblh-CuRgr_JBXeM6VI.roa
File: FG9cefqkJblh-CuRgr_JBXeM6VI.roa (raw, json)
Hash identifier: I/TbEEQcRABEAlm0Wh9yLf+qCXyRkddRb3umpG+B1ws=
Subject key identifier: 14:6F:5C:79:FA:A4:25:B9:61:F8:2B:91:82:BF:C9:05:77:8C:E9:52
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 132B
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FG9cefqkJblh-CuRgr_JBXeM6VI.roa
Signing time: Wed 29 Sep 2021 02:55:26 +0000
ROA not before: Wed 29 Sep 2021 02:55:26 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 180.218.128.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4907 (0x132b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:26 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=146F5C79FAA425B961F82B9182BFC905778CE952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:45:7b:68:0c:d3:20:dd:d4:4a:e1:02:c8:1a:
a9:d8:7f:e0:f9:3b:6d:8e:e1:28:d0:0e:ed:7a:ab:
89:19:23:de:cc:d9:1a:0c:0b:8a:43:62:8d:85:41:
a4:2f:41:af:dd:43:0c:b2:03:ae:84:61:0f:1d:44:
30:f1:b3:fb:0e:3c:21:a1:d2:05:95:c2:ac:7b:fe:
aa:2e:c2:9f:b1:2a:8a:5a:9b:ef:3c:f6:9b:b4:2b:
2e:84:24:24:19:e8:d6:9a:0c:50:12:6f:20:df:04:
23:48:fd:e8:d3:ed:1a:a6:bf:dd:ad:97:31:38:47:
4b:7a:75:ce:8d:5b:41:f7:34:bc:e6:ec:df:21:82:
d7:73:a3:9b:65:4b:22:77:09:a9:a9:ec:0c:a9:20:
d0:bc:47:61:e1:6c:3c:6a:a1:74:ad:25:76:a7:c9:
cd:f3:3d:ab:75:4d:14:13:96:50:8a:83:97:dc:3e:
8e:72:1b:f3:24:2e:07:f4:a8:e3:ff:7b:ba:0d:f6:
df:a8:29:57:08:04:c4:6f:07:c5:3c:59:83:97:72:
d6:31:56:15:6c:51:fd:ce:77:5f:5d:ff:ff:64:0f:
07:9a:01:63:b7:1c:fc:c5:9f:ed:27:c1:84:94:34:
90:6a:c0:98:37:d8:59:1f:43:c8:ae:1a:bd:be:a1:
04:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:6F:5C:79:FA:A4:25:B9:61:F8:2B:91:82:BF:C9:05:77:8C:E9:52
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FG9cefqkJblh-CuRgr_JBXeM6VI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.128.0/20
Signature Algorithm: sha256WithRSAEncryption
25:ee:9f:19:18:55:97:6a:c0:03:ec:59:36:b5:a2:eb:85:76:
1a:47:ba:4f:b1:84:21:30:a1:05:14:f9:8f:4c:00:a4:72:19:
5b:7b:f4:0e:df:48:79:7f:e7:20:20:80:b3:12:ed:67:e3:a9:
3d:21:b2:bd:97:8a:57:35:1d:70:19:e4:87:3f:e5:bb:5a:82:
67:00:63:4f:1d:0f:f5:c7:eb:cd:55:2a:d0:37:13:4a:99:2e:
0c:a5:c5:ce:e1:c0:2e:46:2f:e1:02:fa:82:16:bf:bc:71:c5:
ae:8e:0a:6b:fd:0e:81:eb:95:a8:81:79:9b:84:76:95:7e:2d:
13:a4:71:a9:be:fe:87:11:e4:47:5c:92:2d:95:50:47:34:60:
6a:b3:a6:03:43:1c:58:fd:15:d7:7a:8f:6e:27:ca:8f:36:d4:
0f:d0:2e:2f:bc:d7:dd:c2:2a:67:87:96:50:30:99:d6:3d:86:
2b:20:d7:44:2d:28:a9:2f:33:2f:13:7b:34:72:e5:6a:5d:2c:
d7:d8:73:98:73:33:1b:a4:5e:ca:75:31:86:ba:7d:40:a0:ad:
92:b5:4c:b4:57:54:9b:62:97:b7:e1:02:9c:80:cf:21:67:ad:
ed:f5:9d:19:6d:9a:7f:cd:e7:47:cc:7a:e8:fe:16:3e:75:05:
e3:32:1b:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org