Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Gc58w3SPNx7GF41hPae50jhPKHY.roa
File: Gc58w3SPNx7GF41hPae50jhPKHY.roa (raw, json)
Hash identifier: J6fToeT3aRVq9HB1+G9RPEyON1omnQbrZ4xPUTiwvhc=
Subject key identifier: 19:CE:7C:C3:74:8F:37:1E:C6:17:8D:61:3D:A7:B9:D2:38:4F:28:76
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 112D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Gc58w3SPNx7GF41hPae50jhPKHY.roa
Signing time: Sun 07 Feb 2021 13:14:08 +0000
ROA not before: Sun 07 Feb 2021 13:14:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 180.218.104.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4397 (0x112d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 13:14:08 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=19CE7CC3748F371EC6178D613DA7B9D2384F2876
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:99:bb:40:34:12:ab:01:f5:b4:44:5f:00:60:
0e:e1:65:6b:35:f0:5c:5a:44:c0:7f:89:f3:42:be:
c2:53:26:71:7b:f8:d5:51:2b:98:a6:c0:4b:d3:32:
1e:7a:ca:a7:64:7d:2a:2d:ec:3f:ee:57:17:01:fb:
14:60:57:d0:0c:29:22:6f:81:7a:40:6c:96:a1:07:
b2:76:af:fa:ba:2e:e3:71:9d:bd:b6:c3:d0:51:9c:
bc:21:83:11:41:fa:5a:5b:34:fd:98:e4:c3:72:8a:
fe:5f:42:05:2e:8f:6b:3c:d4:59:6b:ab:6e:6a:5f:
9c:e0:7a:c7:5f:dc:b7:e1:70:0a:1f:d8:84:e3:a1:
41:e5:6c:3f:1d:76:2a:47:80:de:14:f3:15:1b:8e:
a5:62:7b:d2:0f:7c:aa:4b:0c:5e:00:e5:03:68:36:
a0:92:1f:38:35:1d:30:44:c4:ae:1a:65:89:4f:fb:
9f:56:80:7b:3d:ee:76:3a:83:05:51:10:ee:68:41:
ea:32:7b:9c:9b:de:95:28:73:16:13:b3:ad:9c:75:
52:71:4e:de:dd:cb:86:e5:5f:ed:7f:67:b3:f7:ac:
d2:a4:2b:41:e0:98:18:6a:c2:b4:bf:b8:01:d9:87:
30:93:d3:21:28:10:6c:09:d3:54:ce:71:30:fa:bb:
78:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:CE:7C:C3:74:8F:37:1E:C6:17:8D:61:3D:A7:B9:D2:38:4F:28:76
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Gc58w3SPNx7GF41hPae50jhPKHY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.104.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:f1:42:ef:78:c5:3c:d0:6e:46:08:8d:4b:73:1c:da:0a:b4:
9e:d0:c6:b0:0d:bd:96:41:47:af:9e:1a:d2:50:6d:4e:90:4e:
5b:3e:02:0f:62:ac:a7:17:18:49:fd:ac:a6:af:c6:e1:1f:3d:
96:23:d4:ed:9b:75:fd:38:a8:ab:c6:fc:fe:13:66:33:48:09:
ae:ac:34:da:3a:30:a3:df:26:01:b7:44:8c:63:30:4e:e6:db:
ff:8e:e6:c6:9e:12:32:f5:eb:85:26:27:5d:d5:40:d9:07:e7:
12:9a:72:f5:d1:dc:0d:41:79:6a:c0:e3:3d:68:01:d2:de:ad:
6c:48:c6:b0:83:3e:92:df:be:7f:01:a5:54:e3:70:73:10:02:
b8:ae:8d:20:54:36:ee:bb:c5:18:66:40:7f:c9:6b:c2:ab:1a:
74:1f:99:a3:75:f3:18:8e:59:7b:ae:bf:77:54:8f:d3:7b:08:
f7:6f:c6:7f:ea:0e:02:34:95:64:fa:62:80:c4:49:c8:d6:8c:
5d:0e:6c:a2:b5:07:d4:48:70:0a:56:8a:60:62:5b:ad:54:db:
f9:f7:47:df:9b:cf:35:ee:c1:ac:d5:ea:a0:b0:d4:99:d0:34:
e4:b0:53:78:e5:7f:d8:c1:ac:9f:25:7c:5e:94:e1:b4:f4:4d:
08:eb:2f:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:35 2023 by rpki-client on console-ams.rpki-client.org