Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JKgPXpEoHmPeGTLQI6ikn4rJBV0.roa
File: JKgPXpEoHmPeGTLQI6ikn4rJBV0.roa (raw, json)
Hash identifier: pkAa3TMtoE9Sl2l+BZRlX15QvdRP8NGRXqj2wpkt3cs=
Subject key identifier: 24:A8:0F:5E:91:28:1E:63:DE:19:32:D0:23:A8:A4:9F:8A:C9:05:5D
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 105D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JKgPXpEoHmPeGTLQI6ikn4rJBV0.roa
Signing time: Sun 07 Feb 2021 12:44:24 +0000
ROA not before: Sun 07 Feb 2021 12:44:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 180.218.164.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4189 (0x105d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:44:24 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=24A80F5E91281E63DE1932D023A8A49F8AC9055D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fd:59:4a:09:30:29:e0:f5:ea:cd:6d:61:5c:
c6:3a:26:4b:bc:e8:ee:78:3b:72:3d:58:f1:be:aa:
bb:b6:3c:80:6c:4a:95:d8:0a:87:4e:0e:68:f4:0e:
28:ef:80:51:01:99:2d:84:b2:79:dc:28:b5:4d:b0:
25:85:02:37:97:e5:9e:4d:b8:ba:e2:79:e5:4b:b7:
7f:de:2c:a2:16:1e:07:15:10:dd:5e:ff:e7:48:97:
1a:2a:1a:60:dd:f9:de:b0:26:ef:d9:ff:f0:4e:9b:
15:9d:c1:c9:f4:fe:6c:b2:38:bc:80:ee:55:9f:0c:
93:a5:84:47:e3:97:be:60:28:f8:a8:12:d6:5e:89:
f4:49:f1:c6:b3:7d:6c:87:f4:d5:db:04:ad:54:9d:
9b:b3:78:7f:7a:7e:0f:25:0d:6c:58:10:f8:61:cb:
55:15:ad:76:0d:ff:a8:f0:35:8a:1d:8f:9f:3b:8e:
21:49:d1:58:45:0d:5c:12:61:14:bb:af:23:91:a3:
a5:cb:4e:d8:39:58:7e:5c:97:e4:2f:2d:24:8e:a8:
c8:cb:96:ef:90:00:5d:53:2e:33:0f:b5:87:96:71:
24:7d:8e:b8:72:d0:2c:3e:59:bc:dd:a2:b0:36:91:
af:3a:dc:ed:46:d8:39:43:35:09:19:35:48:4c:af:
34:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:A8:0F:5E:91:28:1E:63:DE:19:32:D0:23:A8:A4:9F:8A:C9:05:5D
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JKgPXpEoHmPeGTLQI6ikn4rJBV0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.164.0/22
Signature Algorithm: sha256WithRSAEncryption
05:b3:01:04:ad:19:e6:ad:2b:db:d1:00:82:b9:b1:fb:1c:ae:
61:df:7c:4b:cf:f0:31:30:8e:e7:3a:e1:bd:ce:c9:18:0a:df:
fb:9c:dd:86:cb:59:2c:2d:14:30:d8:a6:62:25:9f:d7:cb:a1:
07:97:82:b8:99:e0:43:f4:ca:1c:14:4b:8d:39:c6:22:11:43:
5b:5f:94:40:0b:66:3b:f3:2b:33:22:93:06:3f:1c:eb:62:68:
f1:9e:ea:36:a1:82:2d:a2:65:58:40:2a:9e:86:81:41:ed:61:
45:9c:82:40:c0:83:cc:2c:97:15:85:c1:3c:2d:30:20:9d:db:
1b:a1:81:68:ca:b9:f5:f4:91:5a:29:32:2a:b2:f7:fc:42:c9:
14:b1:a7:a9:7a:93:61:60:eb:06:54:eb:2a:ac:e6:0d:65:01:
46:1b:73:a4:3d:ad:ca:c6:62:7b:95:57:a9:4b:98:1f:88:18:
a9:71:30:4c:bf:25:b8:42:43:6d:93:8c:41:55:c7:f1:c9:3b:
80:1a:fa:ba:76:58:ff:8f:78:64:d3:6b:b7:c5:0e:c4:f7:38:
61:1d:77:f4:bf:b3:23:ef:6a:23:91:4f:db:96:b5:2b:f2:ee:
58:d1:d2:1e:9a:4d:25:ba:f6:a8:6c:2e:3d:e8:7b:ba:85:dd:
16:f0:b8:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org