Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KXKt8Z_OFzBTHuYd0DjsiPSvAu8.roa
File: KXKt8Z_OFzBTHuYd0DjsiPSvAu8.roa (raw, json)
Hash identifier: enFTreB7iNL3nImUShg8eFxK/64MfQIP6LjrLSnSz80=
Subject key identifier: 29:72:AD:F1:9F:CE:17:30:53:1E:E6:1D:D0:38:EC:88:F4:AF:02:EF
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KXKt8Z_OFzBTHuYd0DjsiPSvAu8.roa
Signing time: Thu 15 Sep 2022 02:35:43 +0000
ROA not before: Thu 15 Sep 2022 02:35:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 180.218.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:35:43 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2972ADF19FCE1730531EE61DD038EC88F4AF02EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:90:ac:82:81:c2:50:be:10:fa:72:3d:e5:f8:
c6:a6:67:b8:43:e4:f1:fa:6c:9a:1b:e8:62:9e:d2:
96:01:10:2d:8e:0e:d9:b1:3c:0d:1f:a6:a7:e4:59:
7b:0d:69:b9:ad:11:fc:6a:92:26:f4:e8:b0:3c:fb:
05:c1:87:57:99:70:6a:3c:85:05:63:f6:ff:3c:2e:
83:51:e3:18:a1:d8:8d:87:e2:35:ee:40:35:cf:2b:
cf:f7:1f:ec:ef:45:98:d4:ac:b1:7d:26:de:35:81:
af:7a:8b:d6:58:fe:e3:75:d8:24:ce:d1:00:16:b4:
54:e4:58:59:3a:17:4b:64:06:19:b5:ae:f4:dc:b4:
8d:a5:e5:09:9f:ce:c9:fe:df:66:f9:20:3d:7c:25:
ae:a2:8c:6e:44:23:60:b4:8a:26:25:60:2e:e9:f9:
7b:bf:88:61:d9:46:5b:43:2e:58:4c:38:8c:30:b9:
b9:81:b8:ab:5a:a3:f9:3d:ca:80:8f:ac:07:ad:1e:
b3:d0:78:14:8e:e2:64:f9:64:6e:6c:ad:63:60:7a:
5f:19:cb:0a:ef:50:fc:db:17:11:49:80:cd:88:5b:
20:ca:7c:7d:1b:44:b6:17:3a:9c:69:f9:e4:10:8a:
4a:13:92:2e:93:16:84:81:fc:49:86:22:59:57:bd:
25:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:72:AD:F1:9F:CE:17:30:53:1E:E6:1D:D0:38:EC:88:F4:AF:02:EF
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KXKt8Z_OFzBTHuYd0DjsiPSvAu8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.137.0/24
Signature Algorithm: sha256WithRSAEncryption
62:89:ba:2f:ee:33:e0:76:3f:31:76:3c:05:e7:88:38:03:b0:
97:7e:c2:ae:ff:99:c4:b8:35:d3:af:0c:62:e1:a5:cf:0e:0c:
b2:9c:1e:69:5a:26:a4:30:52:3d:6e:a3:82:8d:a5:91:2d:4e:
b1:75:ac:3d:ab:ff:0d:7a:6e:2c:9d:42:c5:43:c3:62:72:46:
f3:db:f3:5e:00:50:df:00:86:9b:c8:a1:4c:a2:47:c9:15:53:
17:8f:36:41:bf:1c:e2:d8:02:f5:eb:39:a3:d0:5c:3a:f8:4b:
11:31:81:dc:74:9a:60:f3:1d:d8:7a:45:39:08:16:30:a5:a7:
4f:ef:41:6d:d3:02:ac:46:3d:bd:bc:49:2b:df:c0:5e:84:96:
08:69:44:d9:25:d7:15:8e:6d:bf:ce:82:6a:ea:19:59:9c:7a:
2a:a1:bf:e0:e3:1e:f1:71:9d:d1:07:f8:87:b5:e4:67:30:b0:
74:b5:4a:9c:e9:a0:9a:61:29:2b:81:2a:22:95:ba:b9:b9:b0:
3b:7b:ed:46:35:15:26:bf:f8:42:78:0b:31:59:2b:39:86:60:
ba:3f:1c:f5:98:0a:b3:34:bb:83:55:f1:91:4c:24:ed:a8:a4:
bd:5a:5b:3d:4d:e4:9e:96:b1:45:b9:a5:1f:73:48:4c:2f:ce:
dd:fa:07:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:55:27 2025 by rpki-client