Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MhJd5svxnjKpo9mwNC-ILDym5ps.roa
File: MhJd5svxnjKpo9mwNC-ILDym5ps.roa (raw, json)
Hash identifier: eIB+BMm/ZK7cJdP1SoFZSebpVjUEVZN16oWphSEkU18=
Subject key identifier: 32:12:5D:E6:CB:F1:9E:32:A9:A3:D9:B0:34:2F:88:2C:3C:A6:E6:9B
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0B10
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MhJd5svxnjKpo9mwNC-ILDym5ps.roa
Signing time: Tue 29 Sep 2020 10:07:58 +0000
ROA not before: Tue 29 Sep 2020 10:07:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 180.218.152.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2832 (0xb10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:07:58 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=32125DE6CBF19E32A9A3D9B0342F882C3CA6E69B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:52:bf:54:a8:d9:c7:f3:26:c6:7c:3d:51:37:
9f:f9:a3:89:b6:81:50:06:8b:30:0d:e3:bf:3a:29:
22:01:5a:20:e2:f5:9a:01:cb:10:8a:a3:6e:f6:82:
69:75:3d:3a:99:6b:56:79:15:6c:37:a0:5d:f0:ce:
94:94:ee:25:c4:b0:e1:3c:e9:e8:76:02:4f:ae:05:
64:9b:2a:fd:e5:08:da:f1:b7:fc:a1:4a:0d:ca:e6:
b8:40:56:8f:4e:90:04:82:38:d1:9e:72:f6:d2:60:
18:0d:9b:92:cf:46:2b:ff:33:ab:b0:b9:a4:27:09:
ec:d3:4e:9e:35:a2:09:0a:e5:18:b6:d7:c5:7f:89:
a7:e0:00:67:26:8f:03:f2:56:97:03:dc:7b:26:a1:
d3:d7:71:e7:e9:e2:e8:7b:f7:07:c8:6e:11:15:52:
cd:2f:e0:53:57:24:49:b6:8e:a3:6a:b3:ff:97:53:
c3:4e:d4:45:f5:bc:84:7c:fb:7b:df:47:99:11:45:
cf:5d:eb:54:6e:c9:41:b9:db:b5:49:e4:e3:5a:9f:
2c:b5:27:6f:b4:b4:08:b3:5f:ae:31:9d:c3:f4:5f:
b8:2e:20:6c:78:b8:79:13:79:59:b7:bc:e9:7e:0b:
eb:81:ed:38:f7:87:0a:ec:a5:ef:5d:0c:4d:69:29:
84:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:12:5D:E6:CB:F1:9E:32:A9:A3:D9:B0:34:2F:88:2C:3C:A6:E6:9B
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MhJd5svxnjKpo9mwNC-ILDym5ps.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.152.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:17:8b:c5:aa:f1:ca:9c:ad:dd:56:e5:9c:ce:a4:98:31:02:
00:fd:93:14:b3:61:d2:a3:e3:ba:48:9f:84:cc:44:92:6b:4e:
65:ad:5e:de:5d:30:8f:66:8e:9a:b0:bf:36:46:ef:07:d7:29:
0a:62:46:fb:b5:06:be:ab:27:18:c1:d1:d8:c7:ee:c1:09:56:
4c:29:6a:88:58:44:42:31:63:b4:17:4b:fa:45:01:3b:a7:02:
bd:ed:d1:99:6d:63:91:d6:bc:b1:e5:b4:69:d0:56:ae:f6:6a:
31:89:ce:47:91:48:31:6a:aa:1c:f8:c3:df:fb:2b:c9:df:cd:
d3:1c:01:51:7b:c5:3a:12:44:70:63:06:1b:14:25:1a:73:ff:
de:d9:e3:8e:34:f2:db:68:91:85:96:83:d7:76:05:83:c4:43:
12:b1:27:65:6f:39:5d:c1:2e:b6:2e:54:b3:56:43:a9:cf:15:
85:79:2e:2c:c8:4e:53:45:2e:bf:93:4f:ce:64:92:21:80:4a:
3d:3f:89:48:50:f1:2a:31:47:e5:02:92:43:43:1f:a9:5c:9d:
82:59:64:2d:6c:8b:36:2f:18:6d:8b:72:85:e2:75:22:dc:bc:
2c:de:d3:87:37:fc:6b:55:75:8d:f4:64:9c:f2:e1:4f:bb:7e:
c8:41:ca:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:36 2023 by rpki-client on console-ams.rpki-client.org