Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NYh-vIiKPK7ee5yzEcCOCPr1C1g.roa
File: NYh-vIiKPK7ee5yzEcCOCPr1C1g.roa (raw, json)
Hash identifier: 1akuUzHKISaHCO0gchcz6/wegsCkbe5RI4h7s43BZu4=
Subject key identifier: 35:88:7E:BC:88:8A:3C:AE:DE:7B:9C:B3:11:C0:8E:08:FA:F5:0B:58
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 10FD
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NYh-vIiKPK7ee5yzEcCOCPr1C1g.roa
Signing time: Sun 07 Feb 2021 12:50:09 +0000
ROA not before: Sun 07 Feb 2021 12:50:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 180.218.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4349 (0x10fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:50:09 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=35887EBC888A3CAEDE7B9CB311C08E08FAF50B58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:4b:c1:38:bf:40:8b:ba:e0:f6:5c:ff:b0:bd:
ef:15:b5:67:9b:f8:f8:ac:de:4d:9c:ba:9a:9d:e6:
78:09:d0:ec:f6:61:83:86:48:b6:25:a2:d5:65:4a:
56:9d:1b:a6:79:87:89:48:db:fc:ff:e2:28:60:89:
ab:3f:c9:77:b4:d1:78:b9:c1:76:9e:41:e0:41:34:
8b:69:ec:91:e8:bd:4a:da:9c:ad:90:55:fd:aa:2a:
81:bc:5e:09:90:2c:1a:bf:96:9f:65:43:b9:31:1c:
71:45:30:5c:78:5d:24:32:9b:86:83:19:a1:2b:52:
a8:c4:93:bc:16:e5:76:c0:a3:0d:84:22:6f:ed:74:
10:87:54:e1:3f:21:ea:d4:d8:51:9c:e6:d1:c2:0d:
25:f5:44:8a:2e:68:25:60:cb:94:fc:07:94:cd:cf:
ad:b2:73:04:41:d8:c5:d9:07:ad:b1:5b:d7:2a:a3:
84:b9:87:56:53:8c:48:aa:76:d0:66:98:20:42:8a:
75:74:69:43:b4:1b:d5:84:1b:db:56:dc:e9:6b:36:
06:d8:15:66:d0:4c:ca:4a:22:4c:ed:6b:2e:fc:1a:
b1:00:59:7a:07:b0:28:0e:d8:cc:c3:6e:84:3a:e7:
bb:c3:e6:f5:05:01:33:5d:3e:cb:78:be:88:88:11:
f1:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:88:7E:BC:88:8A:3C:AE:DE:7B:9C:B3:11:C0:8E:08:FA:F5:0B:58
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NYh-vIiKPK7ee5yzEcCOCPr1C1g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.249.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:5b:d2:e0:e8:b6:d5:22:71:7e:cb:64:a6:f5:ab:34:94:8d:
12:a0:70:07:29:55:d0:6a:6a:a1:60:35:c3:f9:49:eb:cc:a0:
a7:91:5b:43:e8:e4:1e:2a:bc:13:b9:58:b3:a4:09:76:ab:fe:
49:55:e2:26:cc:59:cb:aa:d4:41:e5:44:26:68:91:47:cc:37:
63:15:03:b9:70:bf:09:f9:bd:d9:4f:f0:77:0c:ba:83:81:f8:
49:81:74:5f:66:6e:63:2b:ce:fb:ca:e4:55:08:e0:0d:9d:5f:
cb:8e:0c:75:a1:ff:f6:b9:fc:27:26:1c:e5:a2:a0:59:47:71:
c7:4a:c2:ea:eb:d7:73:a0:fb:2c:1c:d6:41:c6:91:40:c3:ce:
92:f7:0f:f3:00:62:59:9e:29:88:ae:b7:cb:5a:44:6d:61:5a:
a9:1b:f6:b9:2f:42:e2:1c:fb:e7:df:d9:38:a3:c5:bf:e0:39:
da:1c:34:0a:59:10:5a:ee:af:fb:1e:b9:0b:75:0a:d5:66:3f:
59:17:88:a5:bb:78:54:f0:3a:81:d5:9b:ad:ff:16:23:e5:74:
5e:a7:8f:89:aa:e5:bc:7a:b1:d8:f2:27:db:2b:c2:2e:21:ab:
28:95:24:ad:77:ba:c4:76:4e:a3:10:28:d4:85:30:c9:3c:a4:
38:0a:ac:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:47 2024 by rpki-client on console-ams.rpki-client.org