Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NcnhBPH1mZ3mOqYMtnvAEZu-3_s.roa
File: NcnhBPH1mZ3mOqYMtnvAEZu-3_s.roa (raw, json)
Hash identifier: O7iUJmBLHJ2sqIwnv2MgV23SeVmTJhB9LYZkTUsZ0Xc=
Subject key identifier: 35:C9:E1:04:F1:F5:99:9D:E6:3A:A6:0C:B6:7B:C0:11:9B:BE:DF:FB
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NcnhBPH1mZ3mOqYMtnvAEZu-3_s.roa
Signing time: Thu 15 Sep 2022 02:36:18 +0000
ROA not before: Thu 15 Sep 2022 02:36:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 180.218.160.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:18 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=35C9E104F1F5999DE63AA60CB67BC0119BBEDFFB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:5e:4b:db:9d:8a:dc:3c:1c:67:5f:79:90:d8:
e2:67:dd:ef:73:50:d2:8a:f5:29:8e:b0:b5:c8:a8:
e2:76:c3:6c:10:09:54:81:30:b7:c4:7b:8f:71:20:
85:ee:de:4e:92:bd:61:2f:ce:35:32:df:87:7d:78:
12:76:7b:24:e4:d4:9d:e7:ef:05:5e:e5:a8:03:48:
76:d8:0d:39:07:eb:05:c7:9d:72:da:25:34:16:23:
52:2f:ea:77:43:41:db:79:26:3a:bc:ed:38:ea:5f:
59:74:63:08:7a:55:f7:a9:b5:4d:41:04:1c:82:c2:
b6:da:5f:50:a3:85:fd:4c:5c:84:de:da:bd:7f:a3:
b9:7c:16:de:2c:f1:e1:2d:84:77:fc:76:62:1d:50:
11:aa:59:06:1c:7e:40:e1:1b:57:67:3a:54:95:e3:
2b:0b:ad:3a:aa:45:15:a3:fa:c0:e5:93:92:5e:d2:
29:ab:c5:f2:bd:ab:e5:07:f4:e5:35:83:a7:ce:d9:
30:77:34:d5:1b:81:f6:62:b8:4c:31:7b:04:62:d2:
af:14:ec:74:ca:2e:53:73:2f:9c:0f:39:bd:13:02:
29:b9:7f:76:fb:6b:d3:ef:5a:8d:38:60:9e:58:0c:
0b:32:c4:0f:b2:e0:37:b4:a5:b5:1b:69:ac:8f:c5:
2b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:C9:E1:04:F1:F5:99:9D:E6:3A:A6:0C:B6:7B:C0:11:9B:BE:DF:FB
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NcnhBPH1mZ3mOqYMtnvAEZu-3_s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.160.0/22
Signature Algorithm: sha256WithRSAEncryption
95:70:48:8c:1c:94:16:a0:77:26:59:f1:7e:1c:54:83:d2:e9:
8d:5e:a7:69:7f:ce:4e:5e:fe:d6:59:21:ca:94:58:52:73:4b:
b7:07:e5:01:59:41:01:f8:2b:64:09:0c:e3:e7:56:6c:7a:15:
ce:f9:d7:c7:b6:51:48:eb:23:16:7d:2f:8e:9b:07:cb:12:01:
4b:52:ff:52:c4:dd:9c:41:2b:72:16:cf:da:79:f7:5c:01:83:
5b:b9:f5:12:c4:1a:8d:87:49:90:7f:83:c5:4b:7a:f6:bd:69:
4b:ef:67:48:4b:51:31:f2:96:34:a1:b6:0d:a3:2f:ee:d7:4d:
7d:94:5e:66:f4:05:61:76:20:52:67:f3:1b:08:7a:73:7c:f6:
66:9d:4e:e4:78:09:65:2c:0a:d0:7a:5a:38:28:28:40:29:8f:
ee:bd:ae:2a:ca:2e:48:4e:89:23:06:42:63:b2:45:90:f9:43:
44:1f:0f:ff:7d:2d:2d:83:d7:ee:c3:74:ed:cf:b9:72:fe:ae:
13:79:b4:96:bc:2a:f4:49:45:a5:50:95:6d:11:09:7f:b4:07:
7c:c4:af:f5:f7:c4:cd:92:fc:50:3a:f3:c0:17:d6:74:23:1d:
a7:d4:10:2c:3d:17:34:8c:6d:a8:44:13:60:d8:62:1f:d7:65:
02:dd:96:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org