Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NoQcWHb7ZEOaiBv9h0gs5-ZfVnM.roa
File: NoQcWHb7ZEOaiBv9h0gs5-ZfVnM.roa (raw, json)
Hash identifier: lBxdXsAdkSBssK0gOReKs9oBGtgCBfbN5Uux606CHQg=
Subject key identifier: 36:84:1C:58:76:FB:64:43:9A:88:1B:FD:87:48:2C:E7:E6:5F:56:73
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1358
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NoQcWHb7ZEOaiBv9h0gs5-ZfVnM.roa
Signing time: Wed 29 Sep 2021 02:55:39 +0000
ROA not before: Wed 29 Sep 2021 02:55:39 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24165
IP address blocks: 180.218.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4952 (0x1358)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:39 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=36841C5876FB64439A881BFD87482CE7E65F5673
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:cf:81:24:41:97:71:44:47:ad:a5:41:9f:83:
c3:f7:9e:e8:0a:82:bb:96:cd:89:a7:80:b0:e4:5b:
92:62:e0:02:4b:9b:4e:16:69:91:34:9c:ec:4b:dc:
0e:ef:ed:a8:f0:5c:14:be:bd:6a:89:e9:21:e3:93:
d8:85:5c:63:da:1b:7e:0e:1c:8f:34:14:aa:92:8e:
c5:b3:85:c2:98:a9:d5:6d:9f:60:94:f5:7d:0c:6a:
1e:44:3a:7c:6e:f0:fe:ec:54:3b:43:16:1f:13:86:
0d:4c:ce:55:8f:4d:92:6b:44:58:7a:fb:ee:f8:28:
d4:5f:c1:ad:bc:dc:2b:cf:98:17:99:da:c5:42:c4:
18:b2:4d:c8:bd:f7:96:6c:af:b4:9c:4c:d5:7f:c7:
a1:51:d5:eb:12:bb:21:dc:5c:98:8f:b6:8d:da:a4:
c7:37:2b:cb:5d:92:0f:11:c8:8e:f8:a7:73:7c:5e:
8a:3a:8b:57:ed:a4:0f:5a:d4:d0:24:79:b7:09:26:
ae:67:1b:ce:08:d9:72:b3:0e:d0:d5:f7:83:98:63:
26:02:07:28:7a:2d:b8:bb:18:94:cc:e5:2a:68:61:
e6:49:70:0e:90:fa:6a:d0:85:26:44:4a:a7:c0:b4:
b4:49:ab:db:9c:e7:25:f0:1a:2c:43:39:8f:3d:04:
a3:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:84:1C:58:76:FB:64:43:9A:88:1B:FD:87:48:2C:E7:E6:5F:56:73
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NoQcWHb7ZEOaiBv9h0gs5-ZfVnM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.120.0/22
Signature Algorithm: sha256WithRSAEncryption
79:66:5a:61:06:e3:d8:07:94:2f:41:b5:81:3b:ec:9d:45:ec:
91:79:b6:f0:97:2a:4e:24:e9:c4:7d:22:ae:d9:e8:49:3d:9a:
3c:86:5c:d7:4f:da:73:63:c1:56:35:a4:02:3d:e6:55:73:d5:
e8:70:ce:16:ef:31:6a:af:7f:f7:0f:52:6c:9e:f6:76:1d:9b:
8a:2e:56:d8:f0:82:3f:6e:d3:0e:ff:4d:89:c4:d2:76:14:b3:
06:74:d9:8c:bb:04:5a:62:c5:46:06:01:69:5c:54:74:62:39:
6b:67:eb:74:11:9a:f6:40:66:27:2a:1b:30:e3:69:0e:2e:a3:
78:f7:fd:d3:fc:80:d6:09:0f:6b:ba:62:59:fe:c5:9a:d5:bc:
dc:07:bd:1b:0e:c7:23:51:2f:77:13:de:d6:05:3a:82:fa:31:
77:7b:38:42:20:43:81:f8:90:62:f9:14:3b:24:60:24:69:2c:
be:0e:ee:6e:ec:19:58:8f:2a:c9:6b:e7:c6:20:d5:ef:66:6f:
65:be:b7:18:2a:ea:e5:fa:39:bb:96:95:d3:2d:ce:fc:df:1b:
27:12:76:f6:03:ef:ca:65:2b:a7:1c:66:8b:8d:aa:f8:ba:33:
17:a8:4a:e2:ac:d7:74:55:04:da:f5:82:c7:ff:f5:b0:2c:06:
e8:41:36:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org