Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Uzw_czJLffdGJihffQ-g59X00B8.roa
File: Uzw_czJLffdGJihffQ-g59X00B8.roa (raw, json)
Hash identifier: g3N82BaEXouqz9Al6kXKSi5BIWV/BIOkXHEnqBZGvqg=
Subject key identifier: 53:3C:3F:73:32:4B:7D:F7:46:26:28:5F:7D:0F:A0:E7:D5:F4:D0:1F
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1957
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Uzw_czJLffdGJihffQ-g59X00B8.roa
Signing time: Sat 22 Oct 2022 06:06:25 +0000
ROA not before: Sat 22 Oct 2022 06:06:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 180.218.192.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6487 (0x1957)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:06:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=533C3F73324B7DF74626285F7D0FA0E7D5F4D01F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:aa:01:2d:e1:3f:64:e2:b4:69:4d:4a:cf:2f:
66:c4:f1:fc:7f:7d:47:b0:87:5e:37:b1:bd:8e:a6:
44:f0:0d:23:67:b3:84:19:e5:2a:58:29:0f:03:d1:
19:55:ed:7b:69:34:0c:0f:08:79:6c:a6:54:c3:df:
ac:88:e7:53:d7:d5:9e:37:84:95:c1:2f:0d:3e:1b:
b3:d9:ea:13:af:20:08:52:df:08:76:c5:60:53:60:
5b:f6:5b:ed:2a:d0:fe:1c:ff:5d:ea:7d:c3:1a:c2:
a5:2b:3f:db:da:5b:f1:fe:12:40:91:16:53:39:f8:
5a:0a:35:79:ff:db:fe:88:bd:22:0e:6a:67:34:35:
6b:06:b5:08:be:eb:2c:48:0b:74:cd:85:84:b5:fa:
c1:5f:77:bc:46:e7:97:c6:4e:30:cc:ba:b1:f8:fc:
4f:7b:e9:67:39:3b:b5:dc:2f:a1:ff:99:c8:06:cd:
7c:c7:cd:72:e2:ba:94:a4:3a:56:e7:95:15:ae:c0:
9f:f7:0c:c8:39:6c:a1:52:97:aa:fd:5d:25:1b:1a:
5c:9a:bc:d6:7c:ee:6a:c7:12:fd:cc:ed:dc:d0:1e:
d1:8b:86:f2:9f:88:bc:e3:24:ff:71:9b:26:0c:43:
0f:a3:c7:75:20:34:40:a0:b1:1d:20:3b:13:2e:6d:
96:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:3C:3F:73:32:4B:7D:F7:46:26:28:5F:7D:0F:A0:E7:D5:F4:D0:1F
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Uzw_czJLffdGJihffQ-g59X00B8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.192.0/21
Signature Algorithm: sha256WithRSAEncryption
7a:25:03:ef:2a:9a:d0:d4:91:69:c6:d6:f8:31:75:7c:c8:db:
c1:01:8c:08:c4:51:51:cd:0b:88:f2:30:2a:04:17:e4:b3:30:
44:d5:79:16:17:17:0f:1f:50:29:00:ce:90:1c:6c:3a:3f:80:
26:61:57:65:1f:cb:59:32:3a:6c:0c:d4:79:62:3d:86:40:4c:
20:7a:4f:b5:78:bc:90:c4:b1:ae:54:a1:f5:c1:33:ad:8c:eb:
fd:6a:ae:47:ea:90:95:30:97:75:c2:8b:21:77:47:54:d1:38:
b8:50:c2:ab:09:d8:bd:37:d4:6b:1f:6e:f6:ad:e0:a7:bd:45:
fe:a8:43:c1:35:44:44:24:ae:79:f3:dc:57:d0:14:b8:80:93:
7e:7f:e1:55:46:26:15:1e:80:38:ef:a9:88:c6:a7:8f:8f:74:
09:35:92:c3:9b:91:f1:9e:0a:fe:c9:74:4b:ff:53:b7:32:cc:
4b:e3:71:a4:f5:0e:d6:0b:3f:93:a3:6e:ee:34:4c:fb:8b:b8:
74:6e:d5:62:07:fc:cc:f4:37:86:86:8b:4e:b2:99:bd:81:9a:
31:ab:a6:a3:6e:30:67:2b:1d:78:b9:21:bb:31:bd:2b:51:60:
da:6c:ba:0f:e6:04:ee:a9:98:04:5f:08:85:ed:93:25:5d:7c:
33:e1:ac:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:47 2024 by rpki-client on console-ams.rpki-client.org