Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XBO7GrNEL6WvSYMOIlpE6baz3gk.roa
File: XBO7GrNEL6WvSYMOIlpE6baz3gk.roa (raw, json)
Hash identifier: +GpegCwzTJuBgC9tGx9CctgZtFJfv5UQpc3xvbMmQG8=
Subject key identifier: 5C:13:BB:1A:B3:44:2F:A5:AF:49:83:0E:22:5A:44:E9:B6:B3:DE:09
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1320
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XBO7GrNEL6WvSYMOIlpE6baz3gk.roa
Signing time: Wed 29 Sep 2021 02:55:24 +0000
ROA not before: Wed 29 Sep 2021 02:55:24 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24165
IP address blocks: 180.218.80.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4896 (0x1320)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:24 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5C13BB1AB3442FA5AF49830E225A44E9B6B3DE09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b8:90:4c:f1:7b:6a:9f:4c:66:cc:97:ae:24:
ae:fb:47:fb:a5:6c:ca:cb:82:19:b2:2a:0c:c4:a8:
56:fa:9b:b1:9a:b8:d0:ac:c0:e3:45:47:44:49:35:
86:8e:4a:56:f7:95:5e:6f:3b:a8:be:98:71:cc:ca:
1d:44:21:24:b1:56:46:33:68:9b:21:87:f0:70:5b:
d8:25:e8:5b:be:81:19:7d:39:77:a4:bc:20:8b:10:
9e:c9:48:03:33:aa:a4:bf:32:fa:a3:e9:51:92:b3:
1b:d1:aa:63:1d:b7:2e:e4:c6:68:08:dc:32:02:ca:
9a:90:5d:01:cd:a8:02:1f:65:18:26:5a:ef:e4:1e:
16:71:85:ee:75:5b:09:90:20:10:ff:85:7b:de:28:
1f:9c:35:43:a4:a8:69:41:2a:cc:95:ba:18:5c:dc:
e4:2a:6a:46:42:92:65:cc:4a:ba:96:45:db:1e:e1:
67:23:f2:76:63:db:3e:0f:69:be:14:83:58:6e:eb:
bf:ee:2b:c6:32:df:a8:14:59:b7:bf:96:83:ad:6a:
c6:d0:06:7e:5d:4d:8f:95:27:e8:84:a9:c9:ba:41:
bb:86:01:70:40:09:a5:19:68:ec:a7:ce:5d:68:7d:
3a:bd:95:db:b5:90:c3:3a:71:43:77:84:af:d9:ed:
a2:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:13:BB:1A:B3:44:2F:A5:AF:49:83:0E:22:5A:44:E9:B6:B3:DE:09
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XBO7GrNEL6WvSYMOIlpE6baz3gk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.80.0/22
Signature Algorithm: sha256WithRSAEncryption
02:7d:c5:0f:08:0c:3f:52:0a:41:65:9f:c5:f2:73:8a:16:cc:
55:59:d1:6c:33:b2:18:aa:01:15:13:9a:fc:a7:a8:d9:83:f9:
cd:09:d0:73:f9:28:26:a5:fe:6d:23:56:ad:cb:96:e5:c4:c6:
09:e7:d0:f1:85:e2:73:0d:64:ae:00:a8:32:8c:ac:ec:75:90:
58:54:02:f8:d6:e8:f6:9e:64:33:81:2f:55:65:08:d7:4f:b0:
c2:d6:d4:43:64:5b:3e:d6:a6:08:1c:a2:06:3c:4c:3b:d9:06:
1a:54:b9:ef:56:84:7d:26:09:4f:72:99:b4:f8:f8:2c:3b:f2:
89:1a:ff:f3:94:91:2a:61:aa:0d:35:7d:41:32:66:ba:06:89:
41:06:5b:12:a3:cd:1d:4a:37:83:aa:03:37:0f:6a:ad:8d:3f:
1e:b5:8f:3a:eb:44:c9:ad:8a:90:c7:6d:6f:7a:29:27:3e:d2:
ef:26:9f:98:a2:b8:fe:23:59:01:01:40:cd:c0:06:38:e6:9f:
03:76:62:58:88:9d:80:a2:91:ae:05:b6:a5:fb:7c:4e:28:bc:
7e:e1:c6:5f:10:17:bb:db:1f:77:11:d2:21:1f:78:7c:a3:48:
f5:54:08:d6:ca:4b:b9:88:e7:1d:f5:0a:29:59:60:3d:85:bb:
aa:ad:7e:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org