Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Xx0ElPWVGTjRqHWqqOWG1BnmQYE.roa
File: Xx0ElPWVGTjRqHWqqOWG1BnmQYE.roa (raw, json)
Hash identifier: /g+9nh4FBOrhOhSZK1bK81jpXHPMBaV1CjJvjEt7kVU=
Subject key identifier: 5F:1D:04:94:F5:95:19:38:D1:A8:75:AA:A8:E5:86:D4:19:E6:41:81
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1343
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Xx0ElPWVGTjRqHWqqOWG1BnmQYE.roa
Signing time: Wed 29 Sep 2021 02:55:33 +0000
ROA not before: Wed 29 Sep 2021 02:55:33 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 180.218.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4931 (0x1343)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:33 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5F1D0494F5951938D1A875AAA8E586D419E64181
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:d8:2f:29:de:34:c1:1d:67:14:24:c2:5f:20:
ac:84:a9:b6:07:6f:b6:d0:4e:80:94:e7:b8:81:eb:
8c:bd:53:ff:a8:72:21:98:0f:7e:77:4e:1d:ab:44:
12:52:05:2f:f0:5c:19:0f:7c:83:bf:9c:b1:ef:f3:
d6:19:29:89:a0:c6:70:97:1d:67:c9:2d:02:47:76:
0f:da:66:c9:bc:94:c1:ec:bc:28:ed:05:af:4a:b9:
2f:75:11:47:cf:99:49:a7:46:56:f7:fb:cc:22:b2:
df:0a:26:92:37:8e:0b:55:73:99:c5:a4:50:bb:d5:
7c:84:23:6e:a6:ac:5f:2a:d5:61:82:1f:bf:83:34:
bd:50:db:e7:19:a1:c2:f4:36:41:87:c8:cc:15:2a:
28:17:69:eb:a3:c0:65:86:d6:fb:b8:d6:53:3d:c4:
0e:f0:4e:f4:d4:ba:7e:17:28:4c:9d:2d:a9:b3:5e:
f6:fa:6c:e9:a1:4c:f6:78:eb:42:61:ec:9b:fe:4c:
24:c3:c4:df:82:30:6b:73:79:92:c6:aa:da:b9:ea:
22:a7:f5:df:6a:df:86:5a:c7:bc:ca:ec:e0:6f:92:
2b:2d:f3:d3:f5:8a:27:39:40:ea:4b:06:20:50:97:
f1:76:76:c5:94:5b:9e:09:0a:66:5e:57:2e:e8:af:
d2:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:1D:04:94:F5:95:19:38:D1:A8:75:AA:A8:E5:86:D4:19:E6:41:81
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Xx0ElPWVGTjRqHWqqOWG1BnmQYE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.249.0/24
Signature Algorithm: sha256WithRSAEncryption
76:88:33:a6:9b:75:a2:45:5f:84:ad:36:ed:95:4c:4f:8c:73:
e8:71:94:36:07:56:0d:14:69:e3:14:20:c5:48:d6:99:65:ca:
ab:06:6a:ac:18:b5:d6:1f:81:0b:79:bd:48:6b:56:87:77:0b:
a1:b5:28:8e:bd:ea:35:98:8a:c8:3a:7b:fb:02:6c:08:d9:db:
8a:1f:12:74:fd:7f:c2:3d:64:cf:24:b0:61:f2:8a:c8:c8:37:
94:22:d5:34:dd:8d:5f:05:33:13:c7:fd:f8:28:ed:03:e4:69:
21:2a:e8:98:64:4a:9c:a3:0f:85:54:cc:68:d7:47:80:1c:9f:
13:b9:e1:e0:e7:e0:7e:c6:dd:76:f9:90:c9:83:c3:32:b9:94:
a4:c8:49:66:be:32:37:48:2a:cb:e4:fd:56:4e:aa:20:56:f4:
5c:82:3e:b5:40:ee:64:f0:99:c1:da:ea:80:1d:3e:2a:03:67:
b1:e1:1c:cb:c5:50:f2:9e:58:57:fa:95:50:fd:9a:b9:b5:8f:
53:10:d4:0f:97:88:f9:c7:a4:31:b0:10:77:6c:df:ce:01:8c:
0b:0c:66:9e:c5:e6:45:45:41:39:64:1b:15:fd:9e:87:e2:1a:
6c:b4:da:82:14:26:6d:72:49:c9:ce:99:f8:fa:be:8a:04:bc:
5b:68:13:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org