Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bgi7gAW34pjMEip3fMFulwspgW8.roa
File: bgi7gAW34pjMEip3fMFulwspgW8.roa (raw, json)
Hash identifier: 27obDx0jyDbQKIpQlfyc6f9lJXA3mKm9LUKOxVPwAo8=
Subject key identifier: 6E:08:BB:80:05:B7:E2:98:CC:12:2A:77:7C:C1:6E:97:0B:29:81:6F
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0B11
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bgi7gAW34pjMEip3fMFulwspgW8.roa
Signing time: Tue 29 Sep 2020 10:07:58 +0000
ROA not before: Tue 29 Sep 2020 10:07:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 180.218.156.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2833 (0xb11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:07:58 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6E08BB8005B7E298CC122A777CC16E970B29816F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1e:58:7f:2d:3b:85:25:c1:4f:c4:68:5c:d8:
0c:4b:2c:b8:48:d9:5b:9a:7c:2c:06:38:32:71:ae:
ab:13:49:27:11:88:2c:c2:fb:8a:04:f9:99:22:18:
98:6b:56:d0:af:e2:bb:20:2f:8a:d8:6c:d4:25:a4:
1f:7a:a6:5e:81:d6:68:6b:05:27:95:d6:3c:62:00:
68:df:21:a7:f8:00:c9:44:0a:fa:bd:32:48:e7:89:
de:e4:6f:f6:69:29:95:0d:41:aa:17:24:b8:41:aa:
65:50:6a:f6:e8:7c:88:e2:0b:11:04:43:5d:ba:7f:
14:b1:bf:ad:a6:ba:59:97:8b:08:73:a5:c6:56:c3:
a5:b0:26:6d:7b:d7:b5:77:1d:72:6a:4f:84:45:ce:
27:db:6a:37:2b:75:d4:dc:b5:a7:0f:33:c9:d9:10:
cb:02:46:51:06:60:c7:68:9d:a1:c0:68:25:0c:a9:
3f:5a:6f:cc:4e:1f:91:1a:86:23:7d:8e:f1:99:8c:
8b:80:4e:f3:09:29:23:d0:24:f2:ef:88:6f:f3:c0:
41:4b:e0:81:bf:92:2d:85:7b:ae:cd:ab:1e:c9:a7:
a8:ea:20:2d:9b:db:d6:74:bd:27:0f:4b:da:81:28:
a8:4d:16:b1:d9:5b:b2:06:fe:59:9f:6a:4e:53:70:
dc:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:08:BB:80:05:B7:E2:98:CC:12:2A:77:7C:C1:6E:97:0B:29:81:6F
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bgi7gAW34pjMEip3fMFulwspgW8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.156.0/22
Signature Algorithm: sha256WithRSAEncryption
21:a0:42:0e:2e:39:e1:31:c9:4a:ff:a9:27:94:d5:de:ad:18:
b6:43:93:04:a5:6d:38:f4:5a:5c:5f:9d:e6:96:73:20:94:6a:
5a:d8:b8:db:9c:fa:96:f5:31:e5:73:4a:0e:f3:9d:e2:15:c0:
da:a2:a6:d5:8c:9e:ee:ef:e1:72:29:68:8e:e5:8a:6f:4d:c6:
68:d7:54:42:6b:7c:e7:08:c6:50:33:d1:76:2c:f3:a4:af:5f:
b3:1a:cc:05:9b:1a:04:aa:4f:40:58:a1:4f:25:a6:67:e1:89:
22:29:b7:c1:bb:60:b6:a8:55:70:48:02:96:f9:53:77:4f:67:
dc:42:58:65:b7:62:c5:f0:fc:f7:21:da:e4:fe:a6:ff:db:30:
f4:48:6a:52:30:a7:cc:b1:14:9d:9a:33:b8:fd:cf:15:7a:5b:
cb:2a:4a:61:33:85:e3:11:c5:eb:cf:85:2b:cd:95:83:cf:b0:
db:e4:27:f0:00:86:03:33:d7:66:73:56:1b:b2:31:47:d6:b5:
73:e8:88:44:31:52:fb:50:40:79:65:6e:43:b6:80:e7:24:a1:
2a:2c:84:e1:b5:a7:0e:15:31:d3:23:4a:be:d3:cb:47:45:70:
50:6e:01:44:a1:bc:4e:07:a5:f1:ad:6f:81:2d:a5:ce:20:8f:
77:f4:4f:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:46:23 2025 by rpki-client