Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/blzD2HIG2ZLF2LgcOY5LQTQUQEE.roa
File: blzD2HIG2ZLF2LgcOY5LQTQUQEE.roa (raw, json)
Hash identifier: WOT6Ylv3WUie08ZORlx9y1aYy8ysUZkVVkpG0QI7iW4=
Subject key identifier: 6E:5C:C3:D8:72:06:D9:92:C5:D8:B8:1C:39:8E:4B:41:34:14:40:41
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0B08
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/blzD2HIG2ZLF2LgcOY5LQTQUQEE.roa
Signing time: Tue 29 Sep 2020 10:07:55 +0000
ROA not before: Tue 29 Sep 2020 10:07:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 180.218.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2824 (0xb08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:07:55 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6E5CC3D87206D992C5D8B81C398E4B4134144041
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:47:09:2c:23:95:90:58:4c:08:23:60:73:1b:
df:57:d0:58:86:ba:de:c8:a9:8a:e3:3a:5b:32:89:
59:39:90:e9:3c:82:4c:38:74:16:93:92:06:6a:e6:
1d:2f:f4:09:bf:7b:96:5d:18:d4:e4:53:80:e4:8c:
60:f8:c8:8c:83:f2:04:aa:84:4b:c9:f7:7c:af:91:
76:15:1a:bf:9d:a8:8d:f2:3a:2b:78:69:14:20:cc:
ba:eb:92:8b:c5:f3:13:ff:4d:07:a5:ba:c3:ac:49:
6c:b3:49:7c:fa:94:04:35:e8:68:4b:29:4a:04:ec:
da:6f:32:a4:68:34:5c:4b:21:8b:65:71:2a:c1:c5:
9c:69:ea:a2:5f:aa:11:f9:15:30:59:3e:8d:69:94:
ed:0d:43:97:55:77:27:e8:19:cf:db:98:cb:c7:0c:
76:c0:dd:fa:24:9e:67:f0:2a:e7:6b:8a:d0:3f:c7:
ff:e8:b7:4e:3b:33:75:27:1d:49:bd:23:06:bb:02:
c0:80:95:08:5f:7b:9d:78:a9:b8:96:dc:4e:04:7d:
c9:d5:ff:66:61:5a:cd:9e:06:47:30:8b:46:30:53:
9b:84:4b:6b:66:ac:1a:d5:b2:19:20:3e:16:94:20:
e6:f9:f6:68:ec:07:fd:84:df:63:73:b2:d6:f9:7f:
3e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:5C:C3:D8:72:06:D9:92:C5:D8:B8:1C:39:8E:4B:41:34:14:40:41
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/blzD2HIG2ZLF2LgcOY5LQTQUQEE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.136.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:d3:78:e6:f7:75:c5:9e:2a:ab:8f:9c:de:4d:cf:78:85:dd:
5a:7a:94:1c:aa:97:95:f9:fa:f4:27:28:e0:7d:ad:ee:e6:a5:
d6:03:f7:13:79:e7:1a:d8:6c:d3:66:ab:88:ff:30:88:aa:5d:
86:d5:80:e8:33:86:6b:e1:98:da:08:48:c3:96:d7:79:96:65:
9e:f8:9b:63:6c:d5:87:84:ee:68:93:7a:03:e0:42:06:c3:3e:
f1:a0:5d:1b:8c:c1:1a:dd:56:25:60:18:0b:8b:62:6d:a5:5a:
18:1f:14:c7:e4:54:d4:d8:08:38:54:66:fb:2d:40:b6:e5:03:
05:c3:97:01:d7:d3:a4:1b:91:44:25:a4:a9:d5:63:6e:ca:ca:
c6:0b:f4:89:14:00:12:5b:9f:44:02:a2:0c:3b:3d:7a:d9:3f:
e3:4e:41:19:ad:99:19:f1:ae:31:a9:ab:60:35:f9:e8:5b:3d:
97:a9:4f:ed:78:29:00:3d:2e:4b:25:30:80:1e:ce:3c:fc:7b:
6e:df:68:bf:97:55:32:7a:f5:10:18:0d:0f:e5:e5:01:4d:fe:
0d:f8:e4:4a:f0:80:d9:d8:05:5b:63:7a:33:55:5b:45:66:f2:
56:9b:29:33:82:cb:32:50:e0:08:51:d5:68:37:6b:af:55:5f:
74:c5:51:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:56:20 2025 by rpki-client