Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/cTXI_hGXnXcbvQDlCQ-VRu8oWJ0.roa
File: cTXI_hGXnXcbvQDlCQ-VRu8oWJ0.roa (raw, json)
Hash identifier: Pe0BCVykOOpwbyHoXKri/Vh1KkkogrzH/XRQ57lfyCc=
Subject key identifier: 71:35:C8:FE:11:97:9D:77:1B:BD:00:E5:09:0F:95:46:EF:28:58:9D
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1049
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/cTXI_hGXnXcbvQDlCQ-VRu8oWJ0.roa
Signing time: Sun 07 Feb 2021 12:43:59 +0000
ROA not before: Sun 07 Feb 2021 12:43:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 180.218.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4169 (0x1049)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:43:59 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7135C8FE11979D771BBD00E5090F9546EF28589D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:8b:12:6a:7b:40:cb:0d:ae:04:5c:74:14:70:
7a:00:ef:4c:5a:8e:0d:34:26:08:db:c7:a2:94:97:
f8:1c:e3:0d:79:05:80:e4:57:23:ce:b6:8b:69:2e:
38:9f:96:b5:c6:e6:6c:4a:13:df:14:ec:ed:1b:e2:
e4:92:79:c8:b1:8d:6f:ba:10:d1:68:31:30:76:53:
f4:ef:90:c4:e2:41:6a:af:5a:73:80:2e:04:32:2c:
0d:71:9f:f1:0c:a6:bf:d6:e6:4e:f8:ba:ee:d4:b6:
20:6f:30:9c:62:15:74:7c:07:e4:e6:23:34:00:00:
fd:5c:cf:7c:7f:1d:2a:6b:13:a0:8c:64:bb:70:2b:
e4:4e:a3:a5:b2:f5:1e:68:b3:b5:2a:b4:e9:c4:67:
24:de:a9:a7:13:d2:c3:07:68:30:1e:64:4a:54:c7:
f1:f9:2d:b1:cc:30:7d:9d:65:bb:43:19:59:66:ba:
0f:f8:35:9a:e9:65:ae:a8:ae:24:93:35:0c:b3:66:
a7:18:b3:2e:50:2b:c3:31:90:1e:a5:2e:4d:cd:6b:
ea:41:b0:a4:2a:34:ad:e5:14:33:db:84:8c:75:99:
a3:35:11:c3:fc:2e:71:04:b4:68:ea:98:8b:1d:5b:
f2:3d:ee:7f:92:ae:91:aa:7c:7c:8a:8c:7a:55:0b:
60:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:35:C8:FE:11:97:9D:77:1B:BD:00:E5:09:0F:95:46:EF:28:58:9D
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/cTXI_hGXnXcbvQDlCQ-VRu8oWJ0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.138.0/24
Signature Algorithm: sha256WithRSAEncryption
42:0e:a5:0e:04:55:0a:95:65:2b:ab:e7:1a:ea:fb:3f:14:4a:
07:c6:ba:08:d7:18:44:56:95:8e:2e:2d:3b:cf:7a:7a:33:4c:
1f:04:c8:e9:02:1f:8e:19:1f:22:40:1f:57:05:21:60:19:04:
94:cb:60:79:d4:e4:41:f2:05:0d:bb:de:eb:30:46:58:f7:b5:
b7:58:36:b1:e0:a8:b4:42:7d:9f:0a:01:6a:d8:a1:91:a5:30:
0d:91:ca:fe:13:93:eb:94:83:e0:b5:0c:df:d7:9d:1f:a9:2e:
2e:c7:36:8f:3a:0c:dc:0e:2c:39:ae:d3:00:5a:60:2d:88:89:
bb:79:68:d0:0c:55:21:91:d2:a7:03:8d:e0:77:3f:6b:c2:32:
43:ce:f1:fd:34:e4:0f:48:19:83:18:58:fb:24:0e:c0:63:80:
a4:b5:2a:91:7a:76:60:02:f0:63:f8:3f:8a:ac:49:46:51:2c:
a4:69:b7:43:0a:6b:52:c0:99:64:06:e5:28:0f:c8:76:49:a0:
69:6a:6e:4d:06:59:87:bb:9e:af:36:cc:7f:cb:40:cc:14:03:
8d:72:94:13:e5:71:bf:e5:ea:28:57:5b:b4:b5:ab:b8:e6:21:
b0:cc:55:6d:fb:af:31:17:75:ba:a3:30:0c:22:1b:1d:e6:20:
2a:dc:84:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:48 2024 by rpki-client on console-ams.rpki-client.org