Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/gOlMPTDxIMUzd9wAdm-hiuUzbIE.roa
File: gOlMPTDxIMUzd9wAdm-hiuUzbIE.roa (raw, json)
Hash identifier: 7+jZn2vDpFoIof1zc5Ko1DeStZmdsfi5vcr4AIPDOcM=
Subject key identifier: 80:E9:4C:3D:30:F1:20:C5:33:77:DC:00:76:6F:A1:8A:E5:33:6C:81
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1069
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/gOlMPTDxIMUzd9wAdm-hiuUzbIE.roa
Signing time: Sun 07 Feb 2021 12:44:39 +0000
ROA not before: Sun 07 Feb 2021 12:44:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 180.218.200.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4201 (0x1069)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:44:39 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=80E94C3D30F120C53377DC00766FA18AE5336C81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:62:94:be:1f:f5:d1:c5:0d:0e:8e:14:a9:c1:
07:82:d2:39:95:85:21:96:e5:d7:42:af:4f:16:7d:
e1:c2:27:a9:64:05:a7:5b:ad:17:c8:3b:6d:f8:2b:
ec:d6:3b:4f:f9:9c:6f:56:f0:f7:b3:64:2f:f7:2b:
c2:ef:68:e8:25:41:0c:4a:f6:4e:c7:b3:a9:a6:cf:
45:5d:0a:22:60:9a:14:bd:52:96:4b:06:92:2e:82:
13:40:b7:b6:02:e1:31:1f:d7:7d:dd:8b:3e:b4:0a:
63:a3:ba:c5:93:c3:27:69:d3:13:3c:f6:bc:c0:ab:
d4:a9:fd:08:31:9f:64:36:c0:03:17:f5:4e:c2:35:
77:84:a0:0a:f2:ae:16:63:fe:33:ed:fe:94:41:9f:
89:5f:24:72:e5:0e:fc:1c:ce:81:99:17:02:f0:e8:
b5:91:6f:ff:85:10:e9:a8:dd:f5:90:a9:8f:60:30:
ea:5c:2c:b4:7f:01:32:ee:cb:ac:c7:9e:68:84:c0:
a9:9d:87:d9:52:40:64:11:30:3b:33:f6:e8:86:2b:
85:65:80:87:c5:c0:10:f1:aa:1e:33:64:e1:4b:51:
1c:a1:3a:e3:d3:94:2f:d3:23:38:6e:e4:e6:c5:32:
ae:51:44:e1:88:54:6f:b2:39:0e:7e:4a:96:4f:7f:
9d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:E9:4C:3D:30:F1:20:C5:33:77:DC:00:76:6F:A1:8A:E5:33:6C:81
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/gOlMPTDxIMUzd9wAdm-hiuUzbIE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.200.0/21
Signature Algorithm: sha256WithRSAEncryption
4e:09:65:4a:c8:39:2b:d5:8b:a3:4f:04:74:8e:68:b0:d3:eb:
9f:e8:90:f2:a1:a4:29:12:36:eb:e5:01:45:de:75:d5:19:fa:
16:61:ab:7a:c6:7a:35:ed:70:1c:04:8d:4f:25:79:90:cd:66:
fe:f6:5e:ce:63:19:5a:69:21:c2:7b:b3:20:53:56:f2:d8:3f:
3f:ae:91:e2:27:37:b3:67:ef:70:fb:d4:1d:0d:41:23:f0:e8:
b9:76:79:9e:f6:8e:67:f5:8d:c7:fc:45:42:9d:e6:41:29:29:
52:88:b9:86:cc:f6:54:0d:c9:cd:bc:73:a2:bd:95:ed:a9:d9:
64:06:bd:b8:f0:89:e3:db:1c:ce:68:99:08:d8:31:d1:be:d5:
5e:5b:4f:bc:20:88:2b:25:41:89:c4:e1:64:9c:64:07:62:5e:
f7:fd:79:9f:81:2f:e3:c6:12:55:2a:07:79:0d:db:89:db:4f:
e7:65:60:cb:bd:5a:ad:be:3a:4b:7a:a2:3a:07:5d:fd:98:d7:
43:dd:dc:28:15:9e:ee:59:1d:3c:43:dd:e5:55:a9:36:fe:23:
19:fe:d0:7f:7a:1f:3a:f5:66:a8:d3:9e:59:89:3f:9e:94:c1:
77:3e:79:ee:18:11:e1:8a:72:a8:fe:40:47:e6:50:90:f2:7f:
bd:f4:55:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org