Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/iQR5hcBkIOWQhaRvOtMklC--06k.roa
File: iQR5hcBkIOWQhaRvOtMklC--06k.roa (raw, json)
Hash identifier: TeYJiawjfByh2tgCw0/XBgRxm/1OodwC+iHhVoopThc=
Subject key identifier: 89:04:79:85:C0:64:20:E5:90:85:A4:6F:3A:D3:24:94:2F:BE:D3:A9
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0B2B
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/iQR5hcBkIOWQhaRvOtMklC--06k.roa
Signing time: Tue 29 Sep 2020 10:08:05 +0000
ROA not before: Tue 29 Sep 2020 10:08:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 180.218.142.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2859 (0xb2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:08:05 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=89047985C06420E59085A46F3AD324942FBED3A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a4:73:16:9a:4a:a3:39:e9:cf:21:a0:8c:8e:
46:7f:e8:1e:70:55:f2:a3:ef:29:15:95:b6:04:7b:
b3:ea:91:45:f0:64:f5:de:7c:01:05:79:a4:65:2f:
29:0b:9c:20:f9:5c:13:7e:5f:c0:e2:fc:e8:9f:bf:
e1:c2:7c:0b:95:f2:81:da:72:85:d2:a9:6b:2b:7e:
fd:f9:66:34:0e:8c:a0:aa:fd:6b:59:27:20:ca:26:
48:74:6a:c3:18:ac:01:06:1c:28:3b:d7:df:81:6f:
bd:9c:23:84:28:23:32:e8:09:06:12:4d:b2:78:f4:
ef:33:29:14:3e:de:9c:19:d5:a7:70:26:7a:cf:76:
29:a7:d2:b3:d1:09:e6:94:2c:11:b8:0c:ee:69:10:
b0:34:ea:5c:67:63:49:78:a2:31:66:77:0c:8d:21:
4f:eb:f6:8e:6d:25:73:3b:11:c3:e2:df:5a:bc:5f:
92:a7:ba:ad:bc:a0:4e:d0:b7:97:b2:89:45:04:ef:
4b:00:bc:11:aa:d7:9a:4d:15:3c:cc:87:87:22:61:
42:a0:ed:15:f7:0e:25:d1:8a:b9:7e:c3:64:cc:e4:
28:3f:2b:97:0a:f6:b7:8b:a3:73:d0:0b:ca:3c:3a:
21:4c:91:7a:f1:86:7a:92:dd:45:ed:83:9a:9e:10:
a3:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:04:79:85:C0:64:20:E5:90:85:A4:6F:3A:D3:24:94:2F:BE:D3:A9
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/iQR5hcBkIOWQhaRvOtMklC--06k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.142.0/23
Signature Algorithm: sha256WithRSAEncryption
06:39:50:0e:ba:85:2c:52:54:52:07:7d:c2:80:d4:08:aa:af:
00:60:f5:e6:f9:87:85:f5:32:6c:b5:91:bd:a8:61:2a:69:53:
01:9c:2e:b1:bc:a9:fb:be:df:a6:ed:a3:4d:2c:ee:f3:6c:d1:
c5:c9:93:c7:13:78:44:c2:98:ce:bc:dd:0b:71:d6:cc:be:d8:
3a:ea:68:35:5d:28:63:20:5b:d0:57:32:9e:7d:58:0c:45:05:
7c:c7:9f:0d:47:17:9e:15:17:8d:17:73:56:bb:d7:b7:60:7b:
02:85:6e:5e:c7:1c:ed:77:ff:a8:d1:d0:ba:ff:96:8a:8b:33:
86:73:f2:d7:de:02:6c:4b:59:84:b1:21:f5:a3:5c:c7:2e:08:
7f:6c:f4:ee:47:76:dd:79:26:b4:fa:b0:fb:50:56:5f:6d:2f:
30:c2:f9:b7:cd:39:86:4f:eb:e8:ce:08:75:04:09:3b:58:59:
e6:0a:48:e0:45:6e:40:1f:ec:12:5a:3b:e4:2b:b1:c9:b0:92:
ac:09:a8:fd:d5:a4:97:2d:f9:89:97:93:a8:b0:fb:11:41:c1:
ef:7a:ec:cb:0b:f5:fc:2c:61:53:8c:56:7a:97:be:89:99:6f:
ad:cd:a1:66:d0:fd:2e:df:96:1d:c2:b3:f7:a7:bb:42:d3:9a:
6a:cb:a3:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org