Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kd16OA52HPPPWx97XHSZgXNaXH0.roa
File: kd16OA52HPPPWx97XHSZgXNaXH0.roa (raw, json)
Hash identifier: WZtzZNf2HzXwW66LBDpRfw/r6EizNCecaNlYpndSN98=
Subject key identifier: 91:DD:7A:38:0E:76:1C:F3:CF:5B:1F:7B:5C:74:99:81:73:5A:5C:7D
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1927
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kd16OA52HPPPWx97XHSZgXNaXH0.roa
Signing time: Sat 22 Oct 2022 06:06:09 +0000
ROA not before: Sat 22 Oct 2022 06:06:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 180.218.248.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6439 (0x1927)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:06:09 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=91DD7A380E761CF3CF5B1F7B5C749981735A5C7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:95:20:d9:04:1f:d4:1a:19:30:9c:17:55:68:
68:1c:fd:4a:dd:86:a8:46:ce:99:59:8f:2e:f4:ac:
d8:50:b9:f1:da:0b:bb:39:36:42:60:14:50:af:30:
4d:48:7a:fb:78:d0:67:89:fa:19:c3:5f:37:31:40:
61:f5:03:34:54:f7:29:0f:0f:8f:f4:5b:46:fa:8c:
cf:b5:c8:68:8d:7c:18:8d:7a:3c:45:15:8c:1c:44:
46:3a:3c:7d:6e:c8:c2:d9:3b:01:8a:39:9e:53:0e:
86:56:24:16:a5:d7:eb:a4:fb:8f:f2:b8:c4:0a:74:
9a:f6:bd:87:5d:1e:b2:65:0c:e1:63:95:3a:dc:08:
54:98:d9:89:72:bf:cc:23:7c:8c:15:d0:8b:92:86:
73:f6:22:03:29:20:d7:e0:66:90:b6:31:52:1e:ab:
1f:2e:e1:de:61:cc:56:cc:28:a7:a1:d8:16:d0:ae:
aa:89:d1:1a:2f:86:5f:f6:37:8d:cd:72:7b:6a:38:
51:2b:ed:1d:aa:d9:46:0f:0f:c6:0e:86:72:72:a8:
18:58:47:aa:56:0a:59:2b:96:e6:68:4c:35:03:46:
46:a5:d7:f0:75:eb:63:34:95:b1:53:72:3d:3e:99:
ed:68:f2:2e:71:85:66:5f:82:e3:4b:e0:91:90:6d:
d2:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:DD:7A:38:0E:76:1C:F3:CF:5B:1F:7B:5C:74:99:81:73:5A:5C:7D
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kd16OA52HPPPWx97XHSZgXNaXH0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.248.0/21
Signature Algorithm: sha256WithRSAEncryption
1a:c5:b3:d5:aa:1f:de:a7:0b:7f:f5:fd:f7:52:ef:23:8d:7e:
bc:ba:1a:25:b0:c2:91:4e:98:a8:e2:cd:69:1d:79:2f:d9:31:
42:da:ba:fb:d4:85:21:68:82:0b:a4:5f:f4:8c:ca:6b:78:e1:
d5:40:68:22:d1:9c:1d:fe:cd:61:c7:4d:84:6b:56:62:8e:61:
3f:f6:29:39:63:de:fc:dc:f7:03:ab:d4:bd:65:13:81:ce:dd:
35:52:23:10:6a:c9:72:a3:d4:8e:b3:03:7e:f1:04:7b:19:40:
bb:d3:a4:59:f6:74:e1:f8:9e:14:07:b4:45:9e:0f:39:af:45:
0d:b5:c9:08:f6:0a:56:ec:73:c4:82:ca:8a:a1:75:5e:a7:c0:
b0:cc:fe:98:25:83:96:70:81:71:d0:b8:4e:9e:40:24:de:fd:
6a:f1:4c:9b:d8:a0:b6:56:1e:19:b6:ee:57:2c:7c:03:a4:6d:
84:66:aa:1c:54:63:62:4b:f3:06:93:14:e7:b2:5f:0d:33:e4:
e8:19:7a:aa:3f:92:b0:71:38:7b:1e:64:bd:57:55:43:fd:a6:
f4:2e:c2:f8:b3:b6:83:04:27:4d:c0:d3:27:b1:81:3e:cc:2d:
ff:3a:79:cd:07:7a:97:65:01:22:16:25:7b:b7:c1:f6:17:8e:
48:df:5c:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:49 2024 by rpki-client on console-ams.rpki-client.org