Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nQrWo-mC65DjOtVhEQb6scIz240.roa
File: nQrWo-mC65DjOtVhEQb6scIz240.roa (raw, json)
Hash identifier: 6QeU0/p/bEgYCmJwv79qaL/kTazYS+JSDsz+/+aGH04=
Subject key identifier: 9D:0A:D6:A3:E9:82:EB:90:E3:3A:D5:61:11:06:FA:B1:C2:33:DB:8D
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0D48
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nQrWo-mC65DjOtVhEQb6scIz240.roa
Signing time: Thu 14 Jan 2021 07:32:52 +0000
ROA not before: Thu 14 Jan 2021 07:32:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24163
IP address blocks: 180.218.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3400 (0xd48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Jan 14 07:32:52 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9D0AD6A3E982EB90E33AD5611106FAB1C233DB8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5c:cc:f6:55:03:79:f9:42:a9:4f:a0:7c:68:
a4:2f:92:87:a0:94:84:c0:f7:dc:99:d0:eb:54:ff:
06:fa:b0:8a:03:08:05:48:9e:52:22:26:fa:09:82:
8c:21:b2:53:55:30:8d:a4:d0:ff:94:99:bc:cc:a2:
e6:31:55:4a:cb:11:81:46:a1:0a:79:8c:47:73:f6:
d9:78:1e:e5:d9:b7:90:bf:09:bc:6d:c3:e9:9a:42:
f9:8d:80:09:24:9f:17:f0:e2:26:78:f1:a9:e3:5e:
5c:69:53:e5:62:95:60:3b:cd:e2:b6:08:7c:ae:58:
2c:06:b7:01:a2:ae:04:da:2c:9b:43:0d:47:28:07:
d7:57:f7:be:cb:40:2f:f8:2e:a9:3c:ea:6b:bd:83:
65:14:c5:e0:a1:0a:d9:96:21:14:81:99:8d:85:c8:
9c:be:9f:a5:e4:6a:9c:5e:1d:62:07:16:00:14:58:
05:c9:98:41:ff:e3:c5:5f:a4:3b:c8:83:af:c0:21:
39:59:c7:d1:7c:99:14:8a:66:ea:d4:8e:11:a0:f4:
c0:17:4b:11:d2:4c:d8:9b:48:cd:82:db:42:a2:4a:
a9:e6:38:ef:76:e6:4d:e0:cf:24:fd:83:27:4b:9e:
2e:20:9d:50:68:8d:1f:c2:ac:df:e6:8d:e1:99:8b:
64:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:0A:D6:A3:E9:82:EB:90:E3:3A:D5:61:11:06:FA:B1:C2:33:DB:8D
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nQrWo-mC65DjOtVhEQb6scIz240.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.247.0/24
Signature Algorithm: sha256WithRSAEncryption
66:b0:63:2f:5b:fa:bc:0e:9c:37:1e:3b:a4:40:01:43:75:67:
57:70:b3:1c:51:90:c6:4c:fc:d0:3c:5f:9d:b4:cb:6f:e5:f5:
01:d3:c8:27:cc:50:d1:7a:a6:08:15:2d:26:1d:13:22:df:bc:
10:ac:16:cd:75:bd:9c:cd:67:23:87:d4:b8:61:7b:b9:fe:bf:
de:be:cc:7f:00:7c:69:40:22:fb:dd:f9:ed:b4:61:90:8c:8b:
0e:67:73:9d:63:87:9c:d9:3d:0a:5c:09:33:98:ef:cb:84:b7:
e4:0a:82:e8:07:56:56:c7:c9:3c:07:6c:89:99:35:1a:2e:05:
9e:5d:95:eb:2c:b7:51:b3:cf:bf:f2:4c:6d:48:90:48:63:7c:
39:5a:70:ef:55:49:75:a2:cf:ac:de:69:a5:17:0b:90:63:c0:
d7:e2:19:bb:bc:58:03:b7:cd:7f:e3:87:c9:84:91:3f:47:cd:
f8:a5:95:db:60:17:ed:fe:cd:dc:37:6e:18:ab:ba:18:61:0e:
0b:4e:75:7f:0f:6b:e3:5f:64:0d:0b:58:cd:98:47:d4:ce:b1:
6a:a6:e4:1a:5f:be:5f:2f:81:7e:87:12:29:ae:da:1c:e0:61:
34:81:a8:7c:48:e5:47:28:d3:7d:d5:1e:f8:a9:32:12:a9:83:
b6:22:5e:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org