Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oGhHWU21LGfwFpyFBtvoo26fr8g.roa
File: oGhHWU21LGfwFpyFBtvoo26fr8g.roa (raw, json)
Hash identifier: EBDi634ZxJF7GFa/xEdkuZbADnfDAtGd2FqgCMOYyNc=
Subject key identifier: A0:68:47:59:4D:B5:2C:67:F0:16:9C:85:06:DB:E8:A3:6E:9F:AF:C8
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1DFF
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oGhHWU21LGfwFpyFBtvoo26fr8g.roa
Signing time: Fri 01 Sep 2023 10:15:33 +0000
ROA not before: Fri 01 Sep 2023 10:15:33 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 180.218.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7679 (0x1dff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:15:33 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A06847594DB52C67F0169C8506DBE8A36E9FAFC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6b:c3:6b:3d:44:cc:e7:70:d3:49:e0:99:c2:
47:84:60:d2:39:8f:b2:60:73:01:28:c0:21:db:9d:
cd:a2:63:10:7d:a8:9b:34:c1:d3:dc:b7:80:99:8e:
0d:5f:16:b9:cd:c4:a3:3c:46:a4:e1:5a:98:5b:3d:
06:4e:bf:ad:e8:76:3d:42:91:da:92:7c:4c:f1:f8:
8c:a5:bc:07:59:bf:0f:a6:67:e9:f5:c1:17:57:eb:
e2:75:b9:55:2f:10:69:77:c9:74:f8:a8:1b:73:38:
a9:30:04:bf:0e:76:e3:28:32:a0:a4:44:22:86:4d:
27:37:28:14:f1:6a:01:44:03:53:9b:aa:45:29:e0:
cc:54:33:24:e0:c7:48:2c:b1:39:13:c7:ce:16:2e:
37:5c:9c:1c:7b:8b:ad:b8:4a:9f:c5:40:dc:3a:dc:
90:83:22:58:de:89:03:73:ad:bf:ef:0a:4f:5a:96:
f0:7c:da:88:7a:33:39:70:75:5e:06:4e:c7:6b:85:
d5:b3:c1:ff:98:a8:66:30:41:78:04:50:cf:c1:5b:
7c:68:8e:0e:a6:a3:c1:c2:8e:75:24:0a:9a:27:72:
77:91:39:4e:b6:e5:20:b9:8e:29:dc:82:fe:7b:37:
31:f5:c7:d4:00:da:8d:3d:d0:1d:1b:73:27:3f:76:
55:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:68:47:59:4D:B5:2C:67:F0:16:9C:85:06:DB:E8:A3:6E:9F:AF:C8
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oGhHWU21LGfwFpyFBtvoo26fr8g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.141.0/24
Signature Algorithm: sha256WithRSAEncryption
10:bf:d2:66:66:26:7e:e8:16:9d:8d:b4:66:29:c6:33:e7:36:
f2:62:91:4e:4d:82:b8:3b:ee:f4:d3:71:44:d2:e3:1a:41:fd:
c8:0a:91:fc:a7:4a:22:2c:52:ac:a9:68:dd:2d:2d:7e:0d:3e:
fa:81:52:f9:4c:36:5b:61:f7:b4:6d:d5:af:42:d4:5d:29:b5:
be:a7:d7:50:16:c4:c1:d2:b1:a6:2b:9f:08:c3:85:79:9e:fd:
cb:88:9d:f8:5d:62:88:d6:28:57:f6:d7:1a:7d:df:7d:bf:35:
16:21:b7:89:16:d1:d7:01:53:1e:ed:00:19:86:93:97:23:5c:
83:69:26:00:5b:8c:de:06:7d:f0:f0:a8:a2:02:02:46:1d:99:
31:b7:0d:2e:86:8a:71:29:89:98:44:87:9b:7a:0e:cb:4b:26:
ef:df:f7:fb:ce:0d:c0:0b:a4:33:3c:ee:7e:21:14:8c:81:11:
30:67:95:ee:ea:73:d5:30:2f:cf:88:2f:1f:00:86:4a:47:d1:
6b:d7:09:87:2b:b2:54:ed:f3:3d:23:bc:a0:53:0a:01:ec:64:
76:4c:6d:bd:9e:26:5f:41:f9:e3:7d:29:ba:33:4f:e5:eb:b5:
9e:73:5d:3b:08:5e:0b:17:e9:b8:11:84:8c:71:b8:3e:13:54:
ac:08:c6:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:53:13 2025 by rpki-client