Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ocFl_HO45EdopP4JVRVxQ1g2XbM.roa
File: ocFl_HO45EdopP4JVRVxQ1g2XbM.roa (raw, json)
Hash identifier: j4jtKwtcsquRsin9+bX4nOusGiFJq8gN3H6WCBirVGc=
Subject key identifier: A1:C1:65:FC:73:B8:E4:47:68:A4:FE:09:55:15:71:43:58:36:5D:B3
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12F0
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ocFl_HO45EdopP4JVRVxQ1g2XbM.roa
Signing time: Wed 29 Sep 2021 02:55:10 +0000
ROA not before: Wed 29 Sep 2021 02:55:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 180.218.160.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4848 (0x12f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A1C165FC73B8E44768A4FE095515714358365DB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:33:b0:e3:ca:85:15:95:68:99:7c:3d:f4:06:
a0:29:66:db:42:74:f2:89:34:b5:0c:15:47:fe:bc:
29:80:63:64:83:93:6b:3b:59:57:3a:d1:85:99:a5:
a4:56:c9:1e:bf:07:34:49:07:90:5f:b7:dc:8f:86:
65:44:ca:e4:44:fd:a5:a5:5c:73:0b:22:a4:ea:c7:
cd:bc:cd:db:e3:1d:70:d0:e4:a8:52:1c:87:16:89:
a4:3d:0a:d7:93:e1:cd:85:d1:85:cd:1e:79:06:5b:
c6:36:da:ff:02:99:ff:c5:fa:f7:5d:ab:12:00:38:
38:b0:39:b8:3f:eb:be:18:90:b6:32:2d:10:30:11:
20:63:ae:a3:7e:0c:db:62:02:f9:66:52:01:f8:c5:
f6:03:b5:99:61:8e:46:50:10:07:df:10:09:03:28:
6c:fd:50:21:2e:87:54:7b:36:23:13:d1:3b:64:10:
a4:51:e1:ac:2c:a7:cc:73:32:59:70:e1:d4:22:2e:
fd:85:df:9f:c8:2f:0c:68:72:f8:30:53:71:64:c7:
49:ba:9b:5f:51:d5:ab:eb:18:3b:d6:db:79:eb:40:
47:f9:84:fb:1c:96:c5:42:3b:6d:ae:3e:11:52:f2:
fa:8f:50:96:fc:d0:ce:67:f3:01:ba:29:b2:33:ae:
c6:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:C1:65:FC:73:B8:E4:47:68:A4:FE:09:55:15:71:43:58:36:5D:B3
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ocFl_HO45EdopP4JVRVxQ1g2XbM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.160.0/22
Signature Algorithm: sha256WithRSAEncryption
53:d6:57:7c:9f:ee:92:c2:24:a1:9e:27:f5:cd:57:b9:23:ce:
41:7b:86:8b:40:d4:63:c5:6d:08:8d:99:a5:19:92:12:dc:3e:
09:1f:5e:7d:80:10:fa:35:46:48:ce:37:be:71:66:95:ca:00:
f2:ff:0d:b6:85:5a:b9:6b:b4:9c:f1:5d:f7:c9:9c:21:9d:f6:
92:f2:31:df:b5:81:74:e6:38:39:c7:b0:e4:21:15:b0:c0:4f:
74:e8:d2:30:03:f8:d1:7a:ff:c4:79:04:ee:d5:4f:2c:71:bc:
57:f7:3e:3d:9d:32:cd:22:7f:75:70:ef:a0:92:33:56:5c:a8:
06:29:9a:b0:e8:c7:14:2e:db:ce:9f:d6:73:0e:a8:7a:63:a5:
e2:0d:04:db:0e:4a:7e:b5:99:95:bb:32:d7:2a:66:c8:e4:55:
8b:07:c4:94:76:ee:c2:64:c6:1e:6a:39:b6:51:63:aa:9c:b8:
e2:ad:39:06:ca:ff:cf:46:8a:29:5e:ea:03:7a:bf:26:0d:50:
09:31:bc:b2:c9:d7:67:b7:cd:2f:e2:e8:c5:f5:a4:70:8c:7a:
8c:03:f0:52:9c:35:40:4d:47:a6:14:17:b7:35:06:36:cf:67:
b3:39:be:6b:8b:b3:7b:68:90:28:3d:2a:cc:16:9d:b9:ea:a3:
27:2e:18:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org