Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/owBD3KaL58SVmnS7GhWW6394_MQ.roa
File: owBD3KaL58SVmnS7GhWW6394_MQ.roa (raw, json)
Hash identifier: peSDN/yWpagcV6JyyBKqDtWKdbNTmKXwvSF21xdHviU=
Subject key identifier: A3:00:43:DC:A6:8B:E7:C4:95:9A:74:BB:1A:15:96:EB:7F:78:FC:C4
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/owBD3KaL58SVmnS7GhWW6394_MQ.roa
Signing time: Thu 15 Sep 2022 02:35:58 +0000
ROA not before: Thu 15 Sep 2022 02:35:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24165
IP address blocks: 180.218.40.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:35:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A30043DCA68BE7C4959A74BB1A1596EB7F78FCC4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a2:bb:8e:54:ab:5a:a6:b2:86:12:c8:60:61:
91:17:2d:a0:fa:26:b8:2b:38:56:6b:b7:8e:58:96:
eb:7e:0d:13:2e:23:41:d8:f0:f7:f4:07:e7:2c:0a:
e2:b4:64:19:e0:3b:1f:08:b9:5b:20:8c:c7:cc:e8:
47:ab:b8:b9:5f:1f:20:d2:67:63:bd:c1:e3:ab:58:
db:3b:84:b8:ed:44:9a:77:bb:e6:68:f9:97:77:54:
f5:20:78:d5:9d:be:5f:49:48:24:46:71:2e:1a:11:
26:b0:db:a4:1c:b3:76:10:45:dc:49:3e:84:26:eb:
01:b4:13:b1:52:d6:2e:89:9a:a0:ad:df:e2:f4:e4:
18:3d:c3:3d:02:1f:df:de:32:9e:90:ba:b3:e5:a8:
3d:c2:9d:9f:42:3d:84:46:50:2a:a9:c2:40:2e:79:
19:7f:7f:b9:fc:a6:7b:2e:7d:55:40:58:b1:77:25:
29:8b:d8:e0:64:92:48:6e:2d:24:d4:ab:b7:dd:77:
23:ab:f2:fb:5a:09:73:13:3e:f9:02:28:7f:b9:1a:
6d:13:0a:ed:ee:a2:23:97:9d:8b:6d:0e:51:cb:22:
19:78:5d:f0:97:99:db:bd:27:3f:a8:17:9e:7d:62:
96:c3:34:85:26:fa:1f:75:73:1d:9d:fe:4e:ee:b8:
b7:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:00:43:DC:A6:8B:E7:C4:95:9A:74:BB:1A:15:96:EB:7F:78:FC:C4
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/owBD3KaL58SVmnS7GhWW6394_MQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.40.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:8e:f8:74:43:95:db:c8:b0:37:ba:19:52:e5:fb:47:18:4c:
72:e6:ed:d6:db:d8:b3:f9:98:00:6d:d7:2e:d0:1d:05:15:b0:
55:17:5c:f0:b9:dd:77:54:55:86:9d:68:56:94:88:ab:d4:40:
2e:92:e9:d8:bb:11:76:e8:3e:65:9d:15:12:0d:dc:ac:87:b7:
d5:eb:99:da:b9:96:51:c2:30:1c:85:5d:11:3f:26:49:e4:81:
9b:cd:15:2b:7e:f0:71:86:3a:43:3b:63:56:74:9a:7d:98:4e:
36:11:c1:25:70:5b:1f:16:4d:00:79:67:43:9e:6d:be:4e:c7:
20:7b:27:a6:1b:82:2b:ba:da:67:c7:7a:ee:c7:c6:ad:41:b2:
01:66:88:cf:f5:b5:07:c1:5e:9c:b3:c9:7e:a9:a8:d7:46:b2:
9f:82:42:30:e7:d7:6d:17:75:e0:e2:59:43:5f:ad:51:4b:7f:
5b:77:a4:23:4b:45:90:c6:56:27:d7:fb:a7:70:8d:9d:f2:be:
91:08:f3:9d:b7:a1:45:99:57:24:00:58:c1:6e:4f:95:4f:42:
fb:c0:62:ab:43:63:77:90:44:95:8e:1f:30:10:01:32:f9:0f:
a9:3e:e7:5c:03:4e:fa:64:58:aa:af:74:76:86:fa:18:9d:dc:
01:f7:18:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org