Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qityY4ybSGM9u0O4ygfJZESM5ak.roa
File: qityY4ybSGM9u0O4ygfJZESM5ak.roa (raw, json)
Hash identifier: G7qWUNIdIapsNoo8TJY7DtFzbcjpeUu3DPBpYm3+Fc4=
Subject key identifier: AA:2B:72:63:8C:9B:48:63:3D:BB:43:B8:CA:07:C9:64:44:8C:E5:A9
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1059
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qityY4ybSGM9u0O4ygfJZESM5ak.roa
Signing time: Sun 07 Feb 2021 12:44:20 +0000
ROA not before: Sun 07 Feb 2021 12:44:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 180.218.156.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4185 (0x1059)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:44:20 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AA2B72638C9B48633DBB43B8CA07C964448CE5A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c3:d3:29:1e:3f:cd:bb:e5:21:88:3d:df:e4:
9f:a5:02:58:07:67:bf:a3:a7:46:6c:18:ee:91:78:
29:a3:3e:7b:c8:34:59:dc:b1:2e:8f:ef:ca:88:e8:
ca:ae:49:f9:55:15:79:39:d4:ab:a5:cd:e6:c4:78:
80:01:b3:f5:68:ad:ed:c9:91:7a:da:f4:c2:47:da:
17:e8:c2:da:03:31:97:91:42:ed:cc:b8:51:96:c7:
d3:20:c1:ec:a7:3d:d9:96:3c:f5:52:e8:50:f9:f8:
b6:50:23:bf:69:80:22:6c:5a:3e:e5:0d:8c:cf:ff:
4c:85:38:c5:75:55:77:2c:c2:ad:dc:f3:46:4e:ba:
0d:43:24:13:a1:d7:e8:8f:1c:c7:69:d0:38:eb:46:
60:a3:ac:5c:8a:f4:e5:bc:c6:55:b0:10:2e:08:b8:
63:e9:ec:b4:90:26:e8:3c:03:05:32:cd:e2:02:50:
18:65:86:81:9a:b2:9e:eb:c3:cd:46:73:7d:98:54:
24:eb:d9:96:dd:f3:7b:39:70:2f:4b:99:37:e2:c8:
8a:32:df:fe:58:cd:4c:18:97:6a:f6:3c:4b:ad:2c:
7d:5f:60:b4:77:74:19:f3:c0:50:e0:f1:4a:9d:cc:
62:ce:91:b1:8f:c0:81:47:ea:60:aa:2e:e9:0d:fd:
35:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:2B:72:63:8C:9B:48:63:3D:BB:43:B8:CA:07:C9:64:44:8C:E5:A9
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qityY4ybSGM9u0O4ygfJZESM5ak.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.156.0/22
Signature Algorithm: sha256WithRSAEncryption
25:f7:f7:05:ee:06:33:f9:99:d2:f3:9e:91:38:10:0e:1d:49:
b4:f2:97:a9:e0:02:c1:41:48:9e:d1:de:6c:88:b8:b8:1f:20:
5c:5c:9c:50:29:b9:15:bc:c4:9e:0a:e6:2b:2c:9b:12:a7:e6:
47:72:f4:f0:ad:75:62:b8:93:f8:e9:a5:0f:b8:11:54:c2:5f:
6f:c0:61:9e:f2:89:92:a6:55:37:8c:cd:a4:1a:32:8c:2f:c1:
58:4f:47:e9:b6:46:42:1e:70:3d:26:05:45:f7:e6:34:af:98:
35:d2:4a:fa:97:20:f8:4a:c3:ec:eb:67:5c:2d:c8:68:3d:b1:
c0:1b:66:7d:fd:2e:31:09:a8:9c:99:f2:65:29:1f:ba:75:37:
4f:e9:d3:b0:6e:16:1c:75:9a:33:33:87:66:8a:aa:36:2e:16:
d6:c3:15:37:d5:a3:63:15:52:db:f1:3b:4e:37:25:e7:15:2f:
6b:2f:e7:41:b2:c9:42:17:9c:a7:b8:2d:d2:b2:0f:0e:89:30:
88:9c:ac:39:58:ea:76:5b:1e:e9:90:7d:9b:f0:5a:26:e9:f0:
a8:b0:70:c0:c0:ca:e9:14:43:5a:dc:a0:3d:28:22:b1:be:98:
a9:a2:d1:de:e1:5b:38:4e:9a:30:8b:57:75:8f:d3:33:49:c0:
31:61:b4:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:52 2023 by rpki-client on console-fra.rpki-client.org