Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/rAmRZQ1veod_csKpA5dOCu5Y_Is.roa
File: rAmRZQ1veod_csKpA5dOCu5Y_Is.roa (raw, json)
Hash identifier: yYa3mSfEgOx2MNp426tk9aOYL3G/wMWI3CnNt7A4SOM=
Subject key identifier: AC:09:91:65:0D:6F:7A:87:7F:72:C2:A9:03:97:4E:0A:EE:58:FC:8B
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1E96
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/rAmRZQ1veod_csKpA5dOCu5Y_Is.roa
Signing time: Fri 01 Sep 2023 10:16:14 +0000
ROA not before: Fri 01 Sep 2023 10:16:14 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 180.218.216.0/21 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7830 (0x1e96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:16:14 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=AC0991650D6F7A877F72C2A903974E0AEE58FC8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:72:6e:c2:5c:26:a3:41:42:b0:f5:9d:06:e7:
04:a6:68:03:32:d9:8c:f3:eb:1e:ef:50:1e:5b:21:
e1:6c:49:80:5c:fd:8e:04:08:3a:bf:0a:5a:3f:6f:
10:7e:6e:39:76:61:3f:84:1b:c1:60:03:e9:e6:05:
50:d1:d5:19:e8:64:3f:8c:bc:57:96:a1:2a:3d:a4:
dd:fd:b0:5f:55:73:0a:0f:41:73:29:48:f5:55:5a:
d0:b6:bd:76:3f:7d:81:20:dc:f8:13:46:fe:5b:16:
4c:6c:25:9d:17:ab:ce:22:e4:54:97:7a:79:40:c1:
df:a6:98:75:76:ee:b4:49:7a:b0:cf:ca:3b:a4:65:
4f:3b:c7:6f:4b:e3:d4:95:7c:b1:44:c8:88:1b:b2:
34:12:c4:b6:95:67:ad:ef:44:77:94:0a:e6:15:8e:
89:48:6c:46:67:db:9b:7b:53:13:6f:f5:d3:4e:79:
c3:6e:c6:37:eb:c8:f5:19:44:7e:83:5a:f8:ef:ef:
a5:d7:a2:20:6d:fe:b7:7b:9d:7d:e6:0f:be:3c:0a:
02:6a:16:4b:21:ef:33:e5:93:11:1e:24:ee:7f:3e:
41:75:e2:b6:a1:21:b2:91:0b:11:81:7a:58:9a:da:
e0:4b:64:a2:1f:e2:b8:ea:3d:d4:7e:41:2e:97:aa:
87:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:09:91:65:0D:6F:7A:87:7F:72:C2:A9:03:97:4E:0A:EE:58:FC:8B
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/rAmRZQ1veod_csKpA5dOCu5Y_Is.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.216.0/21
Signature Algorithm: sha256WithRSAEncryption
34:a7:37:5f:7b:b2:69:75:db:24:05:7b:ea:c5:3d:10:72:bd:
0e:36:a2:d5:f3:03:3a:cf:81:20:01:ee:44:9d:2d:bf:71:10:
b0:74:f7:41:8b:c1:54:bf:82:e5:4b:a3:03:7c:77:4d:da:cd:
59:53:0d:4f:02:7c:f9:8c:08:d9:e9:08:4c:fb:3a:be:2f:1a:
d1:c4:96:96:4e:09:16:32:fc:36:87:4a:e8:c5:17:a1:43:9e:
0e:86:e3:b4:41:ae:84:13:45:6f:ee:28:57:a7:a1:d9:ae:6b:
ce:f9:14:da:db:75:fd:b7:60:43:ac:30:82:cc:c9:38:ef:1c:
0f:dc:61:2a:a9:3d:26:82:d1:74:5a:e1:05:58:58:91:94:55:
f8:1f:d8:0b:20:af:c5:7b:c1:4c:86:c3:b1:2c:77:55:6e:49:
cf:b7:42:20:00:85:27:f6:a1:f9:31:6b:06:2b:b8:c8:69:cc:
42:5d:61:79:ac:2b:46:39:ff:d6:b8:9b:d0:54:9d:35:b1:7c:
8a:d9:8d:cb:45:b0:8a:ce:41:d1:92:87:08:00:dc:fa:a2:c5:
cc:b5:e2:78:07:b9:fd:04:77:fd:bc:94:2a:dc:46:92:f1:f9:
b8:c3:e6:ea:a2:43:a0:cb:43:da:fa:92:a0:2f:e2:ec:bd:a0:
bb:de:d1:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:53:05 2025 by rpki-client