Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yZVgdFhCZxzmrQVys6ofRS6J6W8.roa
File: yZVgdFhCZxzmrQVys6ofRS6J6W8.roa (raw, json)
Hash identifier: powFskjO/jCiWADVmt4bcE9InIOSBPRAO+WgJ8AlVY8=
Subject key identifier: C9:95:60:74:58:42:67:1C:E6:AD:05:72:B3:AA:1F:45:2E:89:E9:6F
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 10B7
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yZVgdFhCZxzmrQVys6ofRS6J6W8.roa
Signing time: Sun 07 Feb 2021 12:47:12 +0000
ROA not before: Sun 07 Feb 2021 12:47:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 180.218.80.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4279 (0x10b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:47:12 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C99560745842671CE6AD0572B3AA1F452E89E96F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d7:b7:38:9b:67:1a:61:a8:06:a1:0e:ee:2f:
d1:78:37:37:be:7b:ef:0c:d9:e9:69:4b:6c:82:9c:
55:01:76:6e:29:ac:b1:07:9c:10:14:36:26:5f:35:
ec:2a:73:a8:62:a9:a8:4b:0f:70:d7:63:88:d3:c6:
f3:3e:5e:37:d6:2c:27:c1:54:2e:a4:50:68:bb:e9:
29:d2:e2:5d:01:f7:11:9f:23:d7:d9:01:03:a9:68:
71:1f:73:09:c1:fb:71:0c:17:53:0f:0f:c1:a9:02:
35:01:97:6e:94:42:fd:0e:45:83:d6:0b:07:da:a8:
32:dc:4b:a7:da:af:c4:30:b9:bd:94:97:14:fd:cc:
d2:11:a0:ff:37:a3:78:73:6b:3e:0f:62:bc:93:e3:
a9:44:fa:23:c6:35:1d:a3:40:e3:8a:2b:c7:18:72:
08:58:34:48:77:d3:14:bb:e2:26:fa:30:bf:12:b1:
57:13:69:46:e1:20:a7:7e:3a:d7:c7:ab:17:cb:f6:
6d:7a:6f:a2:46:bb:3b:e2:e8:94:1a:de:ee:0d:e4:
0d:f6:cc:d0:33:93:ce:81:25:79:70:08:3c:e5:1f:
61:91:4f:6e:d6:a2:68:b8:74:20:85:6e:f8:cf:ff:
1b:ef:16:c6:4d:8a:02:84:e1:29:fd:e4:9f:b4:e9:
02:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:95:60:74:58:42:67:1C:E6:AD:05:72:B3:AA:1F:45:2E:89:E9:6F
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yZVgdFhCZxzmrQVys6ofRS6J6W8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.80.0/22
Signature Algorithm: sha256WithRSAEncryption
85:b4:99:b9:b1:7d:1a:39:f6:53:77:7f:34:03:69:e3:a9:56:
59:d4:97:1c:3c:9c:cb:4a:55:4b:04:23:fe:c2:1b:01:aa:95:
cf:da:11:19:de:6b:3d:4e:6b:12:e9:d4:8b:84:46:25:10:24:
42:a5:d3:1f:f1:4c:62:5b:7a:68:2f:70:02:ad:34:33:14:0c:
d4:3b:0f:06:5a:26:74:6b:48:f0:c2:07:0a:f7:a9:c2:38:5f:
91:78:2a:a0:6a:be:9e:c0:28:3a:a0:c1:74:ba:db:f5:c8:3c:
2c:e5:cd:47:60:af:52:4b:c3:c8:d5:20:a6:01:fa:73:5a:c6:
b6:47:8b:e3:fa:90:ab:98:66:87:8c:76:f5:a6:c4:ad:10:01:
05:ce:cc:5c:27:61:0f:7d:37:b9:11:8a:ff:f1:14:15:dd:be:
c8:81:8b:8f:21:ec:f1:36:81:a4:f3:a0:dd:06:fb:4a:8a:38:
a9:2f:e6:43:8d:48:ee:22:03:57:b3:26:82:9f:c0:a0:27:4e:
b9:7e:ef:3a:d5:18:3a:33:72:ec:f8:c8:13:27:d7:87:d8:ac:
88:ec:43:a5:17:08:8b:7a:a1:13:bc:4a:4d:d3:42:3c:2f:2a:
f3:12:d6:bf:d2:b8:23:cf:15:8b:e5:16:98:30:c8:78:cd:76:
05:4c:b2:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:53 2023 by rpki-client on console-fra.rpki-client.org