Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ykIUvuot5Ghj2d7Q48lMyf8_qzc.roa
File: ykIUvuot5Ghj2d7Q48lMyf8_qzc.roa (raw, json)
Hash identifier: KUM2w0IQulf2Bby9ftKy39nfV5HUzRd4f6kyXlFaXI8=
Subject key identifier: CA:42:14:BE:EA:2D:E4:68:63:D9:DE:D0:E3:C9:4C:C9:FF:3F:AB:37
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 17E4
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ykIUvuot5Ghj2d7Q48lMyf8_qzc.roa
Signing time: Sat 22 Oct 2022 05:46:55 +0000
ROA not before: Sat 22 Oct 2022 05:46:55 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 180.218.240.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6116 (0x17e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 05:46:55 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CA4214BEEA2DE46863D9DED0E3C94CC9FF3FAB37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d3:59:b6:cf:59:cd:a6:28:47:c1:de:53:c8:
ca:3b:fe:b4:92:7a:90:d0:d7:8b:34:78:45:f6:31:
45:52:5a:1e:b4:21:3e:33:7a:0b:23:d7:5e:e2:da:
ad:fd:57:09:72:9e:d1:9c:bb:01:b6:89:6f:27:d5:
d5:e1:53:d2:46:2a:97:09:46:7f:3c:39:de:48:67:
a9:41:2f:bb:20:97:b0:ae:d8:44:b0:46:9d:9a:bd:
1f:bd:13:64:f7:bc:3c:70:c6:2a:3f:4c:fb:d8:b3:
89:61:16:98:6d:75:ff:d8:db:c3:ae:27:2b:5d:95:
96:5a:9e:0a:9c:c3:b5:9f:a9:37:f0:3e:9b:13:53:
df:7b:f2:8f:82:63:08:88:7d:b0:e7:8f:19:49:68:
82:23:44:9c:9c:79:0c:09:db:33:40:a2:d0:8e:6a:
4a:9f:e6:08:61:14:c1:c8:df:4c:7b:c0:24:64:64:
c4:db:c2:03:1e:36:df:96:0e:e8:2a:a0:44:ac:9a:
ec:06:0c:9a:50:9f:bd:dd:42:67:63:23:30:a8:59:
b0:96:eb:da:93:7e:8d:78:78:05:e5:3f:42:d1:6a:
ed:7d:e6:85:d6:01:0b:84:48:1d:e4:4f:40:ee:5c:
c8:12:62:8e:fe:65:52:32:13:24:bb:58:c0:91:8c:
4e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:42:14:BE:EA:2D:E4:68:63:D9:DE:D0:E3:C9:4C:C9:FF:3F:AB:37
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ykIUvuot5Ghj2d7Q48lMyf8_qzc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.240.0/20
Signature Algorithm: sha256WithRSAEncryption
1b:e6:36:bf:f2:19:fe:84:6c:7c:ec:e1:e8:1d:ad:86:4b:37:
1b:13:bb:84:e2:95:cf:84:6b:c8:97:06:5e:ec:e2:12:b0:5f:
d2:b3:f6:45:7b:a9:84:d3:d7:49:0d:bf:78:cf:47:69:cb:4f:
28:2d:b6:10:a2:12:f2:4e:fd:d9:f6:b1:b2:f7:bb:d1:a2:f1:
ed:21:fe:ff:2d:cb:1a:0f:5f:44:c5:ac:2c:e9:0b:bc:e1:ec:
f7:09:93:a6:26:72:81:0a:36:d6:54:e2:c3:f9:6f:79:0e:90:
87:6c:d7:d9:2d:63:ca:c0:fb:ea:d3:fd:39:99:27:0f:c3:1b:
37:c2:1c:f2:a3:8b:77:e1:75:4b:c9:8d:0f:4d:22:f8:2d:05:
bb:de:8a:e3:68:59:16:2b:a2:2f:71:80:45:20:5b:50:05:53:
76:d8:0b:9c:af:7b:86:cc:30:64:8e:87:8d:fd:79:9e:21:ee:
85:52:ac:53:01:32:48:57:25:ac:c8:c7:f5:65:f6:3c:47:7b:
82:28:19:7c:27:fe:02:fd:20:72:9a:3e:ef:62:6f:38:51:4c:
52:ac:32:05:33:62:08:6f:56:09:f5:be:48:45:73:8e:64:a7:
91:78:2d:07:60:7d:a0:df:80:79:91:ef:dc:8d:48:c0:2e:62:
09:b7:5a:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org