Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/z0oKn5pWkb-BjXjMmF3Ioc0Q4d0.roa
File: z0oKn5pWkb-BjXjMmF3Ioc0Q4d0.roa (raw, json)
Hash identifier: LuVs3sSEszuRCUmNmdioUGskUvyhqw4tbPW3TV5bHK0=
Subject key identifier: CF:4A:0A:9F:9A:56:91:BF:81:8D:78:CC:98:5D:C8:A1:CD:10:E1:DD
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0B4E
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/z0oKn5pWkb-BjXjMmF3Ioc0Q4d0.roa
Signing time: Tue 29 Sep 2020 10:08:15 +0000
ROA not before: Tue 29 Sep 2020 10:08:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 180.218.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2894 (0xb4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:08:15 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CF4A0A9F9A5691BF818D78CC985DC8A1CD10E1DD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:2d:89:b9:37:36:05:61:0f:ef:bc:64:ce:35:
7c:f6:68:bb:70:c3:33:5c:1a:9b:32:be:ed:ea:a1:
24:3a:86:8e:50:74:29:e7:29:ad:03:96:aa:d8:0a:
04:02:ef:66:68:e1:29:2e:1d:d2:2c:95:ca:02:c8:
52:28:a3:4c:26:c9:d4:b8:10:1c:58:f5:1b:74:7b:
57:f4:62:49:b0:73:a6:47:49:6b:a5:ee:70:da:57:
95:65:ab:a6:63:b6:2a:62:5e:fe:b7:ad:78:9d:93:
7a:97:b3:97:d4:71:60:f0:08:7c:7b:e2:d6:2f:16:
2e:18:3b:78:1b:b2:af:e5:e5:91:b6:7e:bc:dd:40:
0d:bf:19:63:c1:42:a3:f3:e2:35:82:6f:98:e2:16:
05:8e:83:b5:b2:20:1c:33:04:05:c5:09:17:f2:31:
20:57:08:51:50:26:76:5b:8c:aa:da:81:ed:86:ab:
ca:37:34:b0:3d:20:0d:42:10:6b:01:68:59:9f:24:
66:7a:b0:5c:33:59:02:c1:4c:8f:e7:a8:07:09:d7:
47:e3:95:00:89:86:02:32:07:d8:23:69:5f:06:97:
d7:29:b6:07:69:f4:1c:2b:06:ad:ff:1d:b7:36:80:
f2:9c:01:b3:58:d2:01:32:99:6b:09:86:8b:a8:4d:
86:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:4A:0A:9F:9A:56:91:BF:81:8D:78:CC:98:5D:C8:A1:CD:10:E1:DD
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/z0oKn5pWkb-BjXjMmF3Ioc0Q4d0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.188.0/24
Signature Algorithm: sha256WithRSAEncryption
34:50:e5:82:e3:1d:05:2e:8a:d6:72:30:2d:60:31:7d:05:4e:
33:54:a8:d1:f9:eb:b6:6a:d3:bc:99:75:65:59:e9:79:ca:7d:
a4:ee:8d:62:ac:40:0c:4b:66:67:89:f8:2d:4d:15:08:07:8f:
0b:1c:49:c9:f4:c4:7e:14:62:fb:62:48:69:0c:f1:f3:4e:df:
79:3c:14:80:c4:26:d3:3d:3f:90:df:3e:40:9f:69:0c:9a:8d:
5a:0a:18:14:69:4b:d0:e0:3e:0f:7c:24:33:72:d8:ef:71:db:
87:8c:e7:9f:cf:a9:85:61:9e:90:61:8d:51:f0:a4:c0:31:d0:
93:21:78:46:41:31:f5:a2:f2:c1:7c:d3:1e:04:d6:c2:ee:bf:
35:c7:83:d7:a1:73:da:90:91:75:51:a2:8a:8a:1a:b1:46:8e:
17:9f:2d:14:fe:32:ba:59:a9:6f:e7:73:59:88:26:4e:f8:54:
b0:b2:57:e0:ca:75:3a:4b:ab:8e:c9:3f:f3:71:e8:83:ee:35:
9a:b5:dc:3e:32:7f:26:05:5c:83:f2:f7:ba:10:11:17:32:f4:
84:18:29:d2:6a:1b:04:ce:03:91:49:55:16:fb:ce:34:b5:5d:
b9:eb:3c:25:73:fb:75:7d:24:29:e2:b7:27:e1:9f:9b:9b:17:
2b:8c:a7:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:53 2023 by rpki-client on console-fra.rpki-client.org