Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3fAd8J_Zf3g00JJA_DZMzB8X1XQ.roa
File: 3fAd8J_Zf3g00JJA_DZMzB8X1XQ.roa (raw, json)
Hash identifier: t0yEFyuNh2invQTaSxPo4AKhoqi+lKFi5OUnzDyzMEg=
Subject key identifier: DD:F0:1D:F0:9F:D9:7F:78:34:D0:92:40:FC:36:4C:CC:1F:17:D5:74
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1330
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3fAd8J_Zf3g00JJA_DZMzB8X1XQ.roa
Signing time: Wed 29 Sep 2021 02:55:27 +0000
ROA not before: Wed 29 Sep 2021 02:55:27 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24163
IP address blocks: 180.218.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4912 (0x1330)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:27 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DDF01DF09FD97F7834D09240FC364CCC1F17D574
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:44:0b:b4:17:34:d7:55:e0:e9:f3:49:21:4c:
d1:5a:25:fa:c9:0b:2f:e5:2e:9f:71:37:9a:2f:0c:
ff:8e:3c:83:66:c9:8c:1e:45:61:b0:6f:85:cc:9b:
44:88:0e:3c:c5:f7:f6:f4:cb:18:08:56:90:d3:06:
16:7c:ba:72:cb:c3:a8:1e:68:ab:56:4d:99:23:f9:
33:eb:59:a1:a6:d1:21:0a:90:6f:26:57:a6:32:bf:
1c:a7:e9:2a:02:bc:7a:df:af:39:37:f1:21:10:f3:
97:5c:84:db:eb:4f:e3:4d:87:30:ba:35:7a:83:aa:
66:f6:3d:3d:0b:98:32:8f:82:40:1f:07:62:80:7a:
e9:23:69:f0:e7:68:79:38:76:8f:02:1e:54:ae:36:
2f:6e:d1:4f:32:14:fa:21:68:87:54:d1:46:7b:41:
02:c0:9c:23:96:11:8b:35:3b:16:ac:d7:f1:35:de:
5f:7a:b5:26:5a:58:e2:b4:9b:66:43:14:36:8e:7d:
57:b2:8e:fa:7a:94:35:a0:9f:59:63:1d:cb:38:bb:
f9:cd:50:76:42:a2:4b:4f:78:19:cc:11:49:be:82:
06:07:b9:cc:f3:dd:0d:19:e3:de:d3:4e:4c:89:8f:
8f:6c:ad:d4:11:af:4d:17:54:1d:b9:53:ca:92:30:
4e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:F0:1D:F0:9F:D9:7F:78:34:D0:92:40:FC:36:4C:CC:1F:17:D5:74
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3fAd8J_Zf3g00JJA_DZMzB8X1XQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.0.0/16
Signature Algorithm: sha256WithRSAEncryption
68:2d:78:58:83:6e:81:d8:2f:d3:50:9f:0a:22:da:79:58:46:
2d:bf:ed:d6:1e:30:4a:10:a8:6c:b9:15:42:d9:bd:32:d8:10:
0e:77:7b:65:c6:7c:f2:35:6b:6f:b1:94:40:a0:f9:2a:92:62:
aa:79:98:79:b6:ec:e2:02:24:81:b4:8c:3e:cb:c2:38:c8:54:
02:a3:ac:d8:c0:dd:de:0a:cf:d5:fd:8c:fa:5b:b7:5d:81:5a:
aa:ef:32:df:be:be:5a:da:e4:cf:41:4e:4a:12:d0:fc:ee:01:
69:9f:00:51:ee:9e:34:eb:f8:06:42:93:90:f6:2f:48:ea:33:
33:bf:00:ba:2f:82:b8:cc:02:e9:93:72:38:9a:80:e3:00:dc:
1c:90:0a:fb:b8:c2:53:20:96:7c:b4:02:03:6c:a4:b5:52:f9:
81:b2:d0:d8:3a:f8:0d:5f:bb:d0:a4:cb:bc:af:7c:01:03:38:
ab:27:26:ee:e3:d4:43:c6:91:ad:d3:80:f7:3e:31:98:7d:34:
94:3f:bb:96:67:e3:3a:da:f3:6d:ef:a1:63:4a:2c:00:3c:4d:
08:26:76:cd:8a:ef:45:28:7e:5a:3e:c9:1f:0c:29:97:cd:1c:
e6:e2:d7:42:67:ca:c7:c9:9a:b9:b9:2b:02:94:9e:9c:4c:57:
4b:22:38:e1
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICEzAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU1MjdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKERERjAxREYwOUZEOTdG
NzgzNEQwOTI0MEZDMzY0Q0NDMUYxN0Q1NzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDTRAu0FzTXVeDp80khTNFaJfrJCy/lLp9xN5ovDP+OPINmyYwe
RWGwb4XMm0SIDjzF9/b0yxgIVpDTBhZ8unLLw6geaKtWTZkj+TPrWaGm0SEKkG8m
V6Yyvxyn6SoCvHrfrzk38SEQ85dchNvrT+NNhzC6NXqDqmb2PT0LmDKPgkAfB2KA
eukjafDnaHk4do8CHlSuNi9u0U8yFPohaIdU0UZ7QQLAnCOWEYs1Oxas1/E13l96
tSZaWOK0m2ZDFDaOfVeyjvp6lDWgn1ljHcs4u/nNUHZCoktPeBnMEUm+ggYHuczz
3Q0Z497TTkyJj49srdQRr00XVB25U8qSME6DAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQU3fAd8J/Zf3g00JJA/DZMzB8X1XQwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzNmQWQ4Sl9aZjNnMDBKSkFf
RFpNekI4WDFYUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwC0
2jANBgkqhkiG9w0BAQsFAAOCAQEAaC14WINugdgv01CfCiLaeVhGLb/t1h4wShCo
bLkVQtm9MtgQDnd7ZcZ88jVrb7GUQKD5KpJiqnmYebbs4gIkgbSMPsvCOMhUAqOs
2MDd3grP1f2M+lu3XYFaqu8y376+Wtrkz0FOShLQ/O4BaZ8AUe6eNOv4BkKTkPYv
SOozM78Aui+CuMwC6ZNyOJqA4wDcHJAK+7jCUyCWfLQCA2yktVL5gbLQ2Dr4DV+7
0KTLvK98AQM4qycm7uPUQ8aRrdOA9z4xmH00lD+7lmfjOtrzbe+hY0osADxNCCZ2
zYrvRSh+Wj7JHwwpl80c5uLXQmfKx8maubkrApSenExXSyI44Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org