Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yoP2Cq7NKCtNyEMRBshzvUg0w24.roa
File: yoP2Cq7NKCtNyEMRBshzvUg0w24.roa (raw, json)
Hash identifier: ui4oN6HsScrywkeX/ukQBe7WnccdZnZAcg2BlN4seRA=
Subject key identifier: CA:83:F6:0A:AE:CD:28:2B:4D:C8:43:11:06:C8:73:BD:48:34:C3:6E
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 104B
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yoP2Cq7NKCtNyEMRBshzvUg0w24.roa
Signing time: Sun 07 Feb 2021 12:44:02 +0000
ROA not before: Sun 07 Feb 2021 12:44:02 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 180.218.139.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4171 (0x104b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:44:02 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CA83F60AAECD282B4DC8431106C873BD4834C36E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b0:e9:3a:87:f9:9d:cb:7c:e2:37:47:bb:f6:
8e:02:cb:b3:a1:d9:0a:c4:a5:74:e9:e0:51:33:5f:
a7:42:0f:21:a4:20:b3:90:eb:22:dd:8c:d6:fd:5c:
ee:be:18:49:d3:b3:e8:ac:b4:3c:c9:0b:5c:01:b8:
a9:ce:56:4d:20:17:57:c3:41:e8:f2:59:49:72:e9:
05:00:b6:22:9a:f3:9b:77:23:dc:94:d7:d6:0e:52:
5d:4f:e6:6d:34:44:6e:9e:32:2b:ad:fb:b3:67:3b:
ba:23:e1:a2:fd:69:fb:01:8d:00:1f:4b:a7:9f:cd:
bb:76:bf:1d:da:dc:34:e2:f5:84:79:6a:50:dd:1d:
1b:53:50:48:cf:b9:51:9a:3b:61:08:da:e6:4f:2a:
1c:4b:6a:be:ca:d5:2a:50:66:9c:4b:a6:75:2b:27:
8d:99:6c:4d:32:e9:39:b5:7b:b6:76:cc:98:04:0c:
48:3e:04:98:9a:8f:a9:d0:c0:d7:a7:3e:d1:49:d1:
c1:6f:0d:3a:44:1b:99:46:a3:15:88:0d:2e:c8:c8:
ab:01:1b:01:40:5b:5c:e8:52:35:c3:94:e1:11:2f:
31:c4:b2:37:66:2d:3b:b6:f0:30:97:d0:73:92:90:
aa:a2:7f:c7:3f:63:80:d5:be:fe:d3:50:a4:e8:9a:
51:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:83:F6:0A:AE:CD:28:2B:4D:C8:43:11:06:C8:73:BD:48:34:C3:6E
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yoP2Cq7NKCtNyEMRBshzvUg0w24.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.139.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:f7:64:c0:36:3d:71:c6:3b:9e:31:11:41:16:e2:4f:5e:00:
e3:56:a2:f7:ed:29:3f:89:01:a8:4b:40:91:03:32:90:07:e3:
72:ad:34:ec:d5:f1:d9:82:cf:05:21:fd:fe:19:e5:48:e6:5b:
9c:97:17:a1:76:ab:6b:21:87:a5:b2:21:98:38:e8:29:44:d3:
d5:a8:be:fd:18:59:ea:d8:82:ba:cf:dd:02:4d:5c:8e:51:cf:
1b:18:2d:0b:23:32:33:e8:75:cc:2c:f1:d0:7d:6e:db:66:34:
ff:44:b2:7e:2c:da:a2:d4:5f:17:24:58:9b:9c:10:fc:c0:6a:
53:fa:e1:07:d4:47:7b:9a:66:6c:65:11:9c:c5:35:b2:59:9d:
03:42:75:0d:ee:cb:b0:14:37:e2:e7:a1:4f:38:52:9f:28:a0:
2a:65:41:db:42:86:e9:02:1a:e4:da:c8:1a:21:1a:04:07:c8:
ec:86:df:3b:f8:be:a6:71:b0:86:1a:3b:50:77:92:a2:87:56:
08:bd:b4:21:14:4c:b9:38:ca:99:91:6b:d2:1c:04:0d:b6:30:
3c:f1:96:67:6b:1e:14:32:41:ec:f5:94:70:f5:67:fd:7d:48:
5c:a7:6c:4d:81:df:47:18:28:78:73:4e:87:76:39:54:6f:40:
04:22:63:3c
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEEswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTAyMDcx
MjQ0MDJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKENBODNGNjBBQUVDRDI4
MkI0REM4NDMxMTA2Qzg3M0JENDgzNEMzNkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDVsOk6h/mdy3ziN0e79o4Cy7Oh2QrEpXTp4FEzX6dCDyGkILOQ
6yLdjNb9XO6+GEnTs+istDzJC1wBuKnOVk0gF1fDQejyWUly6QUAtiKa85t3I9yU
19YOUl1P5m00RG6eMiut+7NnO7oj4aL9afsBjQAfS6efzbt2vx3a3DTi9YR5alDd
HRtTUEjPuVGaO2EI2uZPKhxLar7K1SpQZpxLpnUrJ42ZbE0y6Tm1e7Z2zJgEDEg+
BJiaj6nQwNenPtFJ0cFvDTpEG5lGoxWIDS7IyKsBGwFAW1zoUjXDlOERLzHEsjdm
LTu28DCX0HOSkKqif8c/Y4DVvv7TUKTomlFNAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUyoP2Cq7NKCtNyEMRBshzvUg0w24wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3lvUDJDcTdOS0N0TnlFTVJC
c2h6dlVnMHcyNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC0
2oswDQYJKoZIhvcNAQELBQADggEBAI73ZMA2PXHGO54xEUEW4k9eAONWovftKT+J
AahLQJEDMpAH43KtNOzV8dmCzwUh/f4Z5UjmW5yXF6F2q2shh6WyIZg46ClE09Wo
vv0YWerYgrrP3QJNXI5RzxsYLQsjMjPodcws8dB9bttmNP9Esn4s2qLUXxckWJuc
EPzAalP64QfUR3uaZmxlEZzFNbJZnQNCdQ3uy7AUN+LnoU84Up8ooCplQdtChukC
GuTayBohGgQHyOyG3zv4vqZxsIYaO1B3kqKHVgi9tCEUTLk4ypmRa9IcBA22MDzx
lmdrHhQyQez1lHD1Z/19SFynbE2B30cYKHhzTod2OVRvQAQiYzw=
-----END CERTIFICATE-----
Generated at Fri Apr 18 22:36:55 2025 by rpki-client