Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/07LONXQKdEa6lTynNMKTvqv3EVc.roa
File: 07LONXQKdEa6lTynNMKTvqv3EVc.roa (raw, json)
Hash identifier: KyqDRZvVp9S55U8evkloRNRhR/Jbm/fn7K059rHu3t8=
Subject key identifier: D3:B2:CE:35:74:0A:74:46:BA:95:3C:A7:34:C2:93:BE:AB:F7:11:57
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 18D2
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/07LONXQKdEa6lTynNMKTvqv3EVc.roa
Signing time: Sat 22 Oct 2022 06:05:46 +0000
ROA not before: Sat 22 Oct 2022 06:05:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 180.218.56.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6354 (0x18d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:05:46 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D3B2CE35740A7446BA953CA734C293BEABF71157
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:92:3e:5d:7f:a0:2d:de:25:76:09:50:d3:c5:
87:88:17:2c:e3:fb:a7:e5:cc:77:1f:8f:06:14:a9:
1e:5f:98:6b:08:f8:7b:ea:13:70:83:37:fe:34:3b:
74:84:9f:be:56:9a:e7:eb:be:91:e8:85:f3:47:3d:
37:69:6f:3d:4e:9b:e7:da:ec:e3:7a:42:41:0b:38:
60:df:f7:35:99:b8:30:1f:c9:77:28:1b:db:ca:95:
56:1a:cc:f4:d0:d7:3b:e5:68:78:7d:ca:33:4a:d2:
76:2b:34:de:5a:2c:01:8f:ec:09:83:55:c4:ef:c3:
56:25:06:f2:6a:32:50:68:bf:8f:f1:61:7c:14:a7:
0a:69:14:ca:d7:b7:42:5a:f4:a4:15:bf:bf:13:24:
b5:ed:d3:14:1b:5e:8e:67:6c:5e:df:88:af:40:f7:
42:b3:23:7b:59:41:6e:1a:b4:6f:5e:54:dc:7f:f1:
62:c7:ce:93:7d:fb:05:fd:d7:87:63:86:71:20:f3:
f8:93:4a:6a:03:9c:46:4d:bc:62:67:b7:b2:0c:de:
50:8b:09:0f:08:86:6a:03:29:8e:5e:63:9a:e3:17:
3f:5b:27:b1:01:51:57:61:4e:8e:54:9d:00:a0:36:
44:fb:81:5b:f7:16:36:c9:77:33:78:58:03:ca:10:
e9:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:B2:CE:35:74:0A:74:46:BA:95:3C:A7:34:C2:93:BE:AB:F7:11:57
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/07LONXQKdEa6lTynNMKTvqv3EVc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.56.0/21
Signature Algorithm: sha256WithRSAEncryption
05:15:2b:a4:5c:b1:71:4b:dc:97:0b:71:68:fb:1a:b6:c0:6c:
69:30:93:19:8f:21:9d:58:af:bb:33:8c:05:f8:34:d4:15:96:
a5:94:7b:3c:45:69:63:08:17:e4:d7:32:64:b7:71:91:bd:cb:
a3:16:e8:69:d9:2f:ef:97:ca:45:82:d3:9f:8e:94:03:de:78:
6f:54:62:9e:e9:35:bb:97:71:3c:fa:85:25:86:23:de:7a:57:
df:34:5e:e6:c6:a7:50:65:8f:24:e9:59:6e:13:b9:36:c7:37:
59:90:91:d1:f2:b9:22:67:d5:a1:d1:c3:db:60:bc:46:b8:aa:
ec:ca:0e:f6:4a:0a:9b:67:01:9d:1f:4f:b3:13:68:2c:5a:57:
11:53:58:19:b2:52:9f:2b:ab:4a:38:10:e6:ac:e4:2d:27:29:
9f:34:20:64:86:bf:cf:c4:7d:58:f4:77:44:16:03:b2:1e:88:
26:ad:e1:bd:8b:f2:0f:21:fb:ef:a6:99:bc:b6:1a:84:92:be:
9d:74:84:23:31:a7:09:d9:b8:3d:82:0f:ba:af:99:38:46:82:
fd:0e:46:c8:2b:63:f3:3c:f8:0e:51:13:77:48:84:6b:8a:bd:
cc:ec:82:41:83:d4:a0:6f:da:c2:31:44:4d:54:96:be:63:53:
cc:9e:e6:1f
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICGNIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjEwMjIw
NjA1NDZaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEQzQjJDRTM1NzQwQTc0
NDZCQTk1M0NBNzM0QzI5M0JFQUJGNzExNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC8kj5df6At3iV2CVDTxYeIFyzj+6flzHcfjwYUqR5fmGsI+Hvq
E3CDN/40O3SEn75WmufrvpHohfNHPTdpbz1Om+fa7ON6QkELOGDf9zWZuDAfyXco
G9vKlVYazPTQ1zvlaHh9yjNK0nYrNN5aLAGP7AmDVcTvw1YlBvJqMlBov4/xYXwU
pwppFMrXt0Ja9KQVv78TJLXt0xQbXo5nbF7fiK9A90KzI3tZQW4atG9eVNx/8WLH
zpN9+wX914djhnEg8/iTSmoDnEZNvGJnt7IM3lCLCQ8IhmoDKY5eY5rjFz9bJ7EB
UVdhTo5UnQCgNkT7gVv3FjbJdzN4WAPKEOnrAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU07LONXQKdEa6lTynNMKTvqv3EVcwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzA3TE9OWFFLZEVhNmxUeW5O
TUtUdnF2M0VWYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0
2jgwDQYJKoZIhvcNAQELBQADggEBAAUVK6RcsXFL3JcLcWj7GrbAbGkwkxmPIZ1Y
r7szjAX4NNQVlqWUezxFaWMIF+TXMmS3cZG9y6MW6GnZL++XykWC05+OlAPeeG9U
Yp7pNbuXcTz6hSWGI956V980XubGp1BljyTpWW4TuTbHN1mQkdHyuSJn1aHRw9tg
vEa4quzKDvZKCptnAZ0fT7MTaCxaVxFTWBmyUp8rq0o4EOas5C0nKZ80IGSGv8/E
fVj0d0QWA7IeiCat4b2L8g8h+++mmby2GoSSvp10hCMxpwnZuD2CD7qvmThGgv0O
RsgrY/M8+A5RE3dIhGuKvczsgkGD1KBv2sIxRE1Ulr5jU8ye5h8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org