Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/5nfoL-xw5pRcT-1RTsZL5H-c304.roa
File: 5nfoL-xw5pRcT-1RTsZL5H-c304.roa (raw, json)
Hash identifier: L05DT4/S400WNo59XJ8jQz2tNYOWlVCLAGQItcEQm74=
Subject key identifier: E6:77:E8:2F:EC:70:E6:94:5C:4F:ED:51:4E:C6:4B:E4:7F:9C:DF:4E
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/5nfoL-xw5pRcT-1RTsZL5H-c304.roa
Signing time: Thu 15 Sep 2022 02:35:41 +0000
ROA not before: Thu 15 Sep 2022 02:35:41 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 180.218.152.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:35:41 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E677E82FEC70E6945C4FED514EC64BE47F9CDF4E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:6e:d6:8e:b2:29:8d:77:09:fc:b7:64:ba:29:
fd:f1:83:ae:41:df:77:37:04:f3:32:ac:2a:79:c0:
11:25:3b:df:86:54:2e:46:6a:60:02:31:fb:8c:21:
52:07:8d:2c:de:94:7d:87:0c:6c:62:ad:ff:01:24:
15:b5:41:0f:fb:3f:cc:3f:ab:38:44:2f:01:5d:c1:
e0:34:10:25:4f:73:91:4a:49:4c:ed:92:29:e9:60:
f1:99:38:e7:51:3a:6d:e2:1e:bb:e5:01:59:f0:d4:
c4:71:78:91:c2:8a:10:05:0d:ac:c6:7e:b0:fd:43:
01:f9:87:5c:05:60:aa:52:87:f8:84:56:30:e2:66:
6c:92:83:d7:a7:f7:96:39:c2:11:9c:78:db:31:38:
5c:df:48:3f:6e:5a:f1:b2:65:90:91:9f:bc:3b:44:
fc:fd:81:3c:39:c9:ff:a5:65:84:a2:92:9d:31:ea:
60:4f:df:1b:54:ac:f2:9c:43:ac:65:5f:07:17:51:
6d:a2:69:4e:ce:ec:8c:4b:2c:fd:7b:e4:53:1e:32:
a4:39:25:c6:6b:77:02:60:51:38:f6:86:df:3b:96:
94:cf:1d:00:a9:fa:65:bd:ea:d2:ae:cf:54:ec:ca:
fb:67:70:29:b8:0c:93:46:57:28:6c:f0:7f:9e:7b:
96:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:77:E8:2F:EC:70:E6:94:5C:4F:ED:51:4E:C6:4B:E4:7F:9C:DF:4E
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/5nfoL-xw5pRcT-1RTsZL5H-c304.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.152.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:78:3a:ef:e2:ac:78:c2:e7:c7:4a:b2:23:cc:50:6c:1f:09:
bb:ad:10:3e:41:d8:d4:1d:d4:74:af:82:f6:2d:52:54:33:9a:
9b:78:91:b2:0e:96:45:fa:8d:d4:f6:7a:3c:ec:bc:62:f8:61:
8c:2c:02:fe:88:51:ea:b3:08:3d:9b:a0:f1:6d:a6:3a:46:44:
4a:08:88:e3:1f:28:86:b9:45:fa:00:47:5b:66:43:cd:35:17:
e3:3a:d1:09:ae:33:fc:0c:b4:98:4b:e4:d5:15:a9:95:bc:30:
2b:fc:d3:85:7b:36:98:72:26:f7:1c:ab:cd:bb:ee:18:08:1d:
e1:35:82:f5:38:0a:43:8b:dd:e8:aa:c5:3f:2e:82:6e:1e:de:
bc:dc:eb:dd:65:52:8d:02:d6:45:c1:08:e9:b9:fa:47:d3:33:
d3:fc:db:7a:a1:c5:ff:c9:e1:07:93:f2:6c:d5:ee:08:75:d7:
a0:7c:78:01:19:c1:87:6d:6b:a6:97:1f:33:9a:63:fc:46:71:
cf:0c:37:aa:06:6e:a4:80:a1:d0:d2:20:52:d4:a8:d8:19:01:
ca:10:52:fd:2e:75:ce:af:b9:08:a4:50:ba:83:cb:a2:84:ee:
ca:79:07:96:d4:a7:4d:c1:72:09:b2:f1:b2:ef:25:56:df:ab:
2b:db:5e:53
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFP4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjA5MTUw
MjM1NDFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEU2NzdFODJGRUM3MEU2
OTQ1QzRGRUQ1MTRFQzY0QkU0N0Y5Q0RGNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCqbtaOsimNdwn8t2S6Kf3xg65B33c3BPMyrCp5wBElO9+GVC5G
amACMfuMIVIHjSzelH2HDGxirf8BJBW1QQ/7P8w/qzhELwFdweA0ECVPc5FKSUzt
kinpYPGZOOdROm3iHrvlAVnw1MRxeJHCihAFDazGfrD9QwH5h1wFYKpSh/iEVjDi
ZmySg9en95Y5whGceNsxOFzfSD9uWvGyZZCRn7w7RPz9gTw5yf+lZYSikp0x6mBP
3xtUrPKcQ6xlXwcXUW2iaU7O7IxLLP175FMeMqQ5JcZrdwJgUTj2ht87lpTPHQCp
+mW96tKuz1TsyvtncCm4DJNGVyhs8H+ee5bpAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU5nfoL+xw5pRcT+1RTsZL5H+c304wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzVuZm9MLXh3NXBSY1QtMVJU
c1pMNUgtYzMwNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0
2pgwDQYJKoZIhvcNAQELBQADggEBAIp4Ou/irHjC58dKsiPMUGwfCbutED5B2NQd
1HSvgvYtUlQzmpt4kbIOlkX6jdT2ejzsvGL4YYwsAv6IUeqzCD2boPFtpjpGREoI
iOMfKIa5RfoAR1tmQ801F+M60QmuM/wMtJhL5NUVqZW8MCv804V7NphyJvccq827
7hgIHeE1gvU4CkOL3eiqxT8ugm4e3rzc691lUo0C1kXBCOm5+kfTM9P823qhxf/J
4QeT8mzV7gh116B8eAEZwYdta6aXHzOaY/xGcc8MN6oGbqSAodDSIFLUqNgZAcoQ
Uv0udc6vuQikULqDy6KE7sp5B5bUp03Bcgmy8bLvJVbfqyvbXlM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org