Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8O-G7IKTcP4YyU8D0rIS-sdHX5o.roa
File: 8O-G7IKTcP4YyU8D0rIS-sdHX5o.roa (raw, json)
Hash identifier: mSHBDVFcIVgVNnwC/aWKYTYHZ9d92wssbvym0dX9Uf8=
Subject key identifier: F0:EF:86:EC:82:93:70:FE:18:C9:4F:03:D2:B2:12:FA:C7:47:5F:9A
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8O-G7IKTcP4YyU8D0rIS-sdHX5o.roa
Signing time: Thu 15 Sep 2022 02:35:44 +0000
ROA not before: Thu 15 Sep 2022 02:35:44 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 180.218.64.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:35:44 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F0EF86EC829370FE18C94F03D2B212FAC7475F9A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f2:c8:ba:a5:fa:99:a0:02:82:f6:20:bd:48:
5c:f7:2b:7d:49:07:f2:51:c6:e0:a9:ea:72:c3:9d:
f3:86:67:7b:59:39:92:83:12:20:a5:d5:58:b4:15:
86:26:e0:e5:3a:2a:0b:4a:a8:f9:d2:cd:e0:a6:91:
9c:37:63:b5:d5:15:b3:67:87:07:df:10:2e:2c:e9:
38:1c:53:bf:22:cd:da:df:5a:c0:4f:ac:d7:98:a5:
ec:fc:14:38:3d:90:d6:2b:3f:23:9c:ad:61:64:21:
51:78:ac:9d:b3:85:3c:6c:24:05:19:16:de:ba:e2:
8b:e7:08:53:39:bc:2e:3f:89:d7:03:81:5a:2a:6c:
38:a4:13:4a:79:e6:2c:24:f8:43:13:a6:b2:cf:ec:
41:3c:d1:63:90:8a:e7:ab:ea:57:42:f9:dd:62:29:
12:85:cf:35:76:dc:39:02:ea:65:8e:53:98:8b:f1:
34:bf:79:71:9f:1e:ab:c3:17:fb:df:16:83:94:bc:
d3:a1:29:98:56:c9:94:a0:0f:4f:88:0e:84:78:ff:
c1:65:fd:f4:dc:0e:2c:d8:08:31:58:9f:d8:15:e3:
f6:41:6a:ef:68:78:79:fb:99:41:76:16:70:80:c7:
76:49:90:74:d3:d2:10:23:4e:1f:56:54:9c:ae:61:
2d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:EF:86:EC:82:93:70:FE:18:C9:4F:03:D2:B2:12:FA:C7:47:5F:9A
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8O-G7IKTcP4YyU8D0rIS-sdHX5o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.64.0/21
Signature Algorithm: sha256WithRSAEncryption
9a:61:f1:82:72:b3:0c:29:e8:67:c8:79:c7:a1:01:0e:89:10:
9e:16:4e:9a:db:3b:38:6d:e7:54:c9:3a:15:b6:9b:74:1d:3b:
40:2f:90:0e:c0:35:04:cc:76:2d:0f:c6:28:2f:d4:4c:08:30:
04:f7:73:4b:23:08:63:08:21:31:ec:f7:79:f7:f6:77:ed:dc:
a5:62:57:3f:85:c3:b5:fd:93:12:6e:fc:af:eb:77:7b:ad:04:
71:d6:4b:0b:d2:29:db:26:03:77:75:cc:c4:88:99:fa:43:fc:
85:ac:d9:7d:e1:7c:ec:9f:08:e5:2a:88:0f:c6:7b:0f:c7:01:
a6:64:09:97:33:8f:1e:38:32:14:9c:66:cc:82:07:ae:4f:84:
32:15:c2:2f:a2:d1:4a:0f:53:26:b1:20:23:8f:59:3c:0a:6b:
b4:89:c3:cb:a4:36:17:54:37:8f:25:32:47:24:0c:0f:df:bc:
f7:7a:af:84:93:28:7e:32:4e:80:de:a8:15:fe:7a:33:22:46:
2d:d8:88:b9:3a:9f:f1:7b:ed:95:b4:88:7b:79:ed:2e:ea:bc:
99:26:c7:f2:0e:7b:60:b0:43:c9:3f:c9:65:ac:f1:43:59:2a:
cc:ba:71:c4:45:3e:4e:37:0a:70:3a:1e:4c:5e:de:cb:87:56:
86:33:d8:25
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFP4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjA5MTUw
MjM1NDRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEYwRUY4NkVDODI5Mzcw
RkUxOEM5NEYwM0QyQjIxMkZBQzc0NzVGOUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCw8si6pfqZoAKC9iC9SFz3K31JB/JRxuCp6nLDnfOGZ3tZOZKD
EiCl1Vi0FYYm4OU6KgtKqPnSzeCmkZw3Y7XVFbNnhwffEC4s6TgcU78izdrfWsBP
rNeYpez8FDg9kNYrPyOcrWFkIVF4rJ2zhTxsJAUZFt664ovnCFM5vC4/idcDgVoq
bDikE0p55iwk+EMTprLP7EE80WOQiuer6ldC+d1iKRKFzzV23DkC6mWOU5iL8TS/
eXGfHqvDF/vfFoOUvNOhKZhWyZSgD0+IDoR4/8Fl/fTcDizYCDFYn9gV4/ZBau9o
eHn7mUF2FnCAx3ZJkHTT0hAjTh9WVJyuYS2hAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU8O+G7IKTcP4YyU8D0rIS+sdHX5owHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzhPLUc3SUtUY1A0WXlVOEQw
cklTLXNkSFg1by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0
2kAwDQYJKoZIhvcNAQELBQADggEBAJph8YJyswwp6GfIecehAQ6JEJ4WTprbOzht
51TJOhW2m3QdO0AvkA7ANQTMdi0Pxigv1EwIMAT3c0sjCGMIITHs93n39nft3KVi
Vz+Fw7X9kxJu/K/rd3utBHHWSwvSKdsmA3d1zMSImfpD/IWs2X3hfOyfCOUqiA/G
ew/HAaZkCZczjx44MhScZsyCB65PhDIVwi+i0UoPUyaxICOPWTwKa7SJw8ukNhdU
N48lMkckDA/fvPd6r4STKH4yToDeqBX+ejMiRi3YiLk6n/F77ZW0iHt57S7qvJkm
x/IOe2CwQ8k/yWWs8UNZKsy6ccRFPk43CnA6Hkxe3suHVoYz2CU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org