Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KIpoD6ocJT7SY_8hwLFWXBLOIio.roa
File: KIpoD6ocJT7SY_8hwLFWXBLOIio.roa (raw, json)
Hash identifier: 7PIns0DpDaF+oqYLyGM63nMPdfJZIc417aN0hBBwYqo=
Subject key identifier: 28:8A:68:0F:AA:1C:25:3E:D2:63:FF:21:C0:B1:56:5C:12:CE:22:2A
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12E4
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KIpoD6ocJT7SY_8hwLFWXBLOIio.roa
Signing time: Wed 29 Sep 2021 02:55:07 +0000
ROA not before: Wed 29 Sep 2021 02:55:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 180.218.72.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4836 (0x12e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:07 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=288A680FAA1C253ED263FF21C0B1565C12CE222A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:17:63:c8:08:ba:14:f8:67:e4:e0:d2:3a:e7:
5d:ee:c2:f2:10:c5:fd:14:2c:88:ec:06:ec:b5:10:
05:44:ff:fb:61:d2:d5:2d:74:30:1a:17:8f:8d:bc:
a3:2d:5e:72:b9:b7:c9:98:d9:0a:31:26:e1:78:bf:
6b:31:1b:af:f0:51:7d:3d:e9:ea:6d:b7:d5:ab:65:
e4:c0:6b:4b:b0:16:7c:b4:bc:f3:96:91:1f:57:0c:
af:82:c6:6c:96:4e:2c:b0:bf:7f:f3:fe:f8:23:aa:
0a:01:7b:01:69:70:6d:0a:fe:31:bc:20:9f:2e:f2:
7c:30:c5:c8:4b:2e:79:49:32:0c:f9:12:0f:19:72:
b6:c1:13:5a:9b:2c:46:f5:eb:da:03:6e:7d:3f:65:
14:1d:4e:b6:62:18:18:49:8f:fe:f5:e5:a1:da:9a:
68:9f:9a:1a:ac:bc:db:6e:43:ab:cd:94:e1:b6:0a:
8d:91:87:3e:32:bc:64:91:41:2c:5e:d2:73:b9:50:
e0:c8:17:e1:6a:69:8d:5e:f1:18:fc:4a:9c:8e:b8:
8d:34:6b:01:42:02:76:7e:21:37:da:95:db:27:23:
14:30:0f:19:8e:00:8c:c4:e3:20:b1:ce:e9:44:25:
2d:17:9b:24:a7:f8:7f:b8:23:f8:c8:b6:7b:d2:78:
9c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:8A:68:0F:AA:1C:25:3E:D2:63:FF:21:C0:B1:56:5C:12:CE:22:2A
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KIpoD6ocJT7SY_8hwLFWXBLOIio.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.72.0/21
Signature Algorithm: sha256WithRSAEncryption
62:ad:fb:2f:76:30:bc:20:b1:38:24:fb:12:42:46:a2:06:ca:
6b:57:f9:e7:43:3d:27:f1:a8:b8:54:e0:63:91:fd:ef:32:15:
6a:29:1b:18:6d:ba:64:da:63:a3:0a:50:ce:02:0d:32:7f:b6:
d9:39:ac:13:16:bc:69:55:57:18:ef:9f:8e:8f:83:8c:87:1f:
70:78:a6:97:5e:a0:c3:cf:e6:c8:ca:18:b4:27:04:31:1a:f7:
97:de:cd:c2:3a:d6:1d:99:70:8f:af:ed:77:5f:f3:3f:9b:cf:
b2:04:e0:1e:d9:2d:13:f8:25:c7:20:aa:41:b1:ff:bb:44:1c:
6b:63:a6:a1:78:b5:0d:91:ca:8a:d8:7f:e9:64:c8:b9:d8:27:
bd:ac:44:e4:81:7d:fe:78:33:0b:a2:f2:88:82:64:0b:24:67:
07:4b:29:8e:49:1d:7a:4d:c7:4c:c0:ae:ba:36:39:c0:4a:2a:
42:74:3d:f5:fb:39:2b:76:b3:b2:71:e5:a9:04:88:b2:5b:76:
1b:cc:9a:7f:c8:dc:e6:9d:6b:59:63:2d:d4:50:c7:de:af:3e:
43:0c:27:72:bd:00:ac:41:74:9d:57:3c:fa:2b:c8:b1:8b:e5:
12:55:59:ee:3d:a3:36:25:1b:e1:2a:6c:88:7a:4f:f7:d0:32:
9c:57:79:e4
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEuQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU1MDdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDI4OEE2ODBGQUExQzI1
M0VEMjYzRkYyMUMwQjE1NjVDMTJDRTIyMkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDRF2PICLoU+Gfk4NI6513uwvIQxf0ULIjsBuy1EAVE//th0tUt
dDAaF4+NvKMtXnK5t8mY2QoxJuF4v2sxG6/wUX096eptt9WrZeTAa0uwFny0vPOW
kR9XDK+CxmyWTiywv3/z/vgjqgoBewFpcG0K/jG8IJ8u8nwwxchLLnlJMgz5Eg8Z
crbBE1qbLEb169oDbn0/ZRQdTrZiGBhJj/715aHammifmhqsvNtuQ6vNlOG2Co2R
hz4yvGSRQSxe0nO5UODIF+FqaY1e8Rj8SpyOuI00awFCAnZ+ITfaldsnIxQwDxmO
AIzE4yCxzulEJS0XmySn+H+4I/jItnvSeJylAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUKIpoD6ocJT7SY/8hwLFWXBLOIiowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0tJcG9ENm9jSlQ3U1lfOGh3
TEZXWEJMT0lpby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0
2kgwDQYJKoZIhvcNAQELBQADggEBAGKt+y92MLwgsTgk+xJCRqIGymtX+edDPSfx
qLhU4GOR/e8yFWopGxhtumTaY6MKUM4CDTJ/ttk5rBMWvGlVVxjvn46Pg4yHH3B4
ppdeoMPP5sjKGLQnBDEa95fezcI61h2ZcI+v7Xdf8z+bz7IE4B7ZLRP4JccgqkGx
/7tEHGtjpqF4tQ2RyorYf+lkyLnYJ72sROSBff54Mwui8oiCZAskZwdLKY5JHXpN
x0zArro2OcBKKkJ0PfX7OSt2s7Jx5akEiLJbdhvMmn/I3Oada1ljLdRQx96vPkMM
J3K9AKxBdJ1XPPoryLGL5RJVWe49ozYlG+EqbIh6T/fQMpxXeeQ=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:47 2023 by rpki-client on console-fra.rpki-client.org