Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KkCOWdalTQQKKtXdvmdJZGYyT74.roa
File: KkCOWdalTQQKKtXdvmdJZGYyT74.roa (raw, json)
Hash identifier: 8C0Czj6kj6Q0hwE+KsQlQjn0WoDq6lAy+qnXWw7BL6g=
Subject key identifier: 2A:40:8E:59:D6:A5:4D:04:0A:2A:D5:DD:BE:67:49:64:66:32:4F:BE
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1318
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KkCOWdalTQQKKtXdvmdJZGYyT74.roa
Signing time: Wed 29 Sep 2021 02:55:22 +0000
ROA not before: Wed 29 Sep 2021 02:55:22 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24163
IP address blocks: 180.218.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4888 (0x1318)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:22 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2A408E59D6A54D040A2AD5DDBE67496466324FBE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d5:51:23:f5:c5:78:83:ad:2a:84:41:8e:76:
ef:d2:20:28:4f:9f:3d:3b:f6:88:63:d1:5d:aa:c7:
8a:bb:36:44:09:a0:09:42:c7:0e:de:88:71:af:f6:
0e:b2:24:dc:8d:dc:c0:2b:9e:34:d1:46:f0:b5:a3:
c3:0b:3c:c9:79:f3:15:e6:c2:e0:89:cd:03:df:36:
e6:cc:e8:f3:42:4c:e0:30:c2:6f:f9:96:bf:c8:86:
46:f8:ac:e0:a3:87:15:30:98:ce:9a:51:62:1e:59:
39:85:6e:f1:3a:7c:20:e8:d9:83:03:c3:81:b5:71:
b9:5c:f9:91:5e:cf:f5:11:70:b8:b9:88:f0:4d:40:
89:09:6c:c7:75:76:4b:8f:e8:6a:82:5e:43:7a:0a:
18:4b:17:da:b5:8a:ac:a6:8e:f4:17:c5:45:95:01:
6c:1e:eb:36:17:35:26:b0:0d:80:7f:84:1d:60:d8:
a0:8c:53:48:62:88:c9:b0:51:1e:a1:1f:13:0f:4f:
b7:3c:d0:63:42:04:32:aa:5d:36:c5:27:1f:94:6a:
2e:41:a5:29:5d:2f:15:e5:22:fc:53:39:79:7f:49:
5c:93:3b:c2:12:15:ab:9e:34:70:63:4a:a1:44:31:
ab:cf:72:05:bd:41:c7:22:8e:ec:1a:25:67:14:bf:
ef:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:40:8E:59:D6:A5:4D:04:0A:2A:D5:DD:BE:67:49:64:66:32:4F:BE
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KkCOWdalTQQKKtXdvmdJZGYyT74.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.227.0/24
Signature Algorithm: sha256WithRSAEncryption
88:51:10:19:4d:52:52:09:90:fe:60:4c:4e:7b:b4:f9:38:25:
b1:bc:af:5f:c8:6c:13:37:b0:4b:62:09:8a:42:ef:e2:6a:32:
89:7a:1f:0f:cc:e3:99:a6:00:2c:93:9d:ab:97:60:96:ba:70:
a1:3a:10:0e:28:e2:f2:57:6e:fc:aa:e8:24:7a:e8:4c:c6:ef:
88:00:a2:8e:53:30:02:47:88:f6:a9:8e:45:e0:e8:d3:87:b6:
ab:99:26:bd:8a:bd:e3:c0:03:f4:cc:64:9b:de:39:41:aa:b5:
26:70:c3:92:a4:93:cd:e5:dd:2d:27:08:fd:73:d1:68:2b:2a:
40:64:75:04:40:4d:61:aa:e4:c7:5d:2d:1f:08:1e:5e:97:c3:
97:92:b8:5a:7d:c3:9b:1b:b5:4a:82:cc:da:f4:79:03:4d:e4:
54:86:dd:00:57:a5:ce:a9:11:76:63:8e:ef:97:e6:e8:c9:c2:
22:38:69:5f:7c:d2:cf:4f:7e:95:12:16:af:0a:a5:8f:73:38:
ac:7f:4f:75:21:93:c7:4e:02:7a:de:ff:ae:8a:22:81:e7:d3:
14:b6:e0:a3:81:64:99:2b:3b:28:c3:62:6a:37:04:51:9f:a2:
6e:80:3b:e7:fb:c9:47:2c:85:41:35:26:2f:2f:de:bc:3a:2a:
19:19:37:30
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICExgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU1MjJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDJBNDA4RTU5RDZBNTRE
MDQwQTJBRDVEREJFNjc0OTY0NjYzMjRGQkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDc1VEj9cV4g60qhEGOdu/SIChPnz079ohj0V2qx4q7NkQJoAlC
xw7eiHGv9g6yJNyN3MArnjTRRvC1o8MLPMl58xXmwuCJzQPfNubM6PNCTOAwwm/5
lr/Ihkb4rOCjhxUwmM6aUWIeWTmFbvE6fCDo2YMDw4G1cblc+ZFez/URcLi5iPBN
QIkJbMd1dkuP6GqCXkN6ChhLF9q1iqymjvQXxUWVAWwe6zYXNSawDYB/hB1g2KCM
U0hiiMmwUR6hHxMPT7c80GNCBDKqXTbFJx+Uai5BpSldLxXlIvxTOXl/SVyTO8IS
FaueNHBjSqFEMavPcgW9QccijuwaJWcUv+9tAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUKkCOWdalTQQKKtXdvmdJZGYyT74wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0trQ09XZGFsVFFRS0t0WGR2
bWRKWkdZeVQ3NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC0
2uMwDQYJKoZIhvcNAQELBQADggEBAIhREBlNUlIJkP5gTE57tPk4JbG8r1/IbBM3
sEtiCYpC7+JqMol6Hw/M45mmACyTnauXYJa6cKE6EA4o4vJXbvyq6CR66EzG74gA
oo5TMAJHiPapjkXg6NOHtquZJr2KvePAA/TMZJveOUGqtSZww5Kkk83l3S0nCP1z
0WgrKkBkdQRATWGq5MddLR8IHl6Xw5eSuFp9w5sbtUqCzNr0eQNN5FSG3QBXpc6p
EXZjju+X5ujJwiI4aV980s9PfpUSFq8KpY9zOKx/T3Uhk8dOAnre/66KIoHn0xS2
4KOBZJkrOyjDYmo3BFGfom6AO+f7yUcshUE1Ji8v3rw6KhkZNzA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org