Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NbGdMyUiR9FnFyvKVXlTgAEsCDU.roa
File: NbGdMyUiR9FnFyvKVXlTgAEsCDU.roa (raw, json)
Hash identifier: 04fAK9a/cW2eG7Vm0IJty0bAlTs7CkNJhjsKvk2x2Y4=
Subject key identifier: 35:B1:9D:33:25:22:47:D1:67:17:2B:CA:55:79:53:80:01:2C:08:35
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 132C
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NbGdMyUiR9FnFyvKVXlTgAEsCDU.roa
Signing time: Wed 29 Sep 2021 02:55:27 +0000
ROA not before: Wed 29 Sep 2021 02:55:27 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 180.218.144.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4908 (0x132c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:27 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=35B19D33252247D167172BCA55795380012C0835
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:83:06:22:ea:d2:e7:b5:02:53:fc:39:d6:1c:
c4:a7:5e:ac:ae:9d:8c:3e:c9:fe:57:6f:b3:a4:42:
f0:39:08:5f:ad:1b:2b:32:43:3d:1d:d5:31:43:3a:
52:79:3b:44:2f:3a:cd:5c:a1:80:5a:aa:66:9a:b2:
b9:8e:72:bf:43:f5:ef:ee:c2:d0:e5:af:6e:bf:dd:
fc:a3:72:6e:21:80:8a:e8:0d:63:d3:0c:60:bb:3d:
79:68:28:7b:a0:a3:8e:d7:17:72:1b:6a:07:6d:36:
a0:87:7d:a6:77:29:95:53:cf:c5:b7:23:bf:ce:c4:
ac:90:d2:a8:6d:8f:4c:a6:ad:4a:89:1c:16:de:11:
9d:5f:ed:27:db:58:a9:79:75:d8:10:d0:67:72:45:
3f:bc:49:a5:b3:39:b0:84:ad:ab:49:29:85:39:77:
ee:37:83:4d:be:98:09:e1:da:55:52:d7:01:cd:96:
3a:93:3d:a7:94:ec:b8:23:bb:ce:61:a1:d6:b9:e2:
78:13:aa:af:44:4b:7b:d8:94:ce:1c:03:e3:0d:e8:
3b:d1:84:e3:f1:09:48:02:b3:7b:e0:37:b0:12:43:
fa:ea:cf:d7:ee:82:78:f0:17:87:f7:fd:61:07:aa:
cd:99:4f:c0:21:08:2a:d0:3f:3e:08:ef:61:f1:e1:
3e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:B1:9D:33:25:22:47:D1:67:17:2B:CA:55:79:53:80:01:2C:08:35
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NbGdMyUiR9FnFyvKVXlTgAEsCDU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.144.0/20
Signature Algorithm: sha256WithRSAEncryption
45:02:47:5d:16:70:02:04:8d:75:67:74:5c:1c:11:25:d7:d8:
ef:a1:44:30:0b:77:23:0c:31:ae:9f:ec:f9:39:31:b1:8d:bc:
69:5e:58:34:e9:40:9b:5e:99:16:04:c2:b6:d0:ff:0e:ae:3d:
d6:49:aa:16:5d:63:18:50:6d:7b:2d:30:a6:85:ca:60:ef:f3:
af:b2:22:99:50:50:02:bb:8d:77:97:14:cb:b2:6b:08:76:c9:
a9:bd:08:77:18:e3:f1:3e:2b:52:2d:e6:88:da:99:7a:fa:2f:
df:7e:27:d6:1b:76:d0:58:a9:f9:b6:64:16:02:00:06:23:d0:
50:6b:e6:7e:66:46:0e:c6:21:51:30:43:29:27:99:e3:f9:9a:
93:73:b9:d6:33:1e:d2:dd:00:5a:cc:b1:e8:9b:e4:61:9a:0c:
00:6b:42:51:c4:f4:71:41:fe:cf:1e:99:89:bf:20:97:46:27:
01:84:ec:53:a2:0b:b5:c6:a0:fb:a4:57:73:b5:32:8f:77:cf:
25:88:10:0a:5e:f8:ad:70:99:0c:7a:64:d6:f1:70:46:7e:8f:
ac:b6:94:c8:0b:de:a1:31:c6:d3:73:f2:32:54:00:66:1d:7d:
ed:b3:65:67:c3:1f:1a:ca:88:eb:6b:ef:5f:1f:4b:b8:91:64:
2c:96:75:72
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEywwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU1MjdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDM1QjE5RDMzMjUyMjQ3
RDE2NzE3MkJDQTU1Nzk1MzgwMDEyQzA4MzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCpgwYi6tLntQJT/DnWHMSnXqyunYw+yf5Xb7OkQvA5CF+tGysy
Qz0d1TFDOlJ5O0QvOs1coYBaqmaasrmOcr9D9e/uwtDlr26/3fyjcm4hgIroDWPT
DGC7PXloKHugo47XF3IbagdtNqCHfaZ3KZVTz8W3I7/OxKyQ0qhtj0ymrUqJHBbe
EZ1f7SfbWKl5ddgQ0GdyRT+8SaWzObCEratJKYU5d+43g02+mAnh2lVS1wHNljqT
PaeU7Lgju85hoda54ngTqq9ES3vYlM4cA+MN6DvRhOPxCUgCs3vgN7ASQ/rqz9fu
gnjwF4f3/WEHqs2ZT8AhCCrQPz4I72Hx4T6zAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUNbGdMyUiR9FnFyvKVXlTgAEsCDUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL05iR2RNeVVpUjlGbkZ5dktW
WGxUZ0FFc0NEVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAS0
2pAwDQYJKoZIhvcNAQELBQADggEBAEUCR10WcAIEjXVndFwcESXX2O+hRDALdyMM
Ma6f7Pk5MbGNvGleWDTpQJtemRYEwrbQ/w6uPdZJqhZdYxhQbXstMKaFymDv86+y
IplQUAK7jXeXFMuyawh2yam9CHcY4/E+K1It5ojamXr6L99+J9YbdtBYqfm2ZBYC
AAYj0FBr5n5mRg7GIVEwQyknmeP5mpNzudYzHtLdAFrMseib5GGaDABrQlHE9HFB
/s8emYm/IJdGJwGE7FOiC7XGoPukV3O1Mo93zyWIEApe+K1wmQx6ZNbxcEZ+j6y2
lMgL3qExxtNz8jJUAGYdfe2zZWfDHxrKiOtr718fS7iRZCyWdXI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org