Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/QkSa3VDSNCsGA5sAKDdvzmMWPpk.roa
File: QkSa3VDSNCsGA5sAKDdvzmMWPpk.roa (raw, json)
Hash identifier: z7bInbdXr7eiMBLO2J581a+tLITIZGsi6g41Zj1g4hg=
Subject key identifier: 42:44:9A:DD:50:D2:34:2B:06:03:9B:00:28:37:6F:CE:63:16:3E:99
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 103D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/QkSa3VDSNCsGA5sAKDdvzmMWPpk.roa
Signing time: Sun 07 Feb 2021 12:43:44 +0000
ROA not before: Sun 07 Feb 2021 12:43:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 180.218.48.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4157 (0x103d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:43:44 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=42449ADD50D2342B06039B0028376FCE63163E99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:bf:8c:07:bf:ae:99:58:9c:2a:ba:22:60:c8:
e8:7d:e2:e7:51:9d:30:c6:14:f4:f1:35:a4:6b:51:
e2:a4:44:5d:92:38:01:ae:6b:f6:f2:c1:30:7d:9d:
5e:16:9f:66:bc:1d:b9:28:26:fa:a0:8d:97:6b:59:
1c:c3:f1:8b:a0:a5:90:3b:ac:a8:ac:90:a3:77:ae:
cd:e8:bd:10:c1:f4:47:e4:9b:84:a3:81:5c:ea:f7:
4c:a5:78:e6:ab:cf:7d:97:50:59:bc:3a:2c:cd:7d:
7b:4d:e8:c6:82:6b:a6:95:02:92:e7:dd:13:61:b9:
26:1d:1e:44:7e:53:fa:6f:17:95:ec:84:e0:9d:d1:
a6:fa:88:7e:b9:c5:d1:89:fe:69:f5:5b:ce:97:44:
c9:36:0b:eb:45:1b:55:8a:0d:b1:99:91:72:47:fc:
e0:54:fd:00:8e:9c:7f:31:9f:ef:b9:44:90:86:3c:
04:46:95:a7:de:3f:c3:b6:fb:50:0f:dc:77:3f:28:
77:5e:50:c0:97:7d:1e:90:c9:54:b8:7b:df:18:78:
bd:58:96:88:0b:7f:45:fc:5b:8f:bc:1c:b4:8b:de:
ae:f4:06:f0:b0:d2:82:f5:96:b4:e6:a2:ea:da:6a:
df:6b:bb:bd:82:df:9b:f8:41:c9:c7:08:af:b7:c6:
1b:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:44:9A:DD:50:D2:34:2B:06:03:9B:00:28:37:6F:CE:63:16:3E:99
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/QkSa3VDSNCsGA5sAKDdvzmMWPpk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.48.0/21
Signature Algorithm: sha256WithRSAEncryption
3b:69:c8:30:22:82:14:da:62:b1:ed:33:27:c0:05:98:ef:e2:
67:90:b9:c2:6f:7f:b5:11:7b:59:28:74:e0:fd:80:93:bc:fa:
0d:e4:dd:fd:a7:22:83:a3:2d:b2:c6:67:b0:fb:eb:56:71:1f:
18:de:ca:3b:fe:40:4b:2b:51:8e:9e:5d:00:85:23:22:77:7e:
30:47:39:7e:d6:60:eb:ca:80:54:a1:ba:7f:df:83:4c:a5:ea:
8b:bb:1b:48:0b:c1:fb:32:f0:a0:b3:69:b1:33:3d:d8:12:5e:
58:cb:61:36:1c:0f:b9:e3:48:b7:47:ec:b5:56:c1:90:ac:09:
7c:14:a8:89:6f:03:1f:ea:ab:c1:5b:df:23:db:15:fa:9b:b5:
1b:74:cd:2c:6a:74:cc:74:41:06:7e:71:34:04:9e:2e:6c:85:
98:ac:42:69:15:2b:6c:1b:48:fd:52:d5:65:98:2f:57:07:25:
f3:4a:c6:74:a6:02:37:f3:63:96:d3:cf:a8:d0:5e:d4:49:d7:
1b:6e:ba:b9:b2:bb:fc:8b:ee:e0:e0:11:87:4c:b8:3c:1e:38:
13:07:b7:ed:c6:1d:08:57:1c:dd:43:aa:30:97:e6:7d:aa:ca:
f3:7a:f5:3e:e8:5b:d0:d2:db:36:6e:f2:be:72:10:6e:d2:78:
16:79:e5:ce
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICED0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTAyMDcx
MjQzNDRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDQyNDQ5QURENTBEMjM0
MkIwNjAzOUIwMDI4Mzc2RkNFNjMxNjNFOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQD2v4wHv66ZWJwquiJgyOh94udRnTDGFPTxNaRrUeKkRF2SOAGu
a/bywTB9nV4Wn2a8HbkoJvqgjZdrWRzD8YugpZA7rKiskKN3rs3ovRDB9Efkm4Sj
gVzq90yleOarz32XUFm8OizNfXtN6MaCa6aVApLn3RNhuSYdHkR+U/pvF5XshOCd
0ab6iH65xdGJ/mn1W86XRMk2C+tFG1WKDbGZkXJH/OBU/QCOnH8xn++5RJCGPARG
lafeP8O2+1AP3Hc/KHdeUMCXfR6QyVS4e98YeL1YlogLf0X8W4+8HLSL3q70BvCw
0oL1lrTmouraat9ru72C35v4QcnHCK+3xht9AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUQkSa3VDSNCsGA5sAKDdvzmMWPpkwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1FrU2EzVkRTTkNzR0E1c0FL
RGR2em1NV1Bway5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0
2jAwDQYJKoZIhvcNAQELBQADggEBADtpyDAighTaYrHtMyfABZjv4meQucJvf7UR
e1kodOD9gJO8+g3k3f2nIoOjLbLGZ7D761ZxHxjeyjv+QEsrUY6eXQCFIyJ3fjBH
OX7WYOvKgFShun/fg0yl6ou7G0gLwfsy8KCzabEzPdgSXljLYTYcD7njSLdH7LVW
wZCsCXwUqIlvAx/qq8Fb3yPbFfqbtRt0zSxqdMx0QQZ+cTQEni5shZisQmkVK2wb
SP1S1WWYL1cHJfNKxnSmAjfzY5bTz6jQXtRJ1xtuurmyu/yL7uDgEYdMuDweOBMH
t+3GHQhXHN1DqjCX5n2qyvN69T7oW9DS2zZu8r5yEG7SeBZ55c4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org