Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hBm9syXj-UqE2zQIScnZ5BeVTH4.roa
File: hBm9syXj-UqE2zQIScnZ5BeVTH4.roa (raw, json)
Hash identifier: jqS07eLZabVyiOaUfuY25rg8SYFYxDgVJDrjVLAgCuI=
Subject key identifier: 84:19:BD:B3:25:E3:F9:4A:84:DB:34:08:49:C9:D9:E4:17:95:4C:7E
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 10D1
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hBm9syXj-UqE2zQIScnZ5BeVTH4.roa
Signing time: Sun 07 Feb 2021 12:49:05 +0000
ROA not before: Sun 07 Feb 2021 12:49:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 180.218.160.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4305 (0x10d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:49:05 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8419BDB325E3F94A84DB340849C9D9E417954C7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:59:38:47:35:13:73:51:7f:9f:85:fc:a4:14:
d2:dc:45:ac:59:43:1c:10:ff:d1:54:af:a4:27:a5:
2b:ef:77:f0:09:12:89:4a:17:85:3b:84:cb:54:41:
92:15:da:4f:9f:5d:0c:b8:61:30:19:ab:df:6f:17:
23:8b:c3:a5:2c:c4:53:f1:81:2f:41:7e:d5:bc:7f:
65:a0:2b:93:8e:12:c3:40:84:44:59:6b:8d:64:0f:
be:57:60:2c:ec:93:13:e5:98:21:66:4b:2d:1b:78:
a9:d0:02:11:d7:4c:48:eb:33:5e:83:c3:18:74:e3:
37:0c:25:0f:60:93:f0:8e:d8:da:ee:07:6f:4a:13:
13:43:b8:a6:e7:23:ad:ee:5c:21:05:89:d9:d7:32:
19:84:a1:f9:d4:a2:8f:4a:40:7a:4a:6a:e6:5d:a2:
26:d4:00:3e:c1:52:94:b1:ef:2c:aa:73:2e:e9:59:
c6:19:0f:6b:ea:73:64:96:d1:b2:ec:a5:09:ac:98:
f5:0b:a4:c9:53:24:71:aa:32:54:51:22:cd:2f:29:
3e:30:f3:12:8e:9b:ab:a2:5c:21:9f:28:4a:ad:37:
31:a7:d9:f0:e5:a8:6c:58:00:77:ef:02:3f:d7:18:
de:00:03:6f:b5:64:60:b0:44:20:b8:8e:71:c8:79:
a1:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:19:BD:B3:25:E3:F9:4A:84:DB:34:08:49:C9:D9:E4:17:95:4C:7E
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hBm9syXj-UqE2zQIScnZ5BeVTH4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.160.0/20
Signature Algorithm: sha256WithRSAEncryption
8e:5b:93:69:00:8a:7e:32:1c:1a:fa:fa:c1:a9:d1:79:77:88:
fd:da:9e:ca:66:70:97:70:0a:8c:65:bf:d6:64:85:2e:14:58:
46:03:ba:00:57:48:6b:19:80:ed:bd:86:ff:ff:ae:05:8c:7e:
c5:c9:2f:8c:0a:e9:b9:09:44:a1:c3:14:08:48:c8:7c:f0:f0:
43:0e:41:9d:d3:c0:f9:53:97:a6:4c:ef:56:98:93:ac:18:04:
98:7e:58:e7:48:cc:0a:e8:48:fc:a2:69:6a:d9:b3:ee:b1:8a:
e9:a4:27:cd:8c:91:c2:f8:8f:20:80:05:43:e6:57:e8:d1:ee:
3d:80:cf:26:52:1f:cb:62:de:3d:20:a8:4a:b8:fb:02:57:e9:
ed:84:52:cf:0b:8a:78:4b:14:1f:d8:38:9e:28:7f:9f:0a:e9:
fc:93:fb:76:ad:f1:9f:0b:a6:b5:35:ad:dc:8b:83:3d:37:00:
45:f9:08:3c:a5:ff:b6:d8:6b:e2:67:c8:f1:07:3a:d9:71:62:
bd:71:93:6a:30:bd:14:53:1a:04:e7:e2:74:de:40:5f:82:8a:
cc:5e:67:4f:c3:1c:6b:58:79:69:ef:9b:b9:2c:06:3a:a9:a4:
b4:5f:7f:f1:19:86:94:87:05:a1:4a:3e:12:f5:63:bb:0e:5e:
02:cc:ba:c2
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICENEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTAyMDcx
MjQ5MDVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDg0MTlCREIzMjVFM0Y5
NEE4NERCMzQwODQ5QzlEOUU0MTc5NTRDN0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCkWThHNRNzUX+fhfykFNLcRaxZQxwQ/9FUr6QnpSvvd/AJEolK
F4U7hMtUQZIV2k+fXQy4YTAZq99vFyOLw6UsxFPxgS9BftW8f2WgK5OOEsNAhERZ
a41kD75XYCzskxPlmCFmSy0beKnQAhHXTEjrM16Dwxh04zcMJQ9gk/CO2NruB29K
ExNDuKbnI63uXCEFidnXMhmEofnUoo9KQHpKauZdoibUAD7BUpSx7yyqcy7pWcYZ
D2vqc2SW0bLspQmsmPULpMlTJHGqMlRRIs0vKT4w8xKOm6uiXCGfKEqtNzGn2fDl
qGxYAHfvAj/XGN4AA2+1ZGCwRCC4jnHIeaFdAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUhBm9syXj+UqE2zQIScnZ5BeVTH4wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2hCbTlzeVhqLVVxRTJ6UUlT
Y25aNUJlVlRINC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAS0
2qAwDQYJKoZIhvcNAQELBQADggEBAI5bk2kAin4yHBr6+sGp0Xl3iP3anspmcJdw
Coxlv9ZkhS4UWEYDugBXSGsZgO29hv//rgWMfsXJL4wK6bkJRKHDFAhIyHzw8EMO
QZ3TwPlTl6ZM71aYk6wYBJh+WOdIzAroSPyiaWrZs+6xiumkJ82MkcL4jyCABUPm
V+jR7j2AzyZSH8ti3j0gqEq4+wJX6e2EUs8LinhLFB/YOJ4of58K6fyT+3at8Z8L
prU1rdyLgz03AEX5CDyl/7bYa+JnyPEHOtlxYr1xk2owvRRTGgTn4nTeQF+Cisxe
Z0/DHGtYeWnvm7ksBjqppLRff/EZhpSHBaFKPhL1Y7sOXgLMusI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:49 2024 by rpki-client on console-ams.rpki-client.org