Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hCLDzV2aiE7Mn7DuJlEoYGae-Ck.roa
File: hCLDzV2aiE7Mn7DuJlEoYGae-Ck.roa (raw, json)
Hash identifier: Z1PGuyD3gpN3jWc3pJcgnlCrNu2RX8h+/XzoZR3FYQo=
Subject key identifier: 84:22:C3:CD:5D:9A:88:4E:CC:9F:B0:EE:26:51:28:60:66:9E:F8:29
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12F2
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hCLDzV2aiE7Mn7DuJlEoYGae-Ck.roa
Signing time: Wed 29 Sep 2021 02:55:10 +0000
ROA not before: Wed 29 Sep 2021 02:55:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 180.218.168.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4850 (0x12f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8422C3CD5D9A884ECC9FB0EE26512860669EF829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:2a:cf:2d:ee:e0:0b:dd:32:89:ce:c1:34:b1:
dc:8d:bf:8e:f8:54:dd:c5:be:08:e3:32:3b:b9:6f:
ce:d6:db:12:cd:a0:b7:32:54:8e:aa:df:9f:f9:b2:
91:19:3c:35:0c:6e:5a:ad:fa:4b:88:4a:cc:7c:22:
6d:d3:81:d9:56:e7:ee:10:98:51:e9:c1:e8:90:51:
e2:77:3b:c1:4b:31:ec:98:b1:f0:95:6e:cf:bb:49:
28:77:89:7d:f3:f7:45:c9:03:a7:64:0a:c1:c0:3b:
69:98:66:10:17:82:dd:53:f5:fc:6a:1e:8a:a9:8c:
9d:39:82:26:5c:33:2f:6b:b7:14:f8:0a:68:31:b5:
69:aa:09:9a:ac:f9:47:34:f2:01:20:00:ec:81:e1:
8c:d8:45:fd:b2:e7:84:65:fd:ca:d7:35:7d:69:55:
af:e9:61:34:82:6f:d0:2e:ce:3b:65:5a:4a:23:af:
c1:4f:a0:42:c3:23:af:82:47:ab:f0:f2:33:7a:73:
8a:29:4d:65:b6:73:00:6b:d0:71:cc:f9:fc:2b:3a:
b7:7d:50:73:66:28:90:ee:87:26:98:60:1d:6d:58:
93:05:b8:f2:d4:ab:5c:64:0a:de:d4:2a:79:fe:14:
55:01:22:c5:be:1d:db:46:22:c4:9d:71:cd:40:93:
4c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:22:C3:CD:5D:9A:88:4E:CC:9F:B0:EE:26:51:28:60:66:9E:F8:29
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hCLDzV2aiE7Mn7DuJlEoYGae-Ck.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.168.0/22
Signature Algorithm: sha256WithRSAEncryption
98:22:5d:44:42:dd:ab:cb:c6:ee:07:20:a8:31:5e:87:40:1f:
84:d1:cb:60:fc:59:74:ad:fd:7a:d7:dd:09:a5:a4:ae:65:28:
7f:9a:55:8c:bc:ff:b5:32:ee:6e:e1:18:50:de:47:50:1a:87:
b0:b9:6b:ed:6e:a1:14:8e:0f:fe:11:8e:db:a7:d9:c2:ed:66:
4d:c8:d3:dc:44:a7:cc:04:7f:51:71:04:31:e1:8b:c9:28:5a:
41:66:be:93:25:cf:bb:a8:4e:c5:0a:20:ba:6a:89:48:fd:d8:
58:13:ac:c4:09:ad:56:99:5c:15:72:75:76:b3:40:21:4c:f3:
11:7c:cd:85:8f:f8:3a:27:4f:b9:ae:ab:a0:e8:94:cc:42:8b:
f0:ab:35:51:ab:87:82:09:82:eb:06:36:de:d7:b7:58:04:60:
5f:ba:82:21:0d:c0:ea:73:4c:d5:4c:17:65:29:b1:21:93:2c:
e5:7d:72:cb:e1:6a:b4:c1:a5:d7:e3:89:29:72:06:bf:aa:ca:
ea:d3:64:73:20:11:ea:a7:17:7a:11:4c:8d:0a:e5:91:8f:2e:
4b:e6:13:59:3f:4b:b0:3a:13:56:c0:90:b2:fb:ef:6c:4a:19:
8e:7c:33:d6:24:af:ed:8c:b4:b5:dd:22:84:39:25:b0:fc:11:
08:44:5a:3c
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEvIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU1MTBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDg0MjJDM0NENUQ5QTg4
NEVDQzlGQjBFRTI2NTEyODYwNjY5RUY4MjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDPKs8t7uAL3TKJzsE0sdyNv474VN3FvgjjMju5b87W2xLNoLcy
VI6q35/5spEZPDUMblqt+kuISsx8Im3TgdlW5+4QmFHpweiQUeJ3O8FLMeyYsfCV
bs+7SSh3iX3z90XJA6dkCsHAO2mYZhAXgt1T9fxqHoqpjJ05giZcMy9rtxT4Cmgx
tWmqCZqs+Uc08gEgAOyB4YzYRf2y54Rl/crXNX1pVa/pYTSCb9AuzjtlWkojr8FP
oELDI6+CR6vw8jN6c4opTWW2cwBr0HHM+fwrOrd9UHNmKJDuhyaYYB1tWJMFuPLU
q1xkCt7UKnn+FFUBIsW+HdtGIsSdcc1Ak0yjAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUhCLDzV2aiE7Mn7DuJlEoYGae+CkwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2hDTER6VjJhaUU3TW43RHVK
bEVvWUdhZS1Day5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0
2qgwDQYJKoZIhvcNAQELBQADggEBAJgiXURC3avLxu4HIKgxXodAH4TRy2D8WXSt
/XrX3QmlpK5lKH+aVYy8/7Uy7m7hGFDeR1Aah7C5a+1uoRSOD/4Rjtun2cLtZk3I
09xEp8wEf1FxBDHhi8koWkFmvpMlz7uoTsUKILpqiUj92FgTrMQJrVaZXBVydXaz
QCFM8xF8zYWP+DonT7muq6DolMxCi/CrNVGrh4IJgusGNt7Xt1gEYF+6giENwOpz
TNVMF2UpsSGTLOV9csvharTBpdfjiSlyBr+qyurTZHMgEeqnF3oRTI0K5ZGPLkvm
E1k/S7A6E1bAkLL772xKGY58M9Ykr+2MtLXdIoQ5JbD8EQhEWjw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org