Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/o40wtgcQ6D-i7GIhH3a-l2Jtzb0.roa
File: o40wtgcQ6D-i7GIhH3a-l2Jtzb0.roa (raw, json)
Hash identifier: kZhWQNKFIFM6713bwvlimw+QcEKT1mlmaYuxRJgJnlk=
Subject key identifier: A3:8D:30:B6:07:10:E8:3F:A2:EC:62:21:1F:76:BE:97:62:6D:CD:BD
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 17CC
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/o40wtgcQ6D-i7GIhH3a-l2Jtzb0.roa
Signing time: Sat 22 Oct 2022 05:43:43 +0000
ROA not before: Sat 22 Oct 2022 05:43:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 180.218.192.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6092 (0x17cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 05:43:43 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A38D30B60710E83FA2EC62211F76BE97626DCDBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:19:1d:38:90:1a:c0:f4:e6:34:6d:7d:5e:35:
85:11:4b:8f:75:5a:9a:85:35:a8:ba:b3:5e:7c:98:
0f:f3:08:98:e4:8f:29:d4:69:b8:c9:61:5d:f1:31:
db:8b:40:fa:7b:1a:39:78:e5:39:30:1a:fa:81:b7:
fe:44:80:d9:1d:77:df:bf:e6:3c:1e:fb:90:4d:b5:
b1:c7:1f:e0:39:fb:9f:df:2d:6d:77:d9:1a:0b:6f:
37:d9:64:6b:45:87:a8:f5:17:53:2f:21:c1:e6:e0:
4a:ef:29:b5:52:b9:91:d1:7a:a5:db:ae:b7:8a:2c:
52:2c:d3:01:c7:ce:aa:46:b8:5c:b9:91:44:ed:91:
f0:f3:fd:55:0d:85:4c:79:89:04:1b:c5:6d:02:b2:
13:e0:85:43:e0:4a:8f:d3:8f:20:d4:44:5b:c6:05:
73:7d:59:9c:61:ce:c7:b9:75:f0:68:20:76:c3:77:
e9:61:aa:6f:74:e7:6e:4a:61:88:10:60:b4:4f:69:
90:0b:7a:d2:b0:e8:cb:6e:b1:d3:ef:7c:9a:d3:fc:
21:5b:db:a1:5e:a3:ff:a0:ad:1a:74:84:c1:aa:8c:
2a:cc:c3:09:25:22:83:92:a1:c4:2d:ba:7f:54:75:
cb:74:f5:23:3f:ca:df:c6:73:cd:95:b1:0e:70:b4:
67:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:8D:30:B6:07:10:E8:3F:A2:EC:62:21:1F:76:BE:97:62:6D:CD:BD
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/o40wtgcQ6D-i7GIhH3a-l2Jtzb0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.192.0/18
Signature Algorithm: sha256WithRSAEncryption
75:db:21:ce:ba:b0:4a:05:05:3a:61:08:98:f3:39:18:04:61:
4b:55:40:78:53:0a:db:8d:29:a7:04:25:75:1d:30:4f:7e:99:
c7:d7:19:9b:fb:ae:20:06:19:af:e0:5b:b3:81:9c:ea:3b:b9:
45:e1:e3:76:c8:c2:ce:1b:b3:ae:2b:e3:29:1e:57:01:7c:e5:
a3:b7:82:b7:2a:11:cb:c9:ae:40:a7:9c:58:6a:9f:ae:31:83:
f0:4f:c7:60:c4:a8:b2:45:5a:89:ed:5f:61:b5:4f:db:e1:ed:
b8:c3:79:35:e6:39:ba:35:af:ce:fc:12:18:30:99:4b:3d:91:
2c:c2:0d:11:1f:66:10:c6:33:6c:c4:a8:3c:6f:37:25:e4:dd:
b6:d8:6e:06:09:bb:65:8b:da:5e:33:13:aa:44:be:46:8a:f4:
53:d5:4e:e2:18:8c:8b:7b:c1:8c:7f:9c:07:bc:0f:7d:e5:d5:
82:8a:00:ac:d2:97:01:3b:99:6f:e0:65:90:9b:d2:5a:db:ef:
e7:9c:db:39:54:99:ca:7e:62:79:88:0f:91:ce:6f:a0:11:6d:
6a:3b:2b:bb:60:c8:67:95:d0:7c:bd:1e:35:a2:ca:0b:b1:0f:
fb:ac:5e:c5:33:8e:7c:c5:46:85:08:93:67:1f:92:55:13:c4:
bc:c0:df:46
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICF8wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjEwMjIw
NTQzNDNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEEzOEQzMEI2MDcxMEU4
M0ZBMkVDNjIyMTFGNzZCRTk3NjI2RENEQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDKGR04kBrA9OY0bX1eNYURS491WpqFNai6s158mA/zCJjkjynU
abjJYV3xMduLQPp7Gjl45TkwGvqBt/5EgNkdd9+/5jwe+5BNtbHHH+A5+5/fLW13
2RoLbzfZZGtFh6j1F1MvIcHm4ErvKbVSuZHReqXbrreKLFIs0wHHzqpGuFy5kUTt
kfDz/VUNhUx5iQQbxW0CshPghUPgSo/TjyDURFvGBXN9WZxhzse5dfBoIHbDd+lh
qm90525KYYgQYLRPaZALetKw6MtusdPvfJrT/CFb26Feo/+grRp0hMGqjCrMwwkl
IoOSocQtun9Udct09SM/yt/Gc82VsQ5wtGcVAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUo40wtgcQ6D+i7GIhH3a+l2Jtzb0wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL280MHd0Z2NRNkQtaTdHSWhI
M2EtbDJKdHpiMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAa0
2sAwDQYJKoZIhvcNAQELBQADggEBAHXbIc66sEoFBTphCJjzORgEYUtVQHhTCtuN
KacEJXUdME9+mcfXGZv7riAGGa/gW7OBnOo7uUXh43bIws4bs64r4ykeVwF85aO3
grcqEcvJrkCnnFhqn64xg/BPx2DEqLJFWontX2G1T9vh7bjDeTXmObo1r878Ehgw
mUs9kSzCDREfZhDGM2zEqDxvNyXk3bbYbgYJu2WL2l4zE6pEvkaK9FPVTuIYjIt7
wYx/nAe8D33l1YKKAKzSlwE7mW/gZZCb0lrb7+ec2zlUmcp+YnmID5HOb6ARbWo7
K7tgyGeV0Hy9HjWiyguxD/usXsUzjnzFRoUIk2cfklUTxLzA30Y=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:49 2024 by rpki-client on console-ams.rpki-client.org