Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vxeZnbJNoOzZ9G6o-C096-CTuVk.roa
File: vxeZnbJNoOzZ9G6o-C096-CTuVk.roa (raw, json)
Hash identifier: AsG4CdOh8pym2b7KuZNMOGbYCRKhD6B0+tyrhL/RgjI=
Subject key identifier: BF:17:99:9D:B2:4D:A0:EC:D9:F4:6E:A8:F8:2D:3D:EB:E0:93:B9:59
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1307
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vxeZnbJNoOzZ9G6o-C096-CTuVk.roa
Signing time: Wed 29 Sep 2021 02:55:16 +0000
ROA not before: Wed 29 Sep 2021 02:55:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 180.218.189.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4871 (0x1307)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:16 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=BF17999DB24DA0ECD9F46EA8F82D3DEBE093B959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0f:9d:eb:3c:d5:00:14:7a:5d:4c:be:b7:47:
5c:a2:94:54:42:cd:00:16:2e:45:f5:98:3c:9a:68:
e4:fb:a5:25:57:cd:f4:6d:c5:a9:34:e4:7d:45:73:
3f:15:fe:f6:a8:64:ff:4c:33:64:f9:1b:50:97:6f:
58:80:10:d5:f3:84:ba:6e:e8:16:1c:a0:cd:60:b9:
bf:37:db:f9:1e:1f:2a:7f:24:64:4e:ca:c5:bb:13:
e3:53:a4:4d:ab:be:11:e1:0b:09:87:3f:2a:bb:ea:
08:15:73:33:94:d6:08:11:49:dc:73:1d:6b:5f:a8:
77:a7:ba:12:e2:c6:4f:99:9a:c1:d0:52:5a:39:1e:
24:09:bd:79:80:2e:3c:e4:7c:32:29:10:34:4f:a2:
92:c0:22:35:a5:60:6d:14:e2:07:2a:3b:62:b0:92:
02:49:33:dd:20:cc:af:f5:d5:ec:ae:0e:52:34:b6:
da:9d:f8:57:f9:dc:41:86:7a:e1:68:8f:b9:26:9f:
fe:9a:5f:5f:0f:7f:75:3b:31:b0:b1:ea:c0:5b:8a:
69:23:ce:ec:53:dd:93:30:e3:af:02:f8:63:51:a8:
00:02:d0:ca:f1:d9:e9:09:3f:6b:b5:83:96:37:fb:
fe:4e:e5:58:0d:aa:af:bd:3c:e1:98:e4:06:96:72:
88:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:17:99:9D:B2:4D:A0:EC:D9:F4:6E:A8:F8:2D:3D:EB:E0:93:B9:59
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vxeZnbJNoOzZ9G6o-C096-CTuVk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.189.0/24
Signature Algorithm: sha256WithRSAEncryption
65:c5:10:c6:4d:ce:50:39:68:1a:f5:5b:34:39:0a:12:4b:85:
71:3b:c8:e3:f0:f9:8d:cb:77:be:f8:35:b8:f7:19:44:12:94:
aa:57:54:ad:4d:6b:9e:05:2f:55:a0:d3:a1:29:c8:f9:a8:90:
fc:4f:51:3e:e0:86:49:fb:59:02:61:bf:95:73:0a:8b:c9:b2:
00:69:33:9a:95:9a:60:d2:fc:3f:b8:f9:d6:f9:85:55:78:e6:
ce:0b:71:62:35:38:c6:b3:68:4d:66:88:fe:a1:14:27:8f:03:
6b:56:df:36:f2:ea:00:54:c9:71:da:ef:1b:46:4f:72:b8:bf:
15:cd:6f:2b:37:36:8f:f1:d9:fc:9a:f2:b6:d0:03:ab:43:51:
b8:f9:c0:86:c2:c9:12:a2:fd:87:93:73:c8:99:19:52:22:7b:
2a:88:e6:08:12:0b:72:0c:a9:f3:12:6e:84:34:4b:f1:af:f3:
c7:4f:67:9e:3d:a5:33:a1:b7:8b:be:63:11:ad:0a:87:4f:63:
34:c0:0e:d1:97:2f:98:c0:52:cf:12:fb:fd:24:20:36:67:31:
27:ce:a5:43:62:14:cc:2b:18:b0:a9:cb:41:83:f5:8d:3d:8a:
73:8f:67:92:c5:8c:4b:8d:c3:f4:9f:39:9f:e1:f1:c4:80:d8:
9a:d6:c2:d4
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEwcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU1MTZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEJGMTc5OTlEQjI0REEw
RUNEOUY0NkVBOEY4MkQzREVCRTA5M0I5NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9D53rPNUAFHpdTL63R1yilFRCzQAWLkX1mDyaaOT7pSVXzfRt
xak05H1Fcz8V/vaoZP9MM2T5G1CXb1iAENXzhLpu6BYcoM1gub832/keHyp/JGRO
ysW7E+NTpE2rvhHhCwmHPyq76ggVczOU1ggRSdxzHWtfqHenuhLixk+ZmsHQUlo5
HiQJvXmALjzkfDIpEDRPopLAIjWlYG0U4gcqO2KwkgJJM90gzK/11eyuDlI0ttqd
+Ff53EGGeuFoj7kmn/6aX18Pf3U7MbCx6sBbimkjzuxT3ZMw468C+GNRqAAC0Mrx
2ekJP2u1g5Y3+/5O5VgNqq+9POGY5AaWcoitAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUvxeZnbJNoOzZ9G6o+C096+CTuVkwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3Z4ZVpuYkpOb096WjlHNm8t
QzA5Ni1DVHVWay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC0
2r0wDQYJKoZIhvcNAQELBQADggEBAGXFEMZNzlA5aBr1WzQ5ChJLhXE7yOPw+Y3L
d774Nbj3GUQSlKpXVK1Na54FL1Wg06EpyPmokPxPUT7ghkn7WQJhv5VzCovJsgBp
M5qVmmDS/D+4+db5hVV45s4LcWI1OMazaE1miP6hFCePA2tW3zby6gBUyXHa7xtG
T3K4vxXNbys3No/x2fya8rbQA6tDUbj5wIbCyRKi/YeTc8iZGVIieyqI5ggSC3IM
qfMSboQ0S/Gv88dPZ549pTOht4u+YxGtCodPYzTADtGXL5jAUs8S+/0kIDZnMSfO
pUNiFMwrGLCpy0GD9Y09inOPZ5LFjEuNw/SfOZ/h8cSA2JrWwtQ=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:53 2023 by rpki-client on console-fra.rpki-client.org