Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0hNlRXOP_s7LJrUm1mr7F5H7y4g.roa
File: 0hNlRXOP_s7LJrUm1mr7F5H7y4g.roa (raw, json)
Hash identifier: vzoeVsqzo/zkGPPY9Z7Z6ir/5A43WGnP0y2UwtZcWH8=
Subject key identifier: D2:13:65:45:73:8F:FE:CE:CB:26:B5:26:D6:6A:FB:17:91:FB:CB:88
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1922
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0hNlRXOP_s7LJrUm1mr7F5H7y4g.roa
Signing time: Sat 22 Oct 2022 06:06:08 +0000
ROA not before: Sat 22 Oct 2022 06:06:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 122.100.76.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6434 (0x1922)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:06:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D2136545738FFECECB26B526D66AFB1791FBCB88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:9c:f4:d0:ab:fc:47:c0:f9:fe:85:b6:2c:88:
95:b3:da:e2:46:f9:5c:c2:11:9d:d8:5d:be:76:21:
26:14:98:4e:38:59:f9:f5:b7:f8:76:77:03:76:99:
a9:a9:43:32:31:37:cd:98:74:44:da:96:ad:ff:bd:
79:79:5e:94:95:0b:7c:ae:d6:02:1e:48:b2:83:14:
86:d0:ed:61:01:7b:ff:d2:f6:84:2f:4f:1c:f2:ce:
40:49:8f:76:c6:53:20:cc:ce:a9:7b:5a:ed:1d:59:
44:c2:c1:82:a8:2c:0c:0f:de:ef:90:b2:37:58:58:
86:81:24:52:48:86:19:c9:d4:20:79:16:c8:e9:bf:
27:f5:41:47:0d:aa:2a:0e:bd:ed:4e:c7:a2:33:98:
72:d5:fc:25:c0:e3:57:bf:b1:d6:ca:5f:ca:30:20:
ee:d9:24:dc:84:cc:0f:91:1c:d5:7c:79:28:4b:dd:
fd:98:78:52:2b:85:9d:f8:54:41:c9:e2:5b:20:9b:
15:28:f5:fc:c2:26:de:49:58:08:16:4b:85:6a:39:
b3:6a:2f:c0:f3:cb:cc:80:36:bb:82:af:2f:6e:f0:
2f:6f:fc:95:23:82:ea:3b:9d:18:5a:d2:3f:fa:b8:
4c:94:5e:8f:bf:d2:1e:bf:d0:f1:f2:52:56:9e:1b:
b8:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:13:65:45:73:8F:FE:CE:CB:26:B5:26:D6:6A:FB:17:91:FB:CB:88
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0hNlRXOP_s7LJrUm1mr7F5H7y4g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.100.76.0/22
Signature Algorithm: sha256WithRSAEncryption
83:92:40:3b:6f:be:a5:59:15:f4:35:be:36:d3:ca:b7:34:00:
65:05:37:bf:05:fb:4b:c7:07:8b:17:26:7a:5e:25:30:6c:c5:
d8:1f:c1:ae:93:bf:ec:06:1a:d1:ed:b7:f8:c0:9b:cb:f4:0e:
a2:f5:de:af:c5:db:1c:7f:b2:0a:bf:bf:ef:4f:4b:c8:ca:17:
ad:7b:c8:25:d3:f1:43:ce:17:dc:37:5d:f5:84:13:d8:9d:de:
2c:2b:f9:9d:36:64:47:2b:89:15:91:4c:2e:20:04:9a:d2:7c:
43:1e:5e:54:87:59:72:c1:aa:52:91:8a:4d:8c:57:73:98:96:
e5:e8:b7:e6:cb:fd:f1:c5:2c:b4:8a:e7:6a:00:34:4b:93:fc:
9e:63:6a:2a:7a:13:29:9b:31:0a:98:9d:5f:cc:d3:fe:fb:3e:
ca:9d:c0:f2:c9:66:7e:8b:e1:4f:7b:3a:46:d6:cd:dc:9a:1d:
3e:e6:20:d8:09:a4:f1:f6:51:c6:3c:ae:be:4b:00:6d:db:4d:
33:c3:a0:34:11:2a:01:3d:e7:37:d4:5e:7c:6b:2c:d4:c3:05:
87:f1:ef:a3:33:49:30:20:fe:77:f3:e8:cf:7c:13:64:fb:35:
f7:ea:a8:a2:87:46:28:4b:f1:b1:e5:72:1d:e3:e8:e9:f1:79:
0f:a2:b9:e0
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICGSIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjEwMjIw
NjA2MDhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEQyMTM2NTQ1NzM4RkZF
Q0VDQjI2QjUyNkQ2NkFGQjE3OTFGQkNCODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDlnPTQq/xHwPn+hbYsiJWz2uJG+VzCEZ3YXb52ISYUmE44Wfn1
t/h2dwN2mampQzIxN82YdETalq3/vXl5XpSVC3yu1gIeSLKDFIbQ7WEBe//S9oQv
TxzyzkBJj3bGUyDMzql7Wu0dWUTCwYKoLAwP3u+QsjdYWIaBJFJIhhnJ1CB5Fsjp
vyf1QUcNqioOve1Ox6IzmHLV/CXA41e/sdbKX8owIO7ZJNyEzA+RHNV8eShL3f2Y
eFIrhZ34VEHJ4lsgmxUo9fzCJt5JWAgWS4VqObNqL8Dzy8yANruCry9u8C9v/JUj
guo7nRha0j/6uEyUXo+/0h6/0PHyUlaeG7hVAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU0hNlRXOP/s7LJrUm1mr7F5H7y4gwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzBoTmxSWE9QX3M3TEpyVW0x
bXI3RjVIN3k0Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ6
ZEwwDQYJKoZIhvcNAQELBQADggEBAIOSQDtvvqVZFfQ1vjbTyrc0AGUFN78F+0vH
B4sXJnpeJTBsxdgfwa6Tv+wGGtHtt/jAm8v0DqL13q/F2xx/sgq/v+9PS8jKF617
yCXT8UPOF9w3XfWEE9id3iwr+Z02ZEcriRWRTC4gBJrSfEMeXlSHWXLBqlKRik2M
V3OYluXot+bL/fHFLLSK52oANEuT/J5jaip6EymbMQqYnV/M0/77PsqdwPLJZn6L
4U97OkbWzdyaHT7mINgJpPH2UcY8rr5LAG3bTTPDoDQRKgE95zfUXnxrLNTDBYfx
76MzSTAg/nfz6M98E2T7NffqqKKHRihL8bHlch3j6OnxeQ+iueA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org