Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/a8gvSY-atPDaNoG2lPsdTVTowOA.roa
File: a8gvSY-atPDaNoG2lPsdTVTowOA.roa (raw, json)
Hash identifier: jvPSu3OfSlyet7aVqy/5IKU3KDCPMZm8uqd/bxIaDPc=
Subject key identifier: 6B:C8:2F:49:8F:9A:B4:F0:DA:36:81:B6:94:FB:1D:4D:54:E8:C0:E0
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1925
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/a8gvSY-atPDaNoG2lPsdTVTowOA.roa
Signing time: Sat 22 Oct 2022 06:06:09 +0000
ROA not before: Sat 22 Oct 2022 06:06:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 211.76.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6437 (0x1925)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:06:09 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6BC82F498F9AB4F0DA3681B694FB1D4D54E8C0E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b0:c3:f8:5e:d0:0e:b0:a5:d9:b8:9c:fa:bf:
6d:5e:bf:87:e3:ca:7d:84:cf:6e:49:5e:8d:e4:70:
22:2b:bb:fd:f8:e5:cd:f2:c5:1b:4f:9a:4f:b0:3e:
8d:c9:45:73:b3:9c:5c:56:25:a1:16:d8:f4:25:c3:
4f:3b:71:b2:e7:3f:d8:57:a2:9d:11:37:5d:cf:5c:
66:7b:a5:b9:85:89:4b:4a:c8:dd:6f:2b:40:bf:9b:
3f:ec:09:79:7d:0e:79:6b:2f:34:cb:0d:64:2e:e7:
88:e2:b4:16:65:a8:2c:57:f7:82:50:85:f6:1c:de:
a5:1b:4e:60:06:50:40:cb:70:47:e9:1d:26:66:94:
45:86:9c:20:90:8b:00:cd:de:40:93:e0:c1:5b:fb:
db:d3:81:e1:a9:10:9a:69:fc:39:4f:75:b0:d5:c9:
fc:55:26:39:c8:9d:2c:6c:fb:df:5d:22:de:b5:e1:
09:7e:41:eb:d2:97:55:7b:86:7c:5f:ed:b7:4e:37:
bf:7e:61:bf:04:07:bf:2b:72:be:0e:2c:10:f9:94:
7a:8c:c1:95:fe:30:f1:91:77:3c:32:c4:ec:40:32:
e4:99:6e:50:ac:2e:05:d7:b0:69:73:93:a4:18:05:
1e:2d:67:dc:76:8f:06:c0:43:e6:f4:64:b9:cc:f3:
71:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:C8:2F:49:8F:9A:B4:F0:DA:36:81:B6:94:FB:1D:4D:54:E8:C0:E0
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/a8gvSY-atPDaNoG2lPsdTVTowOA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.77.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:4b:dd:82:bf:2a:34:f2:41:79:67:5b:da:18:34:0f:77:bd:
a9:f3:f7:78:12:97:b1:56:48:34:8d:16:ec:3a:e8:9d:b5:28:
c8:06:e9:3e:48:bd:65:c3:4e:b3:03:8f:25:5e:98:2f:58:82:
72:c8:9b:48:ca:fb:54:06:7d:74:cc:63:15:1d:00:57:50:3f:
72:54:9f:e8:e0:81:9a:cf:64:d7:e9:48:4f:12:42:5f:aa:11:
4a:a1:d7:79:62:7a:45:77:9a:8c:2a:62:e3:2d:99:2a:fe:94:
fd:6b:78:17:27:23:f4:07:77:bd:b6:df:f2:c1:97:cf:3e:a4:
bc:68:14:68:88:bb:91:da:8a:98:43:8f:d8:fa:17:d6:a3:1b:
f7:26:f0:2e:85:08:07:1b:2d:cf:19:15:0a:d4:ea:98:02:ed:
b2:68:40:e6:62:53:ae:40:86:a5:f8:7f:ff:ea:30:c4:99:9d:
73:5c:70:2d:69:17:d2:9c:26:ec:5d:2c:1e:16:f3:53:ae:37:
cc:30:78:8d:ff:56:08:a4:67:7b:77:4d:68:10:3e:f9:39:1e:
f7:d9:17:38:06:35:ec:42:8a:23:64:1c:d3:d7:6e:7b:4f:bf:
cc:21:cb:81:da:c6:fb:5e:ff:92:a5:ad:b6:f8:1c:0b:be:61:
44:69:77:de
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICGSUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjEwMjIw
NjA2MDlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDZCQzgyRjQ5OEY5QUI0
RjBEQTM2ODFCNjk0RkIxRDRENTRFOEMwRTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7sMP4XtAOsKXZuJz6v21ev4fjyn2Ez25JXo3kcCIru/345c3y
xRtPmk+wPo3JRXOznFxWJaEW2PQlw087cbLnP9hXop0RN13PXGZ7pbmFiUtKyN1v
K0C/mz/sCXl9DnlrLzTLDWQu54jitBZlqCxX94JQhfYc3qUbTmAGUEDLcEfpHSZm
lEWGnCCQiwDN3kCT4MFb+9vTgeGpEJpp/DlPdbDVyfxVJjnInSxs+99dIt614Ql+
QevSl1V7hnxf7bdON79+Yb8EB78rcr4OLBD5lHqMwZX+MPGRdzwyxOxAMuSZblCs
LgXXsGlzk6QYBR4tZ9x2jwbAQ+b0ZLnM83HtAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUa8gvSY+atPDaNoG2lPsdTVTowOAwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2E4Z3ZTWS1hdFBEYU5vRzJs
UHNkVFZUb3dPQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADT
TE0wDQYJKoZIhvcNAQELBQADggEBAJtL3YK/KjTyQXlnW9oYNA93vanz93gSl7FW
SDSNFuw66J21KMgG6T5IvWXDTrMDjyVemC9YgnLIm0jK+1QGfXTMYxUdAFdQP3JU
n+jggZrPZNfpSE8SQl+qEUqh13liekV3mowqYuMtmSr+lP1reBcnI/QHd7223/LB
l88+pLxoFGiIu5HaiphDj9j6F9ajG/cm8C6FCAcbLc8ZFQrU6pgC7bJoQOZiU65A
hqX4f//qMMSZnXNccC1pF9KcJuxdLB4W81OuN8wweI3/VgikZ3t3TWgQPvk5HvfZ
FzgGNexCiiNkHNPXbntPv8why4Haxvte/5Klrbb4HAu+YURpd94=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org