Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hoz03j9R_hmv7naFnCSisza3okU.roa
File: hoz03j9R_hmv7naFnCSisza3okU.roa (raw, json)
Hash identifier: /aEG4e9beM/byYGs9ZLS5AGWf6d5usw0fWRShWrfIy4=
Subject key identifier: 86:8C:F4:DE:3F:51:FE:19:AF:EE:76:85:9C:24:A2:B3:36:B7:A2:45
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1143
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hoz03j9R_hmv7naFnCSisza3okU.roa
Signing time: Sun 07 Feb 2021 13:14:43 +0000
ROA not before: Sun 07 Feb 2021 13:14:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24163
IP address blocks: 61.56.168.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4419 (0x1143)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 13:14:43 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=868CF4DE3F51FE19AFEE76859C24A2B336B7A245
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:b9:4d:cc:57:98:02:6c:48:5a:fd:6b:8c:1d:
23:24:40:04:5f:dd:b9:ce:0f:19:12:eb:bb:05:bb:
24:f3:8e:ca:04:af:82:66:9d:04:c4:f7:6b:70:3f:
5e:74:b2:a6:63:bf:86:b5:d8:5a:8b:2f:e4:c7:d4:
90:1a:09:ed:d3:50:aa:24:96:11:4c:7d:ea:26:b9:
ee:76:b9:7f:28:f4:ad:31:a7:b5:71:c2:d9:59:e8:
eb:ad:d3:49:30:48:38:d3:1a:65:58:48:16:86:ae:
2b:df:27:9b:a5:86:2a:7b:40:10:c5:b4:2e:77:92:
83:d6:88:27:a2:9b:69:84:56:3a:4e:50:ed:a9:9b:
0d:a4:1a:45:7a:6c:8e:64:11:c0:80:12:49:93:47:
32:f7:5f:93:66:54:72:af:8e:bc:ea:7c:67:6a:11:
d0:fa:79:2d:db:41:6d:16:98:72:e6:94:b7:ed:cb:
0b:69:72:43:05:b3:8a:45:62:8d:28:9a:a7:5f:8f:
0d:e5:1a:96:7b:d6:02:5a:8c:89:ad:fc:da:02:01:
b8:0c:1f:88:57:bf:76:49:c3:28:29:41:f7:27:4a:
1b:74:1a:e2:f1:6b:4c:6c:28:76:02:fc:fc:0e:c8:
fa:76:ef:be:db:9e:a4:96:f9:56:ec:27:dd:7d:b2:
e7:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:8C:F4:DE:3F:51:FE:19:AF:EE:76:85:9C:24:A2:B3:36:B7:A2:45
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hoz03j9R_hmv7naFnCSisza3okU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.168.0/21
Signature Algorithm: sha256WithRSAEncryption
69:44:cb:ec:13:c5:ee:e3:ed:a6:e1:6c:b9:19:7d:8c:04:99:
cc:a6:39:98:a5:39:6c:21:25:c8:6b:d3:6f:b3:71:37:d1:2f:
8b:2c:2e:eb:a6:f0:e7:19:c8:c9:06:8b:60:a0:4d:a0:ec:10:
ef:6f:49:94:f0:f5:13:52:03:2b:e8:87:89:7f:aa:8b:35:e8:
ce:22:e3:02:7c:8b:3b:26:55:5d:f4:20:61:a1:aa:41:e8:72:
54:3d:96:b7:69:9c:39:d2:35:3b:59:05:92:0f:59:06:db:c9:
8d:a6:84:a1:3f:58:78:c6:d0:74:1f:fb:c5:9b:72:fe:ef:cd:
74:19:f8:58:e3:38:72:02:29:76:12:a1:d1:1a:c6:62:04:0f:
df:ea:41:e8:52:53:46:86:0a:aa:63:7f:fb:b0:96:c4:cc:d1:
74:d1:60:11:01:0d:6f:ab:1c:e2:84:8a:7e:61:fd:68:32:00:
c6:f3:92:cd:83:0e:ee:62:0b:c3:b1:31:42:b7:ab:25:ea:0f:
54:dc:c7:40:94:e4:3e:d5:81:50:f7:30:d0:e3:17:5d:15:e5:
81:d8:cf:f3:be:d5:48:70:a2:f6:53:6c:8b:94:eb:f2:46:79:
02:ff:4a:6f:f4:f1:d3:70:99:72:fb:f3:6a:9c:d3:94:42:65:
ff:a7:89:42
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEUMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTAyMDcx
MzE0NDNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDg2OENGNERFM0Y1MUZF
MTlBRkVFNzY4NTlDMjRBMkIzMzZCN0EyNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDmuU3MV5gCbEha/WuMHSMkQARf3bnODxkS67sFuyTzjsoEr4Jm
nQTE92twP150sqZjv4a12FqLL+TH1JAaCe3TUKoklhFMfeomue52uX8o9K0xp7Vx
wtlZ6Out00kwSDjTGmVYSBaGrivfJ5ulhip7QBDFtC53koPWiCeim2mEVjpOUO2p
mw2kGkV6bI5kEcCAEkmTRzL3X5NmVHKvjrzqfGdqEdD6eS3bQW0WmHLmlLftywtp
ckMFs4pFYo0omqdfjw3lGpZ71gJajImt/NoCAbgMH4hXv3ZJwygpQfcnSht0GuLx
a0xsKHYC/PwOyPp2777bnqSW+VbsJ919sudFAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUhoz03j9R/hmv7naFnCSisza3okUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2hvejAzajlSX2htdjduYUZu
Q1Npc3phM29rVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9
OKgwDQYJKoZIhvcNAQELBQADggEBAGlEy+wTxe7j7abhbLkZfYwEmcymOZilOWwh
Jchr02+zcTfRL4ssLuum8OcZyMkGi2CgTaDsEO9vSZTw9RNSAyvoh4l/qos16M4i
4wJ8izsmVV30IGGhqkHoclQ9lrdpnDnSNTtZBZIPWQbbyY2mhKE/WHjG0HQf+8Wb
cv7vzXQZ+FjjOHICKXYSodEaxmIED9/qQehSU0aGCqpjf/uwlsTM0XTRYBEBDW+r
HOKEin5h/WgyAMbzks2DDu5iC8OxMUK3qyXqD1Tcx0CU5D7VgVD3MNDjF10V5YHY
z/O+1UhwovZTbIuU6/JGeQL/Sm/08dNwmXL782qc05RCZf+niUI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org