Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/iCiGWfqYb8-EDg0jMIvk2r75lUQ.roa
File: iCiGWfqYb8-EDg0jMIvk2r75lUQ.roa (raw, json)
Hash identifier: B7+/s9fzU/DLbRLK6/ttd0L92l4kXkKrxH5ZbffOb3k=
Subject key identifier: 88:28:86:59:FA:98:6F:CF:84:0E:0D:23:30:8B:E4:DA:BE:F9:95:44
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/iCiGWfqYb8-EDg0jMIvk2r75lUQ.roa
Signing time: Wed 29 Sep 2021 02:55:13 +0000
ROA not before: Wed 29 Sep 2021 02:55:13 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 119.77.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4862 (0x12fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:13 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=88288659FA986FCF840E0D23308BE4DABEF99544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:75:33:a5:b7:e7:69:9d:00:a4:f4:39:b0:81:
f9:fa:e0:94:57:e4:f0:86:b8:0f:37:72:76:75:6c:
48:1f:37:02:10:34:3c:a0:d0:b1:d6:a6:f5:63:09:
2d:8a:91:59:94:6b:fe:73:c7:2e:d2:31:26:71:22:
02:11:4e:a2:51:a2:4a:e5:25:ce:5b:c5:03:35:4e:
68:49:19:3c:74:3f:62:10:0e:9d:c5:20:7b:b0:7a:
cb:84:6b:4a:4b:c6:c3:4f:c4:ef:87:cc:d4:2c:9b:
fd:5f:80:d7:c6:c3:a1:bf:32:e7:25:11:17:79:fa:
f5:9e:f1:fa:4c:35:6e:8d:16:a3:36:93:c4:17:e4:
43:2c:99:32:9b:cd:01:4e:c0:79:91:f9:75:2b:f6:
12:f0:2c:11:cf:8e:2e:aa:e2:96:7e:a6:94:54:d5:
d7:4b:2e:c6:09:4c:e1:fa:2e:d0:32:a8:b2:b9:a6:
3e:55:d6:22:d6:cc:4f:23:d2:4a:fc:d9:c3:a8:80:
39:70:0e:05:55:d0:cc:98:d1:2e:f1:90:40:1e:3d:
44:b3:20:e6:f3:a4:da:79:d1:8d:0d:8f:60:c3:a7:
43:22:89:39:1b:7f:b8:9a:2b:93:55:14:1e:c5:9a:
1f:59:80:b8:2c:1b:36:99:5c:d7:c9:bd:fe:67:4d:
c0:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:28:86:59:FA:98:6F:CF:84:0E:0D:23:30:8B:E4:DA:BE:F9:95:44
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/iCiGWfqYb8-EDg0jMIvk2r75lUQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.77.254.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:d1:6f:f3:76:55:77:fa:dd:51:92:e9:00:83:2c:77:d9:de:
5e:e3:2d:a5:a2:83:94:6c:af:b9:73:22:13:2e:0f:df:fd:1e:
66:13:aa:db:70:4e:38:63:88:00:4d:cd:a0:e5:a5:3e:d3:25:
05:c0:0e:c3:87:dc:df:a1:e7:2c:9e:4a:39:75:89:97:e4:ed:
93:09:ab:fc:fe:8a:46:a0:12:99:3d:0d:f6:5b:28:cb:9c:d4:
48:b9:87:2c:ac:42:7c:60:4d:61:e2:d9:ce:94:cd:d8:3f:f3:
2d:a8:ce:39:18:d0:1f:07:67:2b:94:52:d0:7b:d0:fe:4d:c7:
ef:7e:8b:94:7d:00:7b:05:a6:8c:81:98:6e:f1:9f:1e:89:3b:
03:8c:e9:eb:57:4a:09:61:f7:f7:2f:8c:07:dc:48:3f:80:4b:
99:90:51:20:00:56:24:85:c6:69:4b:62:a6:8e:64:b3:a3:41:
77:69:73:54:6f:00:90:ea:6a:56:82:6a:95:b3:8a:1f:1e:68:
fc:ed:97:b8:2d:d5:da:62:31:d5:fd:3b:e5:bf:4f:21:dc:c3:
3d:73:dc:66:b9:18:b3:0d:73:82:92:85:eb:09:93:7d:13:be:
10:4b:7c:5e:2d:22:c5:93:45:42:47:25:ed:06:4d:84:d0:71:
4e:62:cb:79
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEv4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU1MTNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDg4Mjg4NjU5RkE5ODZG
Q0Y4NDBFMEQyMzMwOEJFNERBQkVGOTk1NDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDLdTOlt+dpnQCk9Dmwgfn64JRX5PCGuA83cnZ1bEgfNwIQNDyg
0LHWpvVjCS2KkVmUa/5zxy7SMSZxIgIRTqJRokrlJc5bxQM1TmhJGTx0P2IQDp3F
IHuwesuEa0pLxsNPxO+HzNQsm/1fgNfGw6G/MuclERd5+vWe8fpMNW6NFqM2k8QX
5EMsmTKbzQFOwHmR+XUr9hLwLBHPji6q4pZ+ppRU1ddLLsYJTOH6LtAyqLK5pj5V
1iLWzE8j0kr82cOogDlwDgVV0MyY0S7xkEAePUSzIObzpNp50Y0Nj2DDp0MiiTkb
f7iaK5NVFB7Fmh9ZgLgsGzaZXNfJvf5nTcDNAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUiCiGWfqYb8+EDg0jMIvk2r75lUQwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2lDaUdXZnFZYjgtRURnMGpN
SXZrMnI3NWxVUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3
Tf4wDQYJKoZIhvcNAQELBQADggEBAIrRb/N2VXf63VGS6QCDLHfZ3l7jLaWig5Rs
r7lzIhMuD9/9HmYTqttwTjhjiABNzaDlpT7TJQXADsOH3N+h5yyeSjl1iZfk7ZMJ
q/z+ikagEpk9DfZbKMuc1Ei5hyysQnxgTWHi2c6Uzdg/8y2ozjkY0B8HZyuUUtB7
0P5Nx+9+i5R9AHsFpoyBmG7xnx6JOwOM6etXSglh9/cvjAfcSD+AS5mQUSAAViSF
xmlLYqaOZLOjQXdpc1RvAJDqalaCapWzih8eaPztl7gt1dpiMdX9O+W/TyHcwz1z
3Ga5GLMNc4KShesJk30TvhBLfF4tIsWTRUJHJe0GTYTQcU5iy3k=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org