Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lrzsVmqCpHBME9-jTIqfWO0di60.roa
File: lrzsVmqCpHBME9-jTIqfWO0di60.roa (raw, json)
Hash identifier: C16YdWKCDMA/2dEZIGGul4Vdgb6SJm9RIC+jV73hefM=
Subject key identifier: 96:BC:EC:56:6A:82:A4:70:4C:13:DF:A3:4C:8A:9F:58:ED:1D:8B:AD
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1B65
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lrzsVmqCpHBME9-jTIqfWO0di60.roa
Signing time: Fri 07 Apr 2023 07:22:01 +0000
ROA not before: Fri 07 Apr 2023 07:22:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 211.76.32.0/19 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7013 (0x1b65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Apr 7 07:22:01 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=96BCEC566A82A4704C13DFA34C8A9F58ED1D8BAD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b8:19:e3:6c:42:a5:dd:68:11:c7:9f:31:5f:
62:b8:8b:d7:a7:e1:be:00:77:90:c5:67:99:29:0a:
37:3c:b9:24:03:14:93:29:5b:20:fc:f5:cb:39:82:
e0:bb:86:5c:79:70:c1:0c:91:8f:bb:60:7a:69:63:
79:90:ff:d7:18:e5:d4:0a:79:59:3d:58:74:ab:1e:
21:d6:8f:8c:68:2b:8a:f2:39:c6:93:0b:83:38:fd:
fd:80:ae:d2:a4:45:7d:05:5c:c3:2f:76:73:93:1a:
cb:6d:00:86:89:50:10:49:2b:f8:71:55:64:8c:7a:
c6:e2:51:ff:db:9c:fd:28:cd:bb:55:90:7f:e0:1a:
23:c6:74:9a:53:c4:8d:aa:ea:ae:20:9d:b9:42:69:
f3:7f:66:12:90:d4:5c:ae:76:fe:4b:ab:97:df:b6:
32:0a:b1:d9:29:75:2c:28:09:6f:2e:fa:49:c2:ce:
e6:56:91:82:d5:c1:2e:04:32:b8:ef:a9:f5:c0:a6:
ae:a5:18:b7:95:d4:ca:2a:2c:67:f5:3b:4b:b2:f1:
c4:9d:9c:bb:e3:9e:07:dd:89:1e:67:9b:b5:94:bc:
05:16:6b:77:3c:6b:ce:f1:e2:45:ed:f1:a6:0b:98:
df:14:83:d8:a5:6b:b3:de:07:e0:8b:17:e5:fb:84:
18:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:BC:EC:56:6A:82:A4:70:4C:13:DF:A3:4C:8A:9F:58:ED:1D:8B:AD
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lrzsVmqCpHBME9-jTIqfWO0di60.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.32.0/19
Signature Algorithm: sha256WithRSAEncryption
47:de:9c:5a:8d:37:9a:fd:82:18:5a:29:bd:2b:bd:bc:ea:94:
0a:fb:fc:4d:a8:7f:93:a8:28:34:5f:7c:68:a0:78:75:1d:9c:
b7:8a:16:00:72:2f:ad:93:1a:e6:38:ae:d6:c5:45:dc:7c:dc:
25:be:6a:eb:d2:14:87:52:fc:a2:2c:0e:22:36:78:bd:e4:20:
e8:cc:63:1f:a9:bd:c0:cf:ad:ab:05:27:2e:dc:56:17:c2:a9:
23:69:f6:34:89:ae:a5:52:8b:e3:b0:11:21:15:93:3c:6c:58:
ca:6a:6c:56:f4:4d:ee:b1:cc:74:9c:08:ef:39:bd:8e:04:50:
3a:8d:70:31:06:e7:54:df:5a:23:9c:ad:24:2f:fc:2b:b2:19:
3f:d1:36:40:41:24:9c:90:1e:58:a0:84:53:22:a3:08:66:4d:
e4:5c:c6:05:97:b5:d5:a6:ae:6e:52:36:64:e0:4c:12:63:c7:
51:35:00:fa:8b:1b:81:b8:d4:69:38:a8:b0:17:83:75:b8:3c:
6e:7f:4b:73:43:71:57:3f:8f:ea:52:11:0a:8d:f5:50:1e:f2:
d8:7d:1f:b8:f8:ee:b7:40:93:72:13:fc:3c:03:2d:70:e4:7d:
a1:a9:5e:13:85:85:20:07:85:bb:33:c1:56:37:f1:bd:0e:9a:
8c:33:f3:62
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICG2UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA0MDcw
NzIyMDFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDk2QkNFQzU2NkE4MkE0
NzA0QzEzREZBMzRDOEE5RjU4RUQxRDhCQUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCyuBnjbEKl3WgRx58xX2K4i9en4b4Ad5DFZ5kpCjc8uSQDFJMp
WyD89cs5guC7hlx5cMEMkY+7YHppY3mQ/9cY5dQKeVk9WHSrHiHWj4xoK4ryOcaT
C4M4/f2ArtKkRX0FXMMvdnOTGsttAIaJUBBJK/hxVWSMesbiUf/bnP0ozbtVkH/g
GiPGdJpTxI2q6q4gnblCafN/ZhKQ1Fyudv5Lq5fftjIKsdkpdSwoCW8u+knCzuZW
kYLVwS4EMrjvqfXApq6lGLeV1MoqLGf1O0uy8cSdnLvjngfdiR5nm7WUvAUWa3c8
a87x4kXt8aYLmN8Ug9ila7PeB+CLF+X7hBgXAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUlrzsVmqCpHBME9+jTIqfWO0di60wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2xyenNWbXFDcEhCTUU5LWpU
SXFmV08wZGk2MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXT
TCAwDQYJKoZIhvcNAQELBQADggEBAEfenFqNN5r9ghhaKb0rvbzqlAr7/E2of5Oo
KDRffGigeHUdnLeKFgByL62TGuY4rtbFRdx83CW+auvSFIdS/KIsDiI2eL3kIOjM
Yx+pvcDPrasFJy7cVhfCqSNp9jSJrqVSi+OwESEVkzxsWMpqbFb0Te6xzHScCO85
vY4EUDqNcDEG51TfWiOcrSQv/CuyGT/RNkBBJJyQHlighFMiowhmTeRcxgWXtdWm
rm5SNmTgTBJjx1E1APqLG4G41Gk4qLAXg3W4PG5/S3NDcVc/j+pSEQqN9VAe8th9
H7j47rdAk3IT/DwDLXDkfaGpXhOFhSAHhbszwVY38b0Omowz82I=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org