Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qvsthBJUOWLNVfAcu19yD45_76k.roa
File: qvsthBJUOWLNVfAcu19yD45_76k.roa (raw, json)
Hash identifier: AUVI5QSqtZueL0cS8LQQvCrCcMWqGwZjXw5Xs8Rx3fE=
Subject key identifier: AA:FB:2D:84:12:54:39:62:CD:55:F0:1C:BB:5F:72:0F:8E:7F:EF:A9
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1A50
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qvsthBJUOWLNVfAcu19yD45_76k.roa
Signing time: Thu 27 Oct 2022 02:43:50 +0000
ROA not before: Thu 27 Oct 2022 02:43:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 114.198.164.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6736 (0x1a50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 27 02:43:50 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=AAFB2D8412543962CD55F01CBB5F720F8E7FEFA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b3:5e:4d:6e:e4:8d:47:b6:d8:c2:e4:e8:04:
9b:55:e5:6b:e1:49:06:e3:73:95:44:52:60:f0:43:
3c:73:4b:ef:71:c8:ca:82:1c:70:7a:d8:d3:b9:34:
8a:e5:6c:3d:73:56:1b:7f:06:30:f0:45:f5:ef:72:
3c:d5:e7:ec:48:60:54:30:d9:14:ed:00:84:79:f0:
6c:3f:9c:2a:c8:5a:32:f6:a7:1a:4b:4c:fb:b2:f3:
a6:e6:67:60:41:23:6f:06:85:46:ee:7f:70:4b:31:
85:ff:36:f2:5b:a1:38:a9:cb:e5:06:95:20:92:11:
9e:45:ca:db:69:8a:0d:ee:82:9f:c8:df:60:5c:21:
07:18:d8:99:82:bf:12:13:41:7c:97:cd:34:8f:f3:
09:16:b7:a6:8d:89:80:63:45:ea:b3:30:ef:32:c6:
99:d0:ce:d8:20:41:c0:4b:f8:80:c3:be:bd:12:f9:
bb:8c:3e:a2:3a:09:16:bb:22:9d:da:7d:9e:d6:42:
b3:be:6d:50:0f:52:f6:8c:6d:45:ce:5b:06:1c:5f:
3c:a8:97:51:de:83:ec:a8:d0:d0:e5:fa:6e:c9:8a:
23:83:67:05:62:89:df:2e:24:05:35:3c:eb:e3:a1:
f9:4f:e9:fd:6e:3b:ce:00:23:cc:ed:c7:d0:dc:6f:
ec:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:FB:2D:84:12:54:39:62:CD:55:F0:1C:BB:5F:72:0F:8E:7F:EF:A9
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qvsthBJUOWLNVfAcu19yD45_76k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.164.0/24
Signature Algorithm: sha256WithRSAEncryption
01:c9:f7:06:49:a3:7a:19:f2:9d:7b:c1:3f:1e:13:0c:e2:63:
0e:9c:21:1a:eb:6c:be:6e:35:2b:06:a2:e4:5e:13:03:0e:ca:
79:ac:00:51:8b:94:87:ab:e2:28:1e:bd:57:c3:a6:62:19:60:
c4:53:18:33:0e:08:36:91:66:b4:95:c7:98:1a:d6:b7:c7:6f:
72:f4:ec:72:55:6f:23:d4:0b:7c:0a:d5:6d:8f:c5:3e:cf:c5:
42:d8:62:06:f5:cf:b5:f1:9d:ed:dd:91:bd:bf:24:a4:8f:9d:
89:57:3c:18:9f:5e:c6:1e:c2:ee:2a:21:f7:f6:17:86:3d:81:
b9:97:98:b4:0c:8a:b4:ba:1f:a6:c4:6d:2b:0a:9e:5a:e0:55:
1a:45:de:3a:ab:db:e6:f9:00:c9:f6:21:04:09:d0:f0:3f:59:
e6:cc:3c:76:d6:bb:74:68:e4:f6:b3:ba:4e:e9:76:c3:db:ee:
0c:e5:3a:27:fd:54:8c:68:37:c3:16:ca:14:04:3f:e1:a5:9a:
54:5f:53:35:7e:59:5b:3a:7c:41:8b:bb:44:3c:04:7e:8c:fe:
cd:76:6b:46:19:10:22:75:0f:a9:bc:c8:8c:82:ea:2f:e7:d5:
12:89:bd:54:09:25:8f:ed:ff:39:64:0b:ec:62:2b:8a:14:34:
5c:40:12:56
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICGlAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjEwMjcw
MjQzNTBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEFBRkIyRDg0MTI1NDM5
NjJDRDU1RjAxQ0JCNUY3MjBGOEU3RkVGQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDXs15NbuSNR7bYwuToBJtV5WvhSQbjc5VEUmDwQzxzS+9xyMqC
HHB62NO5NIrlbD1zVht/BjDwRfXvcjzV5+xIYFQw2RTtAIR58Gw/nCrIWjL2pxpL
TPuy86bmZ2BBI28GhUbuf3BLMYX/NvJboTipy+UGlSCSEZ5Fyttpig3ugp/I32Bc
IQcY2JmCvxITQXyXzTSP8wkWt6aNiYBjReqzMO8yxpnQztggQcBL+IDDvr0S+buM
PqI6CRa7Ip3afZ7WQrO+bVAPUvaMbUXOWwYcXzyol1Heg+yo0NDl+m7JiiODZwVi
id8uJAU1POvjoflP6f1uO84AI8ztx9Dcb+z3AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUqvsthBJUOWLNVfAcu19yD45/76kwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3F2c3RoQkpVT1dMTlZmQWN1
MTl5RDQ1Xzc2ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABy
xqQwDQYJKoZIhvcNAQELBQADggEBAAHJ9wZJo3oZ8p17wT8eEwziYw6cIRrrbL5u
NSsGouReEwMOynmsAFGLlIer4igevVfDpmIZYMRTGDMOCDaRZrSVx5ga1rfHb3L0
7HJVbyPUC3wK1W2PxT7PxULYYgb1z7Xxne3dkb2/JKSPnYlXPBifXsYewu4qIff2
F4Y9gbmXmLQMirS6H6bEbSsKnlrgVRpF3jqr2+b5AMn2IQQJ0PA/WebMPHbWu3Ro
5Pazuk7pdsPb7gzlOif9VIxoN8MWyhQEP+GlmlRfUzV+WVs6fEGLu0Q8BH6M/s12
a0YZECJ1D6m8yIyC6i/n1RKJvVQJJY/t/zlkC+xiK4oUNFxAElY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org