Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/um5yNkYgeJvb7UsbjWLBhZx2vPM.roa
File: um5yNkYgeJvb7UsbjWLBhZx2vPM.roa (raw, json)
Hash identifier: p72xA3XVCpcLMpJaARErx+1eyVdWp7Ox5PAoecHnwbE=
Subject key identifier: BA:6E:72:36:46:20:78:9B:DB:ED:4B:1B:8D:62:C1:85:9C:76:BC:F3
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1282
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/um5yNkYgeJvb7UsbjWLBhZx2vPM.roa
Signing time: Wed 29 Sep 2021 02:54:39 +0000
ROA not before: Wed 29 Sep 2021 02:54:39 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 211.76.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4738 (0x1282)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:39 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=BA6E72364620789BDBED4B1B8D62C1859C76BCF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:9e:70:26:4e:b4:2d:ad:8e:55:a6:09:7e:10:
26:91:44:d3:55:f9:ba:db:47:5b:d6:79:98:11:5f:
b4:2d:0a:7f:0e:1e:72:f5:2a:f9:7b:0f:76:7d:6b:
3c:57:c8:f1:e6:6c:62:f3:79:14:b9:d6:e4:76:77:
fa:e4:67:5e:0e:1e:54:d5:2d:d4:7c:f5:80:94:4e:
de:38:e0:dd:e6:58:68:93:d0:d1:c4:a2:6f:5d:a3:
9b:48:4c:aa:07:b3:bc:c4:3d:b4:b0:18:be:ea:5d:
79:73:4c:cf:d2:7b:03:fa:73:a6:37:23:27:ed:e5:
7e:d4:7d:a6:6c:5b:c9:2e:66:75:0d:8b:c2:02:fa:
4d:a0:40:c3:81:e9:79:77:5d:78:74:7d:ae:ee:5c:
0e:3c:0f:3a:33:41:43:62:13:79:88:9b:82:f5:52:
82:f3:10:48:ad:3b:55:a5:89:a3:9d:1c:67:ab:e1:
65:d5:13:c2:25:cf:ad:2f:ca:16:ae:36:d3:6b:1b:
0d:d6:ac:2e:7e:37:ee:2e:e3:95:31:01:6d:10:a7:
27:33:5d:79:ea:04:91:b0:49:34:6e:b5:6e:20:63:
cf:fb:08:a0:8d:46:bf:a7:4d:1e:ab:f9:03:16:8e:
cb:81:ed:38:a7:bd:74:74:c5:34:53:06:ba:f6:3b:
a8:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:6E:72:36:46:20:78:9B:DB:ED:4B:1B:8D:62:C1:85:9C:76:BC:F3
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/um5yNkYgeJvb7UsbjWLBhZx2vPM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.77.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:06:99:59:0f:38:a8:ac:59:ba:5a:de:54:13:4a:c4:71:6d:
18:a8:44:7f:dd:e9:a4:4e:67:ef:7a:5b:70:28:9f:68:df:d6:
6e:5e:02:db:47:09:da:cd:db:9f:3a:c8:20:c5:fb:67:0e:57:
28:f3:14:5e:38:a3:58:79:40:84:4f:bd:f6:d7:eb:62:49:45:
e9:82:18:a5:3a:b9:97:70:5b:35:00:1a:dd:b7:99:17:a7:4a:
bc:24:51:61:85:9b:ac:98:c2:6c:88:57:a5:ff:4b:e1:11:cc:
5b:6e:7b:97:93:ac:2b:38:11:c4:29:3e:60:d9:88:b0:81:8e:
36:4d:83:74:bd:c2:9f:34:32:12:58:e9:2f:d8:72:73:ed:55:
c3:a3:2f:03:8d:a8:80:92:ea:53:bd:af:b4:97:2a:3d:66:f5:
f0:c6:b0:16:e7:29:7e:82:62:7a:06:81:0e:8a:98:33:7c:62:
39:a2:c8:a3:73:2b:09:77:f9:19:e9:1c:2e:35:d8:86:97:6a:
ee:4d:37:ae:b4:64:e1:da:83:43:87:fe:26:63:18:5f:7b:d1:
a2:7f:29:97:f3:30:f2:e9:00:d9:3c:5e:eb:b9:ce:f0:5b:f1:
16:ce:47:b4:35:6d:64:ef:6d:7d:51:f4:f6:00:04:6f:a6:15:
e0:8a:28:32
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEoIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU0MzlaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEJBNkU3MjM2NDYyMDc4
OUJEQkVENEIxQjhENjJDMTg1OUM3NkJDRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCYnnAmTrQtrY5Vpgl+ECaRRNNV+brbR1vWeZgRX7QtCn8OHnL1
Kvl7D3Z9azxXyPHmbGLzeRS51uR2d/rkZ14OHlTVLdR89YCUTt444N3mWGiT0NHE
om9do5tITKoHs7zEPbSwGL7qXXlzTM/SewP6c6Y3Iyft5X7UfaZsW8kuZnUNi8IC
+k2gQMOB6Xl3XXh0fa7uXA48DzozQUNiE3mIm4L1UoLzEEitO1WliaOdHGer4WXV
E8Ilz60vyhauNtNrGw3WrC5+N+4u45UxAW0QpyczXXnqBJGwSTRutW4gY8/7CKCN
Rr+nTR6r+QMWjsuB7TinvXR0xTRTBrr2O6iFAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUum5yNkYgeJvb7UsbjWLBhZx2vPMwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3VtNXlOa1lnZUp2YjdVc2Jq
V0xCaFp4MnZQTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADT
TE0wDQYJKoZIhvcNAQELBQADggEBAH8GmVkPOKisWbpa3lQTSsRxbRioRH/d6aRO
Z+96W3Aon2jf1m5eAttHCdrN2586yCDF+2cOVyjzFF44o1h5QIRPvfbX62JJRemC
GKU6uZdwWzUAGt23mRenSrwkUWGFm6yYwmyIV6X/S+ERzFtue5eTrCs4EcQpPmDZ
iLCBjjZNg3S9wp80MhJY6S/YcnPtVcOjLwONqICS6lO9r7SXKj1m9fDGsBbnKX6C
YnoGgQ6KmDN8YjmiyKNzKwl3+RnpHC412IaXau5NN660ZOHag0OH/iZjGF970aJ/
KZfzMPLpANk8Xuu5zvBb8RbOR7Q1bWTvbX1R9PYABG+mFeCKKDI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org