Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/PB7auYjlpKNRj5tKD7DlkdcYh-o.roa
File: PB7auYjlpKNRj5tKD7DlkdcYh-o.roa (raw, json)
Hash identifier: AY0ZX92D8m9KqC4KOKcjASljFCCrmjt2DFrp25k9/W0=
Subject key identifier: 3C:1E:DA:B9:88:E5:A4:A3:51:8F:9B:4A:0F:B0:E5:91:D7:18:87:EA
Certificate issuer: /CN=0B67C78E35D23632A25532AEFE8B4A9FCABE3B4D
Certificate serial: 8B
Authority key identifier: 0B:67:C7:8E:35:D2:36:32:A2:55:32:AE:FE:8B:4A:9F:CA:BE:3B:4D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/C2fHjjXSNjKiVTKu_otKn8q-O00.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/PB7auYjlpKNRj5tKD7DlkdcYh-o.roa
Signing time: Fri 27 Sep 2024 13:09:25 +0000
ROA not before: Fri 27 Sep 2024 13:09:25 +0000
ROA not after: Thu 28 Aug 2025 15:30:19 +0000
asID: 396982
IP address blocks: 160.30.211.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139 (0x8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0B67C78E35D23632A25532AEFE8B4A9FCABE3B4D
Validity
Not Before: Sep 27 13:09:25 2024 GMT
Not After : Aug 28 15:30:19 2025 GMT
Subject: CN=3C1EDAB988E5A4A3518F9B4A0FB0E591D71887EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:bb:04:97:8c:38:99:0b:bd:c9:33:6d:b6:76:
3c:aa:6a:3f:00:cf:f7:9d:0e:d6:34:d9:e2:8f:df:
d2:be:74:d6:64:0c:60:d1:07:f8:03:18:f3:28:33:
0a:07:fd:8a:e3:39:cf:60:85:57:a2:b5:b2:7e:40:
7e:50:19:54:9d:f2:7e:54:1b:6d:ad:65:04:8b:c7:
42:9d:e2:4b:58:a9:62:92:0a:0a:0f:fb:33:6d:32:
64:fe:d1:53:65:92:c7:4f:ac:fc:65:78:22:bd:21:
e5:c1:24:fc:66:23:d5:b9:80:d4:17:2b:ca:a0:f4:
91:05:02:30:57:f3:39:e8:2d:75:dd:71:5b:38:49:
51:62:a7:94:03:c1:3f:f1:8f:9f:87:d2:d5:d4:96:
8a:42:99:04:1c:7e:fe:14:b4:fb:19:3a:f8:10:c0:
b1:01:21:a9:fd:09:e4:fb:1b:a4:af:1e:d1:de:fe:
9b:a7:f3:4d:40:4b:a4:f0:b7:5b:cb:0a:a8:9b:9c:
8e:06:70:4a:22:68:72:f0:4b:7e:3d:9e:a4:77:f2:
78:fc:c4:f9:5c:00:7c:c4:e0:da:1c:d2:6f:45:90:
6b:73:94:bc:77:a5:a8:ab:69:64:0a:35:47:f6:38:
6a:2a:08:8d:0c:67:14:50:f9:fe:19:2f:34:b1:1f:
9a:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:1E:DA:B9:88:E5:A4:A3:51:8F:9B:4A:0F:B0:E5:91:D7:18:87:EA
X509v3 Authority Key Identifier:
keyid:0B:67:C7:8E:35:D2:36:32:A2:55:32:AE:FE:8B:4A:9F:CA:BE:3B:4D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/C2fHjjXSNjKiVTKu_otKn8q-O00.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/C2fHjjXSNjKiVTKu_otKn8q-O00.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/PB7auYjlpKNRj5tKD7DlkdcYh-o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.211.0/24
Signature Algorithm: sha256WithRSAEncryption
04:78:c2:25:3c:38:28:37:2a:7d:37:be:ae:4b:b4:80:9e:c7:
d5:07:67:87:59:e8:09:3e:67:80:1d:21:79:8e:50:22:54:c6:
62:bf:99:6b:82:f3:bc:f2:f9:00:7b:14:ae:5e:2a:ea:f4:37:
e8:1a:f7:df:8b:1d:2f:41:d6:aa:4a:3b:38:b6:9c:70:bc:0d:
d2:f2:72:15:2a:e5:8b:0d:5a:a0:7d:8c:c9:c1:ed:a2:e8:16:
08:4c:03:3e:60:e2:ca:17:19:14:05:b9:93:42:20:2c:13:a7:
16:08:c0:a1:49:fa:2c:34:b3:2d:7d:5e:9e:4c:4f:23:6d:b9:
62:8f:f9:87:a2:58:c5:74:70:79:dc:d0:5e:98:f0:3c:f1:9d:
2b:a4:f7:b0:8c:b6:68:76:91:a1:09:a4:ab:5a:13:9a:4e:30:
97:f8:fe:20:b7:c1:ca:ae:a5:90:cd:04:3a:98:b6:82:3d:39:
88:a4:28:f5:d8:ed:65:6e:0a:b2:b0:00:5b:96:f7:b3:18:f6:
18:19:cc:79:4a:6c:4b:b0:c6:ea:65:40:c7:71:37:ea:92:70:
75:d5:e3:de:bf:b6:02:8a:24:fa:f6:2d:90:53:25:84:d7:b9:
34:d9:32:d5:17:f9:ee:a3:bf:6d:78:7b:2d:f3:bf:0a:8e:f1:
a6:92:f0:61
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgICAIswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEI2
N0M3OEUzNUQyMzYzMkEyNTUzMkFFRkU4QjRBOUZDQUJFM0I0RDAeFw0yNDA5Mjcx
MzA5MjVaFw0yNTA4MjgxNTMwMTlaMDMxMTAvBgNVBAMTKDNDMUVEQUI5ODhFNUE0
QTM1MThGOUI0QTBGQjBFNTkxRDcxODg3RUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDfuwSXjDiZC73JM222djyqaj8Az/edDtY02eKP39K+dNZkDGDR
B/gDGPMoMwoH/YrjOc9ghVeitbJ+QH5QGVSd8n5UG22tZQSLx0Kd4ktYqWKSCgoP
+zNtMmT+0VNlksdPrPxleCK9IeXBJPxmI9W5gNQXK8qg9JEFAjBX8znoLXXdcVs4
SVFip5QDwT/xj5+H0tXUlopCmQQcfv4UtPsZOvgQwLEBIan9CeT7G6SvHtHe/pun
801AS6Twt1vLCqibnI4GcEoiaHLwS349nqR38nj8xPlcAHzE4Noc0m9FkGtzlLx3
pairaWQKNUf2OGoqCI0MZxRQ+f4ZLzSxH5rLAgMBAAGjggH2MIIB8jAdBgNVHQ4E
FgQUPB7auYjlpKNRj5tKD7DlkdcYh+owHwYDVR0jBBgwFoAUC2fHjjXSNjKiVTKu
/otKn8q+O00wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09ERVVQ
VEVDSC9DMmZIampYU05qS2lWVEt1X290S244cS1PMDAuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL0MyZkhqalhTTmpLaVZUS3Vfb3RLbjhxLU8wMC5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NPREVVUFRFQ0gvUEI3YXVZamxw
S05SajV0S0Q3RGxrZGNZaC1vLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEAKAe0zANBgkqhkiG9w0BAQsFAAOCAQEABHjCJTw4KDcqfTe+rku0gJ7H
1Qdnh1noCT5ngB0heY5QIlTGYr+Za4LzvPL5AHsUrl4q6vQ36Br334sdL0HWqko7
OLaccLwN0vJyFSrliw1aoH2MycHtougWCEwDPmDiyhcZFAW5k0IgLBOnFgjAoUn6
LDSzLX1enkxPI225Yo/5h6JYxXRwedzQXpjwPPGdK6T3sIy2aHaRoQmkq1oTmk4w
l/j+ILfByq6lkM0EOpi2gj05iKQo9djtZW4KsrAAW5b3sxj2GBnMeUpsS7DG6mVA
x3E36pJwddXj3r+2Aook+vYtkFMlhNe5NNky1Rf57qO/bXh7LfO/Co7xppLwYQ==
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:48:27 2025 by rpki-client