Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/07sGs990sbA-jhaylwydwP7TEYI.roa
File: 07sGs990sbA-jhaylwydwP7TEYI.roa (raw, json)
Hash identifier: PBvdU3ltDENLVwfVx+Jv9pgI+ukDNahaGnmNfcZGkZU=
Subject key identifier: D3:BB:06:B3:DF:74:B1:B0:3E:8E:16:B2:97:0C:9D:C0:FE:D3:11:82
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 129B
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/07sGs990sbA-jhaylwydwP7TEYI.roa
Signing time: Wed 29 Sep 2021 02:54:46 +0000
ROA not before: Wed 29 Sep 2021 02:54:46 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24163
IP address blocks: 119.77.208.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4763 (0x129b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:46 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D3BB06B3DF74B1B03E8E16B2970C9DC0FED31182
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:4a:3a:e7:83:ab:85:0f:28:3d:58:40:9e:9d:
1f:db:77:da:d6:b5:ca:58:8f:5c:99:7c:e8:2d:10:
fc:7e:bc:38:96:5f:c0:90:4b:99:0e:c3:f9:d0:5e:
03:66:9b:39:dc:3a:eb:32:df:46:5e:03:97:9a:bc:
14:52:e6:6c:9b:e2:2c:7a:3b:c8:20:88:9e:8f:b1:
c1:0e:b4:ec:07:52:48:a6:a2:5c:3c:fc:a0:b4:4c:
10:d4:0b:ad:72:57:87:ff:6b:ab:75:80:db:be:04:
f9:dc:dc:14:3d:ab:36:df:ee:b7:ac:57:48:c2:27:
1f:c2:33:83:fa:37:76:24:6e:99:e8:32:18:f5:ef:
bd:79:bd:0c:d2:5a:65:2f:39:ae:ba:b9:f2:df:e7:
3a:6a:b6:40:20:9f:e5:1c:04:e8:79:f0:e9:0b:99:
ea:53:d4:37:77:78:3b:f4:15:b2:0f:8f:92:ba:7e:
0a:88:53:fe:f1:44:65:48:5d:2e:05:9d:a9:e4:f9:
d3:6e:0b:2c:4f:07:34:f1:e9:91:91:58:a0:75:6b:
4e:1a:1c:bb:52:37:c7:af:4a:1b:7c:e9:7a:d0:8e:
6d:50:89:03:5f:d7:55:75:1e:fa:d7:23:11:ce:c6:
ee:c0:8f:22:95:27:67:f6:7c:70:83:9b:ab:ad:83:
04:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:BB:06:B3:DF:74:B1:B0:3E:8E:16:B2:97:0C:9D:C0:FE:D3:11:82
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/07sGs990sbA-jhaylwydwP7TEYI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.77.208.0/20
Signature Algorithm: sha256WithRSAEncryption
14:16:9d:92:c5:98:b8:e4:70:e8:e4:65:7a:d5:b4:9a:4b:ea:
f4:0a:a9:58:23:95:f2:45:a9:49:3a:a8:e2:d3:7b:2a:2c:a6:
51:a6:6c:b2:9c:d3:19:60:6d:de:44:bc:9b:50:7b:4d:ba:bb:
24:e8:00:9a:92:ba:26:07:3c:b0:64:ff:53:3f:57:6e:bf:d8:
38:75:ca:23:6d:a5:e6:fb:d0:29:e7:11:dc:81:83:96:1d:ce:
95:2d:8b:50:5a:e8:07:e1:7c:47:de:b5:65:0d:7f:d6:2e:e2:
91:96:9f:2f:21:9b:bf:35:7d:a7:1f:ca:3b:22:81:49:61:4f:
d9:b7:dd:36:51:fa:7d:be:11:71:e5:6b:01:8f:67:f4:3b:4b:
52:ea:c1:82:2e:70:6e:91:98:fa:3c:50:64:3a:ab:f0:9b:de:
e6:48:a5:44:7d:fd:f5:eb:e0:8f:cb:3e:09:99:23:d2:92:a0:
18:59:9b:3f:ff:14:0b:ea:a1:eb:91:60:83:88:1a:d0:08:65:
db:6a:88:a7:52:19:7e:be:d1:14:18:c4:64:d8:dc:25:44:1f:
47:bd:25:52:58:2a:59:11:ec:cf:1d:54:e5:d7:ea:ca:9e:f6:
37:32:8c:46:c3:ee:95:8c:4a:3b:85:f6:68:98:9c:db:b5:09:
a4:d4:a4:7f
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEpswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU0NDZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEQzQkIwNkIzREY3NEIx
QjAzRThFMTZCMjk3MEM5REMwRkVEMzExODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDySjrng6uFDyg9WECenR/bd9rWtcpYj1yZfOgtEPx+vDiWX8CQ
S5kOw/nQXgNmmzncOusy30ZeA5eavBRS5myb4ix6O8ggiJ6PscEOtOwHUkimolw8
/KC0TBDUC61yV4f/a6t1gNu+BPnc3BQ9qzbf7resV0jCJx/CM4P6N3YkbpnoMhj1
7715vQzSWmUvOa66ufLf5zpqtkAgn+UcBOh58OkLmepT1Dd3eDv0FbIPj5K6fgqI
U/7xRGVIXS4Fnank+dNuCyxPBzTx6ZGRWKB1a04aHLtSN8evSht86XrQjm1QiQNf
11V1HvrXIxHOxu7AjyKVJ2f2fHCDm6utgwQpAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU07sGs990sbA+jhaylwydwP7TEYIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzA3c0dzOTkwc2JBLWpoYXls
d3lkd1A3VEVZSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR3
TdAwDQYJKoZIhvcNAQELBQADggEBABQWnZLFmLjkcOjkZXrVtJpL6vQKqVgjlfJF
qUk6qOLTeyosplGmbLKc0xlgbd5EvJtQe026uyToAJqSuiYHPLBk/1M/V26/2Dh1
yiNtpeb70CnnEdyBg5YdzpUti1Ba6AfhfEfetWUNf9Yu4pGWny8hm781facfyjsi
gUlhT9m33TZR+n2+EXHlawGPZ/Q7S1LqwYIucG6RmPo8UGQ6q/Cb3uZIpUR9/fXr
4I/LPgmZI9KSoBhZmz//FAvqoeuRYIOIGtAIZdtqiKdSGX6+0RQYxGTY3CVEH0e9
JVJYKlkR7M8dVOXX6sqe9jcyjEbD7pWMSjuF9miYnNu1CaTUpH8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org